$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: I1vQ5Dd3vLsTgWND6ljy788tb0S67IIR+uYHnqYOrEw= Subject key identifier: 87:46:F0:95:F7:3B:53:7E:0E:4E:7C:BE:8E:0B:6E:17:3E:DD:61:4A Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0568 Signing time: Tue 12 May 2026 23:28:19 +0000 Manifest this update: Tue 12 May 2026 23:28:18 +0000 Manifest next update: Tue 19 May 2026 23:28:18 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: 32ditRxIoEa2SZhryNIcX9ZkmmkY5m9xMaxh2lAOFRE=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: May 12 23:28:18 2026 GMT Not After : May 19 23:28:18 2026 GMT Subject: CN=6a03b793-9101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ed:62:cb:6c:62:1f:64:1b:5a:52:26:77:b5: 2d:76:ff:c8:52:6c:d3:e6:f3:bc:70:5c:9d:72:41: e3:7d:41:c8:53:e3:1e:d7:4e:cc:2b:6c:27:09:3e: 91:0d:71:4c:31:53:f9:e9:e7:ea:e7:31:df:19:a9: fa:ff:fb:dd:aa:c6:30:02:5d:11:5b:2f:84:7b:81: 3b:cd:e3:14:7c:61:e7:37:d7:37:42:7e:1b:db:3d: 18:ec:43:56:a9:f7:b7:40:9a:9e:5c:7f:2e:bd:92: 32:23:df:b3:7c:6f:e4:c5:6c:37:9e:7f:5d:16:bc: b3:38:dc:5e:88:78:b9:68:90:78:b6:cd:62:07:c6: e1:f2:80:66:22:d7:66:e1:38:b9:05:c3:4f:25:2b: 69:c9:f8:c9:78:86:b6:95:78:24:66:06:73:0b:20: 04:a8:fc:b1:9e:d4:ac:f2:42:51:91:f8:12:8d:20: 14:00:c8:5b:21:77:65:d6:d9:5c:a6:22:8b:0a:40: f8:43:6d:7a:ad:c3:2e:72:9f:c2:0a:97:30:b6:19: cd:a4:85:b3:2c:cf:a4:bd:0b:f7:ab:e2:f0:0f:84: 00:5e:d1:ee:c3:ee:78:98:a9:a3:60:6e:72:02:f6: 44:c0:27:41:46:9c:6f:fa:73:11:43:37:f5:71:22: 0f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:46:F0:95:F7:3B:53:7E:0E:4E:7C:BE:8E:0B:6E:17:3E:DD:61:4A X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:fe:f6:3d:1a:d2:2b:de:59:05:94:76:37:c5:f6:b5:cf:3f: 36:c9:2e:9f:a2:76:9b:85:e8:76:cb:6f:9e:59:03:a3:ba:76: 7b:b8:5e:c5:1b:c1:73:ca:92:e1:9d:44:61:b5:a7:f1:08:3a: 92:c6:11:fd:51:1b:a8:a2:96:9b:92:62:fc:aa:cc:9a:70:52: ad:c0:d8:a0:f6:51:d8:5c:e4:7a:24:d0:ba:a6:ff:9f:d9:dc: 19:4b:78:eb:75:0c:12:50:b7:65:18:09:bd:35:89:fe:1f:95: a8:bc:4d:5b:53:32:26:71:ef:d0:ef:80:a6:7f:4b:cb:63:95: 21:1a:b9:cd:b6:b8:de:89:93:bb:e4:2b:5f:d9:4b:f3:8a:6f: 5f:14:1d:38:48:f6:f4:56:fb:23:b5:64:7d:07:1b:a1:ac:6f: 69:55:b3:74:71:84:eb:d6:2c:d0:90:ec:de:d7:25:57:13:ee: 8a:14:20:49:57:02:80:5d:d2:e5:ee:8e:6f:3d:e2:7b:e1:e1: 52:bb:c6:ca:16:8c:38:8b:06:d3:3d:4e:ac:bb:8a:c0:83:87: 34:a2:73:d6:52:4f:1b:7c:0a:e5:d3:02:d7:dc:dd:ed:ff:ad: 3f:ad:71:78:7b:91:4c:12:01:67:61:49:f6:a8:f0:ff:31:04: 24:61:2b:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwNTEyMjMyODE4WhcNMjYwNTE5MjMyODE4WjAYMRYwFAYD VQQDEw02YTAzYjc5My05MTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2O1iy2xiH2QbWlImd7Utdv/IUmzT5vO8cFydckHjfUHIU+Me107MK2wnCT6R DXFMMVP56efq5zHfGan6//vdqsYwAl0RWy+Ee4E7zeMUfGHnN9c3Qn4b2z0Y7ENW qfe3QJqeXH8uvZIyI9+zfG/kxWw3nn9dFryzONxeiHi5aJB4ts1iB8bh8oBmItdm 4Ti5BcNPJStpyfjJeIa2lXgkZgZzCyAEqPyxntSs8kJRkfgSjSAUAMhbIXdl1tlc piKLCkD4Q216rcMucp/CCpcwthnNpIWzLM+kvQv3q+LwD4QAXtHuw+54mKmjYG5y AvZEwCdBRpxv+nMRQzf1cSIPfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIdG8JX3 O1N+Dk58vo4Lbhc+3WFKMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASf72PRrSK95ZBZR2N8X2tc8/Nskun6J2m4XodstvnlkDo7p2e7hexRvBc8qS 4Z1EYbWn8Qg6ksYR/VEbqKKWm5Ji/KrMmnBSrcDYoPZR2FzkeiTQuqb/n9ncGUt4 63UMElC3ZRgJvTWJ/h+VqLxNW1MyJnHv0O+Apn9Ly2OVIRq5zba43omTu+QrX9lL 84pvXxQdOEj29Fb7I7VkfQcboaxvaVWzdHGE69Ys0JDs3tclVxPuihQgSVcCgF3S 5e6Obz3ie+HhUrvGyhaMOIsG0z1OrLuKwIOHNKJz1lJPG3wK5dMC19zd7f+tP61x eHuRTBIBZ2FJ9qjw/zEEJGErPA== -----END CERTIFICATE-----Generated at Wed May 13 02:22:59 2026 by rpki-client