$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA03/AE709A0C24DC11F1AAF5B34AAD833773/ieNpO3EjaLD6zmuk5GeXCK85OLU.mft File: ieNpO3EjaLD6zmuk5GeXCK85OLU.mft (raw, json) Hash identifier: rgRZ9N1C5/l6hOhi59+BQIdGRXEoBn+Lzy4QC1yrdbY= Subject key identifier: CE:8A:56:CD:90:98:17:13:8A:2D:E6:0F:D2:8A:E8:0A:F5:88:E5:4E Authority key identifier: 89:E3:69:3B:71:23:68:B0:FA:CE:6B:A4:E4:67:97:08:AF:39:38:B5 Certificate issuer: /CN=A911EA03/serialNumber=89E3693B712368B0FACE6BA4E4679708AF3938B5 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ieNpO3EjaLD6zmuk5GeXCK85OLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA03/AE709A0C24DC11F1AAF5B34AAD833773/ieNpO3EjaLD6zmuk5GeXCK85OLU.mft Manifest number: 20 Signing time: Wed 13 May 2026 09:05:11 +0000 Manifest this update: Wed 13 May 2026 09:05:10 +0000 Manifest next update: Wed 20 May 2026 09:05:10 +0000 Files and hashes: 1: ieNpO3EjaLD6zmuk5GeXCK85OLU.crl (hash: lr/mL7apcE0pSgLRx1xmNPPxHoTrR1u98U9DoMM6E5s=) 2: FD1CE81824DC11F1AC9E21B6AD833773.roa (hash: aKiZx9bAHTnqGJOBAfW2TQZBMx8LZSsNmHEuGV9buHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA03/AE709A0C24DC11F1AAF5B34AAD833773/ieNpO3EjaLD6zmuk5GeXCK85OLU.crl rsync://rpki.apnic.net/member_repository/A911EA03/AE709A0C24DC11F1AAF5B34AAD833773/ieNpO3EjaLD6zmuk5GeXCK85OLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ieNpO3EjaLD6zmuk5GeXCK85OLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA03, serialNumber=89E3693B712368B0FACE6BA4E4679708AF3938B5 Validity Not Before: May 13 09:05:10 2026 GMT Not After : May 20 09:05:10 2026 GMT Subject: CN=6a043ec7-4f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:8e:62:03:e8:7f:4c:45:69:17:a5:2a:9e: ef:da:a1:9f:1c:5b:b6:00:18:5f:11:d5:cc:37:14: 74:1c:1e:a4:16:d4:ce:3b:7e:54:49:5e:7f:30:cd: 72:8f:19:fe:c0:79:4e:f1:4e:e7:74:e2:45:08:7b: c4:f8:6d:e5:d5:f7:e1:1b:bb:63:52:4c:1b:af:b3: 6a:48:01:c0:53:88:95:c8:de:c9:a6:85:33:18:35: 38:e2:1a:b2:40:21:a6:6e:39:f3:0d:c7:38:ec:13: 50:e8:e5:1e:3e:02:d2:fc:9f:bf:e8:eb:39:db:dd: fb:d4:be:67:0d:a5:4f:24:1b:e9:f0:7a:9e:88:1e: 38:73:bd:d7:88:2d:29:6c:dd:f3:1a:4b:cd:4a:4c: 64:00:2e:f0:12:d7:bd:4e:3b:fd:5a:fd:2a:fe:41: 87:73:6b:1d:44:d6:97:d0:a7:1f:32:df:3e:ad:f9: 9c:1b:5a:3d:f9:b9:fe:58:6f:26:8d:c6:21:fb:7c: 70:d1:bd:49:94:ff:d7:c0:7b:24:4f:c5:04:5c:9e: 64:02:04:49:42:e3:62:ff:c6:2c:21:1f:1b:cd:29: bc:ba:7a:6a:2f:97:4c:5d:ac:ca:83:17:f4:7d:58: 5c:6e:cb:f9:09:58:e6:9a:73:e7:09:16:b7:1a:97: f2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8A:56:CD:90:98:17:13:8A:2D:E6:0F:D2:8A:E8:0A:F5:88:E5:4E X509v3 Authority Key Identifier: