$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA03/CBDFF6AA24DC11F1AAF5B34AAD833773/_d0zZyPk_yht6VYjX0y7nlvItHs.mft File: _d0zZyPk_yht6VYjX0y7nlvItHs.mft (raw, json) Hash identifier: CWBhVsBE2uG8wEi1a584w7NynrfoEdOGxeK/bnUE0R8= Subject key identifier: BB:57:52:EF:C2:78:BB:C4:EA:DC:FD:DB:B5:A4:36:A9:A9:8F:72:88 Authority key identifier: FD:DD:33:67:23:E4:FF:28:6D:E9:56:23:5F:4C:BB:9E:5B:C8:B4:7B Certificate issuer: /CN=A911EA03/serialNumber=FDDD336723E4FF286DE956235F4CBB9E5BC8B47B Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_d0zZyPk_yht6VYjX0y7nlvItHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA03/CBDFF6AA24DC11F1AAF5B34AAD833773/_d0zZyPk_yht6VYjX0y7nlvItHs.mft Manifest number: 20 Signing time: Wed 13 May 2026 09:05:08 +0000 Manifest this update: Wed 13 May 2026 09:05:08 +0000 Manifest next update: Wed 20 May 2026 09:05:08 +0000 Files and hashes: 1: _d0zZyPk_yht6VYjX0y7nlvItHs.crl (hash: 2lSrU5wu8BXmlz2LwhLd4j6d7qUj0e5A2WUID2FveK4=) 2: 2789337224DD11F19E4B5BF6AD833773.roa (hash: PQr+ebVrtCzdXKAWNzsRyzxT+aGxBF4TMLTLw4pn3Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA03/CBDFF6AA24DC11F1AAF5B34AAD833773/_d0zZyPk_yht6VYjX0y7nlvItHs.crl rsync://rpki.apnic.net/member_repository/A911EA03/CBDFF6AA24DC11F1AAF5B34AAD833773/_d0zZyPk_yht6VYjX0y7nlvItHs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_d0zZyPk_yht6VYjX0y7nlvItHs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA03, serialNumber=FDDD336723E4FF286DE956235F4CBB9E5BC8B47B Validity Not Before: May 13 09:05:08 2026 GMT Not After : May 20 09:05:08 2026 GMT Subject: CN=6a043ec4-6cad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:72:f4:8c:c6:f5:12:ad:68:46:48:16:a4:74: 11:cd:40:47:2f:80:a3:3e:19:03:df:51:56:12:b5: aa:48:5e:63:c8:87:10:cc:af:25:f3:2b:63:37:d6: c0:99:68:d0:ec:1e:7a:bc:06:54:ac:d4:c9:4a:3f: 59:db:44:27:26:f7:31:88:0b:20:be:92:c7:c7:e3: 03:ad:56:3f:73:c7:df:f5:a2:24:c1:03:1f:93:67: dd:c3:39:2c:71:3c:24:9c:2c:17:31:46:27:78:ba: 04:8d:cf:67:59:6b:af:dc:67:73:5c:0a:92:9b:82: 7b:9b:7c:4d:e8:10:02:e3:c3:26:8b:6e:df:cf:4f: 7d:90:36:69:9e:dc:12:3f:e6:cd:1c:04:f7:dc:ef: 3d:26:4c:24:6e:6f:dc:48:10:6c:65:42:9c:1c:be: 26:ab:e0:d1:39:e5:08:d3:d0:0f:cd:11:ee:f2:38: 89:22:6d:ca:6c:5c:4e:50:ca:24:6f:44:d3:41:03: 9b:bb:b7:24:07:18:72:8f:3b:a0:96:9a:10:9d:9e: a3:38:e9:7f:86:78:6b:d2:6f:0a:91:51:b8:19:f8: 88:0f:40:02:36:26:d0:f1:b2:74:2f:03:fa:d1:2c: 99:4e:bb:67:51:d6:04:a4:81:bd:16:23:c3:c5:7f: 79:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:52:EF:C2:78:BB:C4:EA:DC:FD:DB:B5:A4:36:A9:A9:8F:72:88 X509v3 Authority Key Identifier: