$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: lPAQLE4tvIVMFf6+4bpXfyuim2Hz25GQikTdQW+gDTc= Subject key identifier: 4A:13:D2:A6:C6:88:F2:3B:62:A6:FE:A2:95:94:0D:4B:25:9D:59:5C Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 35C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3576 Signing time: Tue 12 May 2026 14:22:53 +0000 Manifest this update: Tue 12 May 2026 14:22:53 +0000 Manifest next update: Tue 19 May 2026 14:22:53 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: ZWvacw6N1RNJeYZkWR+agthmZ9B2C4twa1gcaGYsg6I=) 2: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: qiT/GVvRCXwwQO5czxfwtuP70nIiPr4STQfaVH+7UL0=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: c5BWjsV+5qy4Czn1fNB7N39xouqCRvW12ZZgXgS4ZDQ=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: CWD+yCy6yNtHR/CgsSdRActZ6Gz+ygW0qqlW1BWQfN0=) 5: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: Im+A1kygYXCcmKM1N88CQpYfMfI1pkZXcprVNJAgc7Y=) 6: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: izVvMKnosN85WDCwiZeSTea3usmMiFXGuieIuV+2wlI=) 7: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: BJoCud12RqYU139X5Hg1YEdiSoJoBorro9yFYj7EiQY=) 8: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: ledywzn44AtfNdf65irkSbejoe2qe67kQVSrxPSpLj8=) 9: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: VXO5/U8cHHCFaikukuqO1qnp6nbKhmKzeuFoVz0LqaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13762 (0x35c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: May 12 14:22:53 2026 GMT Not After : May 19 14:22:53 2026 GMT Subject: CN=6a0337bd-12c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:06:bc:73:35:cf:eb:2b:18:66:4f:55:8a:39: 73:a0:1f:4c:af:b0:5c:64:90:d3:13:ef:8d:69:b9: e4:d9:98:00:9e:5c:f2:9a:ac:06:21:1f:37:48:47: 98:3e:49:e0:3b:c5:85:a2:b5:c6:46:8b:27:8c:1f: d3:e6:10:72:d7:fc:13:b2:00:9a:da:e3:34:7e:37: df:71:a1:b9:da:61:47:ed:a1:77:a6:50:3b:c1:19: b6:cb:37:08:6f:52:1a:f5:30:fa:79:06:0f:e9:9a: 8e:62:26:fb:bf:9c:83:45:5f:1f:8d:41:3b:3d:b2: e7:37:9f:dc:eb:f4:ba:10:b4:ec:81:0d:1d:d7:e2: 46:48:3a:5a:70:c8:e8:c7:b9:bf:dd:bb:15:d2:5d: 3c:cf:2f:0c:0c:ee:9c:42:2e:19:40:cf:3b:b1:c4: 68:72:13:a2:63:ac:3f:a7:88:f1:eb:ec:50:91:3f: 82:1d:79:af:e3:3e:18:77:49:7b:87:43:3f:21:38: bf:7d:b7:c3:bd:5c:cd:ab:20:73:1b:60:35:a1:34: 23:2f:55:ea:b4:f0:85:2c:68:eb:b8:03:5c:f3:1e: 70:2a:db:e2:8b:d3:e5:15:bf:5e:6d:72:43:54:b6: e5:ca:48:8d:4f:67:f8:ec:0b:24:96:16:e0:13:31: 8c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:13:D2:A6:C6:88:F2:3B:62:A6:FE:A2:95:94:0D:4B:25:9D:59:5C X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b5:6a:55:82:e3:6d:60:ae:0c:18:c5:24:26:1b:f2:e0:d7: a5:03:f3:dd:f2:4f:05:bd:8c:88:6a:f7:35:be:1f:c4:f0:d1: 7c:56:73:79:e4:04:4e:6c:0d:75:06:33:a8:44:4a:45:b9:e8: e2:dc:a7:8a:0c:b6:87:93:f2:2e:6d:0b:7a:c1:ea:b0:cc:65: ed:4a:53:e6:de:d9:c9:d1:9a:cb:6e:d0:19:75:d8:71:d0:de: bb:f8:60:da:4a:3d:0d:9f:dc:e6:87:f9:e1:f2:cb:4c:54:e5: 32:8f:b9:a2:af:8f:0a:90:03:53:5c:f0:2a:35:39:06:77:97: 38:4d:64:96:43:c0:cf:39:83:c7:4a:81:df:b4:bf:28:99:60: f3:00:82:28:e7:46:37:e2:c2:d9:b5:51:76:d1:ca:c1:8f:9d: 40:83:48:96:a4:a4:de:4e:ff:c4:52:5e:de:c2:23:0a:51:94: a4:f0:1e:3a:d2:ac:64:b7:fe:43:d4:92:ef:74:9d:d5:8d:10: f6:c6:65:22:29:99:3b:2f:a3:b3:e3:be:d1:a7:69:1f:39:e6: 22:26:77:11:da:51:51:f0:4a:d4:1a:12:39:77:9b:a7:f9:74: df:f6:28:30:79:6f:65:c2:41:ab:8a:38:39:1b:69:66:73:5b: 93:93:87:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjYwNTEyMTQyMjUzWhcNMjYwNTE5MTQyMjUzWjAYMRYwFAYD VQQDEw02YTAzMzdiZC0xMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wa8czXP6ysYZk9VijlzoB9Mr7BcZJDTE++Nabnk2ZgAnlzymqwGIR83SEeY PkngO8WForXGRosnjB/T5hBy1/wTsgCa2uM0fjffcaG52mFH7aF3plA7wRm2yzcI b1Ia9TD6eQYP6ZqOYib7v5yDRV8fjUE7PbLnN5/c6/S6ELTsgQ0d1+JGSDpacMjo x7m/3bsV0l08zy8MDO6cQi4ZQM87scRochOiY6w/p4jx6+xQkT+CHXmv4z4Yd0l7 h0M/ITi/fbfDvVzNqyBzG2A1oTQjL1XqtPCFLGjruANc8x5wKtvii9PlFb9ebXJD VLblykiNT2f47AsklhbgEzGM4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEoT0qbG iPI7Yqb+opWUDUslnVlcMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGrVqVYLjbWCuDBjFJCYb8uDXpQPz3fJPBb2MiGr3Nb4fxPDRfFZzeeQETmwN dQYzqERKRbno4tynigy2h5PyLm0LesHqsMxl7UpT5t7ZydGay27QGXXYcdDeu/hg 2ko9DZ/c5of54fLLTFTlMo+5oq+PCpADU1zwKjU5BneXOE1klkPAzzmDx0qB37S/ KJlg8wCCKOdGN+LC2bVRdtHKwY+dQINIlqSk3k7/xFJe3sIjClGUpPAeOtKsZLf+ Q9SS73Sd1Y0Q9sZlIimZOy+js+O+0adpHznmIiZ3EdpRUfBK1BoSOXebp/l03/Yo MHlvZcJBq4o4ORtpZnNbk5OHgQ== -----END CERTIFICATE-----Generated at Wed May 13 07:43:04 2026 by rpki-client