$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: 4nrbz1S+Qflq9knZdmm5efIIvKVuqSL0Wo51cweduE4= Subject key identifier: 6F:A6:8E:69:F6:58:D7:75:4C:2A:68:A4:AB:28:9F:F1:BF:D7:0D:25 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 272B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 25F5 Signing time: Tue 12 May 2026 15:45:29 +0000 Manifest this update: Tue 12 May 2026 15:45:28 +0000 Manifest next update: Tue 19 May 2026 15:45:28 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: n5BRlaVW4B34Bkfc71NbwN/+5FJCk4r+dZCCGlm8aEk=) 2: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: Dg/YVoaAbQDeMOZ225L2eC6YXpKJAjiybrKz9YFG+0w=) 3: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: AHfY7AUJpWe7BNWUNT/uLmoUme06v0hAUNHbmnBADSc=) 4: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: uifIApbHfV42HS+k8rHXkfR4eC5owLbdOciccVTBlF8=) 5: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: 1rZWgbUmjxQN06CeOuGX07QdWjTq8x0pS2P/AZOZPKA=) 6: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: Spot7p9zSNAAsEMFmZpLPx1zmvfxVQZv9xfzDFvYL6o=) 7: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: EsFL7ZLG4qzCWyTx81VJ4FIJ+vovxCZrLT1BVweKgqc=) 8: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: 8YUEuPh3TxbLBkrRsi2o2BfYfS5T4DERKvY1wpAF8Lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10027 (0x272b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: May 12 15:45:28 2026 GMT Not After : May 19 15:45:28 2026 GMT Subject: CN=6a034b18-f816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7b:ee:39:96:bd:d5:f0:ee:48:76:00:50:fd: fe:c9:1f:a5:c2:7d:34:cc:43:ac:47:94:2c:cc:2c: 4a:55:0c:a8:44:74:f5:60:3b:9e:12:e4:5e:e6:c5: 07:f1:16:82:2f:79:83:bb:05:e0:38:75:ca:7a:84: cb:8c:dd:d0:b7:b4:de:53:5f:30:fe:e3:b7:51:b3: 75:65:05:5a:57:cc:ee:a2:4a:ba:be:50:a5:6a:b9: 68:c4:7d:00:10:de:5f:52:5e:7d:36:46:dd:1e:8f: 05:2a:87:5b:18:53:8c:b6:04:6d:8f:a9:6d:a2:58: 6e:51:24:55:95:22:e5:12:35:b9:ec:93:4b:b2:a7: c7:b5:13:d6:39:f6:06:65:a8:70:c3:bb:b7:1f:87: 6b:64:c0:15:1c:7a:ca:9a:3f:b4:3d:92:7a:5c:65: 45:0f:1e:3e:c5:d1:3f:34:e0:2e:c4:c2:02:cc:cd: 1a:2c:c9:69:5b:c9:f0:d4:6b:28:f1:a1:41:e1:bf: c0:20:7f:8d:fc:0f:35:76:08:f5:97:15:73:f4:45: 38:c2:91:22:d5:b1:bb:87:93:86:65:02:f2:c5:03: bd:61:fc:6a:2e:40:1c:4a:66:89:8a:15:79:d7:6a: b1:11:ed:2a:29:d8:d8:f8:4a:e2:bd:8a:86:4c:aa: f9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A6:8E:69:F6:58:D7:75:4C:2A:68:A4:AB:28:9F:F1:BF:D7:0D:25 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:45:87:6a:72:5d:10:e4:0c:c0:16:a3:7e:00:d1:07:6e:a8: b5:49:51:cf:38:b1:02:92:10:3f:04:15:b0:dd:db:05:a8:dc: 56:68:3c:fb:f6:4b:c6:ee:5b:d9:56:6f:4b:3a:d3:a5:04:8a: 26:06:c0:26:19:d8:fb:0c:07:ee:06:c3:ba:2a:66:26:56:8a: 90:04:b8:dd:57:58:6f:65:c9:3c:f4:01:ab:c1:e7:38:9e:0b: f9:58:e0:fa:bd:e2:56:0e:cc:89:66:80:6f:6d:42:06:88:75: 9e:e8:12:e5:73:53:d3:60:15:37:00:bd:81:52:f6:24:f7:55: f0:d4:ea:b0:83:ad:6f:0e:d2:32:31:28:28:31:d0:b4:d9:b1: 83:9d:70:29:a1:6b:0a:8e:07:92:e2:1a:34:04:42:6a:95:59: ce:c6:12:da:c9:7c:3f:d3:5c:dc:9a:c5:8a:5d:43:23:28:2b: 28:a0:df:bf:7b:59:89:6b:e7:55:8d:d0:51:7c:24:7e:41:f7: 95:09:09:02:1d:16:a0:c3:74:56:1c:0a:d6:53:60:d2:ab:5b: 66:6d:ca:23:8a:0b:55:80:47:9f:52:9e:c1:cb:f5:de:83:d4: 27:11:7d:a1:1c:41:04:53:58:a2:10:93:1a:b2:5a:d7:c1:ce: b9:73:00:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjYwNTEyMTU0NTI4WhcNMjYwNTE5MTU0NTI4WjAYMRYwFAYD VQQDEw02YTAzNGIxOC1mODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjnvuOZa91fDuSHYAUP3+yR+lwn00zEOsR5QszCxKVQyoRHT1YDueEuRe5sUH 8RaCL3mDuwXgOHXKeoTLjN3Qt7TeU18w/uO3UbN1ZQVaV8zuokq6vlClarloxH0A EN5fUl59NkbdHo8FKodbGFOMtgRtj6ltolhuUSRVlSLlEjW57JNLsqfHtRPWOfYG Zahww7u3H4drZMAVHHrKmj+0PZJ6XGVFDx4+xdE/NOAuxMICzM0aLMlpW8nw1Gso 8aFB4b/AIH+N/A81dgj1lxVz9EU4wpEi1bG7h5OGZQLyxQO9YfxqLkAcSmaJihV5 12qxEe0qKdjY+ErivYqGTKr5EwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG+mjmn2 WNd1TCpopKson/G/1w0lMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS0WHanJdEOQMwBajfgDRB26otUlRzzixApIQPwQVsN3bBajcVmg8+/ZLxu5b 2VZvSzrTpQSKJgbAJhnY+wwH7gbDuipmJlaKkAS43VdYb2XJPPQBq8HnOJ4L+Vjg +r3iVg7MiWaAb21CBoh1nugS5XNT02AVNwC9gVL2JPdV8NTqsIOtbw7SMjEoKDHQ tNmxg51wKaFrCo4HkuIaNARCapVZzsYS2sl8P9Nc3JrFil1DIygrKKDfv3tZiWvn VY3QUXwkfkH3lQkJAh0WoMN0VhwK1lNg0qtbZm3KI4oLVYBHn1Kewcv13oPUJxF9 oRxBBFNYohCTGrJa18HOuXMAGQ== -----END CERTIFICATE-----Generated at Wed May 13 13:37:11 2026 by rpki-client