$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: rf6fPYelmjlObR7X8zYlHb8UQdQc0pgZNJ+rXSpqQ2s= Subject key identifier: 89:89:B5:A1:C4:13:EB:E8:8C:DC:E2:C7:3D:41:D9:C3:0C:1D:59:2A Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0CA2 Signing time: Tue 12 May 2026 18:36:19 +0000 Manifest this update: Tue 12 May 2026 18:36:18 +0000 Manifest next update: Tue 19 May 2026 18:36:18 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: AvxcdC0qajuW5bjOcMp8yOPVK9LMwKHd2vHyHz9zzYc=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: 2ZECssZFKej2Bnmujg65SvPR+m2K68FZcUfUc+ikvVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: May 12 18:36:18 2026 GMT Not After : May 19 18:36:18 2026 GMT Subject: CN=6a037323-f5ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:57:24:f2:bc:d5:e1:64:86:12:fa:23:33:00: bb:2b:8b:2a:c1:95:13:91:78:e7:1c:07:95:f6:58: 99:85:01:86:08:ea:d2:0f:4d:d4:7e:c0:e8:14:ac: bf:0b:ba:df:5c:d8:6f:f0:51:54:97:89:d8:bf:ba: 1b:b4:58:3d:41:e9:40:82:d9:de:fa:71:f2:08:1f: c2:c9:3c:cd:57:84:96:ad:15:73:e6:10:00:3d:01: 26:3e:53:58:21:24:9c:a4:34:ae:cb:1f:d0:2c:00: e8:a3:5f:cd:1f:07:42:9f:52:0d:3b:3d:6c:98:21: 85:2a:1f:70:ab:b8:10:9a:3a:79:d1:dc:42:66:a9: 97:39:05:b5:05:8c:ad:2c:aa:05:60:1d:70:8c:1c: 60:c4:a8:e1:be:e5:aa:94:08:53:56:8c:ec:3a:e9: ac:84:89:b0:e2:43:2b:9a:f9:c8:46:e2:6d:0b:32: 10:7e:05:99:30:3b:fe:cf:5b:91:34:5d:84:66:0d: 6f:fb:06:d2:fa:f4:a1:d6:2f:88:e2:92:bc:64:fc: d1:01:bc:34:4f:c4:95:2f:41:91:d5:0f:14:6c:ce: 48:b8:4a:95:83:d0:57:21:a5:93:5c:39:60:89:6f: 82:34:ae:8b:53:f4:ba:d8:5a:20:77:c3:47:52:d3: 74:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:89:B5:A1:C4:13:EB:E8:8C:DC:E2:C7:3D:41:D9:C3:0C:1D:59:2A X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0c:c8:68:76:56:5b:3a:22:a8:2e:58:c6:95:55:19:dc:4c: ba:25:d1:7f:69:b4:bf:82:9a:42:53:8e:26:71:41:32:6c:1d: 14:f2:65:26:28:70:75:52:62:b6:91:bf:6e:4e:e9:9f:9d:50: d6:97:9a:4a:12:57:90:13:a9:5e:27:af:be:2c:72:cc:83:5f: 13:49:0c:22:4b:b1:8b:2d:7d:5d:61:49:11:0e:4a:c0:de:6f: 09:c7:49:e1:18:b7:a0:a1:93:f0:13:ac:cf:03:33:e6:17:33: 43:0b:55:e8:17:6e:83:74:48:82:70:23:1e:83:85:3f:3f:9d: 68:37:a4:04:d8:b5:05:a9:21:bd:b0:73:67:7a:1e:76:b0:01: fa:83:6d:d2:31:db:59:c1:89:8b:ba:39:76:da:15:32:a4:e6: d7:e8:00:6d:2b:53:db:d2:ff:42:ac:7f:ae:6a:09:a3:12:26: 66:72:b2:c6:8e:40:22:c1:28:69:46:52:3c:80:50:db:30:fb: ca:85:27:bd:d9:17:78:b4:62:ad:fb:2a:57:2e:68:0e:0b:5e: 67:b2:78:0e:1a:bf:bb:05:73:22:d3:7c:8c:d6:f6:7f:3e:04: e8:81:aa:28:2b:f4:2d:a5:f9:e3:bc:4d:f8:65:ae:77:8d:1c: 11:0d:d0:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwNTEyMTgzNjE4WhcNMjYwNTE5MTgzNjE4WjAYMRYwFAYD VQQDEw02YTAzNzMyMy1mNWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVck8rzV4WSGEvojMwC7K4sqwZUTkXjnHAeV9liZhQGGCOrSD03UfsDoFKy/ C7rfXNhv8FFUl4nYv7obtFg9QelAgtne+nHyCB/CyTzNV4SWrRVz5hAAPQEmPlNY ISScpDSuyx/QLADoo1/NHwdCn1INOz1smCGFKh9wq7gQmjp50dxCZqmXOQW1BYyt LKoFYB1wjBxgxKjhvuWqlAhTVozsOumshImw4kMrmvnIRuJtCzIQfgWZMDv+z1uR NF2EZg1v+wbS+vSh1i+I4pK8ZPzRAbw0T8SVL0GR1Q8UbM5IuEqVg9BXIaWTXDlg iW+CNK6LU/S62Fogd8NHUtN05wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFImJtaHE E+vojNzixz1B2cMMHVkqMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApAzIaHZWWzoiqC5YxpVVGdxMuiXRf2m0v4KaQlOOJnFBMmwdFPJlJihwdVJi tpG/bk7pn51Q1peaShJXkBOpXievvixyzINfE0kMIkuxiy19XWFJEQ5KwN5vCcdJ 4Ri3oKGT8BOszwMz5hczQwtV6Bdug3RIgnAjHoOFPz+daDekBNi1BakhvbBzZ3oe drAB+oNt0jHbWcGJi7o5dtoVMqTm1+gAbStT29L/Qqx/rmoJoxImZnKyxo5AIsEo aUZSPIBQ2zD7yoUnvdkXeLRirfsqVy5oDgteZ7J4Dhq/uwVzItN8jNb2fz4E6IGq KCv0LaX547xN+GWud40cEQ3QeA== -----END CERTIFICATE-----Generated at Wed May 13 16:01:06 2026 by rpki-client