$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft File: tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json) Hash identifier: BjsU73jvhiy8NjgWAACCrLf5TmgNB7tQgso0i9IZUco= Subject key identifier: CF:FC:BB:44:45:CD:06:A4:BF:A0:D9:AB:3E:A0:04:63:2A:B6:B8:50 Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA Certificate issuer: /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft Manifest number: 0159 Signing time: Wed 13 May 2026 05:06:00 +0000 Manifest this update: Wed 13 May 2026 05:06:00 +0000 Manifest next update: Wed 20 May 2026 05:06:00 +0000 Files and hashes: 1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: KzxkyVHfWuj0owC+WFEN2GnZ0yoYSUnEYP8f+iMJXUY=) 2: 6A5F29CED8A511F0B3F453F094D3641D.roa (hash: x8Gadu5mzZc6qu26lRbm5uUV5MWN8eTQq1KShULlErA=) 3: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: /neZtyP8CB+i0xa/1UQQQx4y8u+LD3tIdTWWjj7eFPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Validity Not Before: May 13 05:06:00 2026 GMT Not After : May 20 05:06:00 2026 GMT Subject: CN=6a0406b8-d102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dd:86:05:fa:d3:b8:5f:af:12:dc:27:9a:2c: cb:aa:0a:26:32:8d:ed:31:31:df:31:bc:c9:d6:b2: 45:fb:28:39:89:e2:db:70:5a:45:22:09:01:08:61: 2c:5d:51:fa:cc:64:58:9e:aa:09:24:f5:60:02:89: 7f:33:e5:9e:13:01:da:18:90:bf:d4:66:c2:93:32: 9f:6c:b7:b3:59:15:fc:b7:f7:23:fe:92:5e:d0:24: 0a:0e:b4:da:4a:a4:ae:10:d8:77:ab:71:9c:74:5f: 90:1f:2d:5a:17:6c:cf:40:70:06:62:cc:97:15:d4: c1:11:9b:6b:84:68:69:3e:25:c5:fe:20:c2:23:0f: 8d:38:6d:f8:7e:0c:e7:a2:a8:6b:0e:be:5f:02:c5: 7e:df:42:24:78:83:64:52:1e:8d:c6:40:cc:3f:b9: e0:aa:61:9f:6c:cc:a3:15:33:d8:3c:98:16:51:2b: 92:1a:ce:62:1a:e0:73:a7:fd:60:ff:e2:6c:a2:50: 88:ac:d6:91:70:03:f9:6f:a2:1c:70:70:1b:32:9a: 77:d7:c0:92:16:b0:f4:bb:df:c2:0b:19:5d:f1:21: c3:75:77:bf:cc:5e:16:8a:b6:f2:3f:d2:63:14:0f: e3:33:be:4c:bc:85:32:c6:4d:b1:f9:4c:58:0d:16: a3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FC:BB:44:45:CD:06:A4:BF:A0:D9:AB:3E:A0:04:63:2A:B6:B8:50 X509v3 Authority Key Identifier: keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:86:29:2c:2e:bb:3a:4f:2f:f9:6b:7b:fc:72:47:a0:51:ec: 27:75:b4:4b:4a:84:26:69:93:6c:c4:a4:ef:06:20:e7:78:51: 8f:27:f5:04:d8:69:33:0e:b6:e8:65:77:a0:b0:fc:a6:77:2d: 05:bd:56:46:9b:c7:0d:9c:52:b5:5b:55:70:24:96:83:a0:f5: 8d:6f:8b:37:47:a5:71:89:f7:10:63:b8:0a:fc:41:81:05:be: ac:be:b0:45:7a:cd:50:d9:5b:d8:da:61:f2:18:2a:52:93:c4: ac:b4:fd:76:5c:47:dc:f6:90:57:f3:04:2b:3b:12:ec:ef:18: e1:2d:0b:3d:2d:da:77:24:3e:7d:a1:2a:a2:dd:22:d5:89:c6: f6:23:b7:ac:fa:69:05:d8:35:89:51:c0:ff:f2:c4:e8:7d:c1: d7:82:f6:f9:5d:6e:1f:5a:13:85:9a:c0:ee:a7:4d:25:ca:ef: a3:16:0a:fa:d9:36:2c:7b:af:63:e6:da:b6:3f:a3:0f:e8:ff: 78:5b:70:a9:54:a4:4e:c4:a4:36:42:c7:fd:b6:57:f9:2c:5f: 7e:b4:ef:34:0d:40:4f:5c:94:31:ce:c7:9e:49:81:31:1d:d8: 3a:8f:7a:b1:42:3c:6a:c1:17:bc:a7:1b:17:00:22:df:c2:91: bc:85:44:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKEI0RTdFMzQ0QURDRTM2RDg0RjFGM0FCQ0NEMTRCMjRD MTUxMkJCQUEwHhcNMjYwNTEzMDUwNjAwWhcNMjYwNTIwMDUwNjAwWjAYMRYwFAYD VQQDEw02YTA0MDZiOC1kMTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy92GBfrTuF+vEtwnmizLqgomMo3tMTHfMbzJ1rJF+yg5ieLbcFpFIgkBCGEs XVH6zGRYnqoJJPVgAol/M+WeEwHaGJC/1GbCkzKfbLezWRX8t/cj/pJe0CQKDrTa SqSuENh3q3GcdF+QHy1aF2zPQHAGYsyXFdTBEZtrhGhpPiXF/iDCIw+NOG34fgzn oqhrDr5fAsV+30IkeINkUh6NxkDMP7ngqmGfbMyjFTPYPJgWUSuSGs5iGuBzp/1g /+JsolCIrNaRcAP5b6IccHAbMpp318CSFrD0u9/CCxld8SHDdXe/zF4WirbyP9Jj FA/jM75MvIUyxk2x+UxYDRajyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM/8u0RF zQakv6DZqz6gBGMqtrhQMB8GA1UdIwQYMBaAFLTn40StzjbYTx86vM0UskwVEruq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8zNkE1MzBGNjQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050aFBIenE4elJTeVRCVVN1 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPZmpSSzNPTnRoUEh6cTh6UlN5VEJVU3U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8zNkE1MzBGNjQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050 aFBIenE4elJTeVRCVVN1Nm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOoYpLC67Ok8v+Wt7/HJHoFHsJ3W0S0qEJmmTbMSk7wYg53hRjyf1BNhpMw62 6GV3oLD8pnctBb1WRpvHDZxStVtVcCSWg6D1jW+LN0elcYn3EGO4CvxBgQW+rL6w RXrNUNlb2Nph8hgqUpPErLT9dlxH3PaQV/MEKzsS7O8Y4S0LPS3adyQ+faEqot0i 1YnG9iO3rPppBdg1iVHA//LE6H3B14L2+V1uH1oThZrA7qdNJcrvoxYK+tk2LHuv Y+batj+jD+j/eFtwqVSkTsSkNkLH/bZX+SxffrTvNA1AT1yUMc7HnkmBMR3YOo96 sUI8asEXvKcbFwAi38KRvIVEMQ== -----END CERTIFICATE-----Generated at Wed May 13 12:10:34 2026 by rpki-client