keyid:89:E3:69:3B:71:23:68:B0:FA:CE:6B:A4:E4:67:97:08:AF:39:38:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA03/AE709A0C24DC11F1AAF5B34AAD833773/ieNpO3EjaLD6zmuk5GeXCK85OLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ieNpO3EjaLD6zmuk5GeXCK85OLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA03/AE709A0C24DC11F1AAF5B34AAD833773/ieNpO3EjaLD6zmuk5GeXCK85OLU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:b0:ef:02:08:f9:5a:47:3b:9f:62:de:22:3f:3b:3f:cb:87: 2e:98:6d:49:4f:42:b3:94:b4:60:3d:3c:d2:75:35:9a:ae:73: 4c:f1:fd:c8:5e:40:b0:86:b0:20:c5:08:9b:5e:d2:39:91:df: 39:4a:ac:70:6e:3a:03:96:ed:d9:5e:c0:22:c4:4f:ec:9c:69: 13:bd:ab:9f:00:ce:32:17:e2:36:8b:4a:b3:aa:c5:f6:da:3d: f4:5f:12:9a:0c:24:fb:bf:c3:1a:38:76:4d:b8:e6:91:c4:4c: 3c:af:68:fd:61:6a:94:fa:97:f6:e0:b8:74:50:3c:90:28:dd: 38:22:b8:5b:38:f4:39:60:44:32:4b:21:2f:40:50:3e:6a:37: e2:8b:d4:5d:4a:46:5a:31:a3:a1:2f:ce:0f:b1:f1:a9:37:c5: e0:76:c9:bc:f6:00:0e:84:8e:0e:79:55:66:f9:42:a2:de:87: 1c:3d:f0:6d:88:fb:14:53:f5:76:45:4b:6f:0d:67:a4:54:22: f4:99:d5:7f:ee:b3:44:df:1a:f3:eb:b5:c3:d0:a4:da:77:44: 4c:57:95:7d:cb:58:5c:67:87:a4:8a:d6:ed:6f:b0:5b:40:c9: 36:b5:61:e8:a7:51:65:ce:13:08:0c:e1:c2:51:5a:03:11:7c: bf:09:06:5e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RUEwMzExMC8GA1UEBRMoODlFMzY5M0I3MTIzNjhCMEZBQ0U2QkE0RTQ2Nzk3MDhB RjM5MzhCNTAeFw0yNjA1MTMwOTA1MTBaFw0yNjA1MjAwOTA1MTBaMBgxFjAUBgNV BAMTDTZhMDQzZWM3LTRmNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeLY5iA+h/TEVpF6Uqnu/aoZ8cW7YAGF8R1cw3FHQcHqQW1M47flRJXn8wzXKP Gf7AeU7xTud04kUIe8T4beXV9+Ebu2NSTBuvs2pIAcBTiJXI3smmhTMYNTjiGrJA IaZuOfMNxzjsE1Do5R4+AtL8n7/o6znb3fvUvmcNpU8kG+nwep6IHjhzvdeILSls 3fMaS81KTGQALvAS171OO/1a/Sr+QYdzax1E1pfQpx8y3z6t+ZwbWj35uf5YbyaN xiH7fHDRvUmU/9fAeyRPxQRcnmQCBElC42L/xiwhHxvNKby6emovl0xdrMqDF/R9 WFxuy/kJWOaac+cJFrcal/K9AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUzopWzZCY FxOKLeYP0oroCvWI5U4wHwYDVR0jBBgwFoAUieNpO3EjaLD6zmuk5GeXCK85OLUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFQTAzL0FFNzA5QTBDMjRE QzExRjFBQUY1QjM0QUFEODMzNzczL2llTnBPM0VqYUxENnptdWs1R2VYQ0s4NU9M VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaWVOcE8zRWphTEQ2em11azVHZVhDSzg1T0xVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF QTAzL0FFNzA5QTBDMjREQzExRjFBQUY1QjM0QUFEODMzNzczL2llTnBPM0VqYUxE NnptdWs1R2VYQ0s4NU9MVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAjsO8CCPlaRzufYt4iPzs/y4cumG1JT0KzlLRgPTzSdTWarnNM8f3IXkCwhrAg xQibXtI5kd85SqxwbjoDlu3ZXsAixE/snGkTvaufAM4yF+I2i0qzqsX22j30XxKa DCT7v8MaOHZNuOaRxEw8r2j9YWqU+pf24Lh0UDyQKN04IrhbOPQ5YEQySyEvQFA+ ajfii9RdSkZaMaOhL84PsfGpN8Xgdsm89gAOhI4OeVVm+UKi3occPfBtiPsUU/V2 RUtvDWekVCL0mdV/7rNE3xrz67XD0KTad0RMV5V9y1hcZ4ekitbtb7BbQMk2tWHo p1FlzhMIDOHCUVoDEXy/CQZe -----END CERTIFICATE-----Generated at Wed May 13 11:45:08 2026 by rpki-client