keyid:FD:DD:33:67:23:E4:FF:28:6D:E9:56:23:5F:4C:BB:9E:5B:C8:B4:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA03/CBDFF6AA24DC11F1AAF5B34AAD833773/_d0zZyPk_yht6VYjX0y7nlvItHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_d0zZyPk_yht6VYjX0y7nlvItHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA03/CBDFF6AA24DC11F1AAF5B34AAD833773/_d0zZyPk_yht6VYjX0y7nlvItHs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:c5:f5:22:a8:81:d8:36:3a:40:60:8a:3d:3d:d1:51:42:51: b5:df:0a:e7:80:61:44:64:51:5a:09:69:72:a1:71:94:ab:25: b7:70:62:31:19:b2:05:5c:0f:84:67:91:2f:75:13:fe:19:da: 34:ff:3a:63:59:51:22:0a:b3:bf:db:6f:fd:d1:33:aa:4f:21: f0:6c:e4:95:1d:27:66:11:11:3d:0c:f6:cf:40:85:17:a6:6b: d9:aa:cb:29:d8:dd:57:7e:67:01:eb:92:d4:66:c6:76:0b:0f: ce:75:b9:d5:fb:4f:61:87:1b:15:b0:ca:fb:7d:18:03:a6:65: b9:13:93:f7:29:2b:68:46:20:c8:18:4a:da:d6:c6:59:be:6b: e9:ee:00:5a:3f:f7:35:29:14:54:81:d9:6b:2d:ff:65:6f:43: 31:41:2b:95:dd:19:33:41:da:de:06:e2:de:3b:83:3b:ec:88: 85:25:d7:1d:5d:71:c2:eb:09:dc:8b:70:58:ba:0b:5a:ac:3e: f8:5b:5c:13:47:26:26:b7:7f:3f:2c:67:30:e6:ab:2c:eb:3a: a6:0e:fb:39:d1:ab:8e:c2:46:75:2a:ae:cb:af:4b:1b:23:b3: 53:d8:3b:41:4f:af:f0:86:9c:d4:4b:41:80:01:bd:08:74:06: 3f:18:82:86 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RUEwMzExMC8GA1UEBRMoRkRERDMzNjcyM0U0RkYyODZERTk1NjIzNUY0Q0JCOUU1 QkM4QjQ3QjAeFw0yNjA1MTMwOTA1MDhaFw0yNjA1MjAwOTA1MDhaMBgxFjAUBgNV BAMTDTZhMDQzZWM0LTZjYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCacvSMxvUSrWhGSBakdBHNQEcvgKM+GQPfUVYStapIXmPIhxDMryXzK2M31sCZ aNDsHnq8BlSs1MlKP1nbRCcm9zGICyC+ksfH4wOtVj9zx9/1oiTBAx+TZ93DOSxx PCScLBcxRid4ugSNz2dZa6/cZ3NcCpKbgnubfE3oEALjwyaLbt/PT32QNmme3BI/ 5s0cBPfc7z0mTCRub9xIEGxlQpwcviar4NE55QjT0A/NEe7yOIkibcpsXE5QyiRv RNNBA5u7tyQHGHKPO6CWmhCdnqM46X+GeGvSbwqRUbgZ+IgPQAI2JtDxsnQvA/rR LJlOu2dR1gSkgb0WI8PFf3kvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUu1dS78J4 u8Tq3P3btaQ2qamPcogwHwYDVR0jBBgwFoAU/d0zZyPk/yht6VYjX0y7nlvItHsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFQTAzL0NCREZGNkFBMjRE QzExRjFBQUY1QjM0QUFEODMzNzczL19kMHpaeVBrX3lodDZWWWpYMHk3bmx2SXRI cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvX2Qwelp5UGtfeWh0NlZZalgweTdubHZJdEhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF QTAzL0NCREZGNkFBMjREQzExRjFBQUY1QjM0QUFEODMzNzczL19kMHpaeVBrX3lo dDZWWWpYMHk3bmx2SXRIcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBIxfUiqIHYNjpAYIo9PdFRQlG13wrngGFEZFFaCWlyoXGUqyW3cGIxGbIFXA+E Z5EvdRP+Gdo0/zpjWVEiCrO/22/90TOqTyHwbOSVHSdmERE9DPbPQIUXpmvZqssp 2N1XfmcB65LUZsZ2Cw/OdbnV+09hhxsVsMr7fRgDpmW5E5P3KStoRiDIGEra1sZZ vmvp7gBaP/c1KRRUgdlrLf9lb0MxQSuV3RkzQdreBuLeO4M77IiFJdcdXXHC6wnc i3BYugtarD74W1wTRyYmt38/LGcw5qss6zqmDvs50auOwkZ1Kq7Lr0sbI7NT2DtB T6/whpzUS0GAAb0IdAY/GIKG -----END CERTIFICATE-----Generated at Wed May 13 13:21:02 2026 by rpki-client