$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: xHp6gtck0ZVAg40V7hpha3dB4VYPHhtjvq0gZhY/ukI= Subject key identifier: 9D:25:EB:33:6D:5E:D8:01:22:A3:D9:DC:6F:AE:1F:84:3F:9E:20:B2 Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 04C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 04B5 Signing time: Wed 13 May 2026 00:00:28 +0000 Manifest this update: Wed 13 May 2026 00:00:28 +0000 Manifest next update: Wed 20 May 2026 00:00:28 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: NzaGC5czOvkXMhi9+i/Hf/Ja/2CcqqTa86lydBILIEs=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: 9llJReApVBmo5bvUcRrTyqYgxX0J7Rw+SzZuoT8YjSw=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: UZnHMueWtrpb+JywnXsopY8oC5x4rGsb8m2Kk1OPC6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1219 (0x4c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: May 13 00:00:28 2026 GMT Not After : May 20 00:00:28 2026 GMT Subject: CN=6a03bf1c-6bab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:a7:91:ce:a9:96:6e:1f:e5:bc:86:57:d0:ce: d6:be:fd:e0:55:df:42:10:ef:b4:33:cd:75:15:e6: cc:a7:e8:20:bc:bf:d7:38:6b:00:8b:b1:90:f6:6d: b5:4e:8b:fb:e3:68:2d:5c:54:2b:5c:b7:c7:f7:f4: 23:47:b3:c3:38:ec:63:3e:e9:a2:12:2c:06:67:ea: fc:de:6a:43:ec:45:2b:d4:17:6d:e7:05:ea:cc:fc: 1b:99:13:d4:2d:9b:d4:ee:32:98:42:4b:c3:28:d9: 5e:65:3e:cb:94:d8:55:08:d8:b8:98:64:d7:f4:3f: 22:d5:64:4c:2d:e6:eb:65:66:17:57:8b:a3:7a:7c: a0:46:76:37:47:a2:c4:db:c0:62:b4:06:06:cb:85: 45:33:72:ce:35:f0:34:e2:38:39:3d:ed:f5:9a:de: d5:9d:f1:1b:ec:a0:5b:87:5e:06:d5:11:3a:c7:8a: 7f:81:c7:b3:51:8f:df:e9:fa:9e:b1:2b:d3:69:d7: b6:4b:9d:81:11:5c:b6:f4:a0:b1:09:34:f2:82:f6: 4a:67:99:d0:c1:68:3c:48:6c:be:d5:29:70:26:3f: 2c:01:9e:99:a0:e3:70:c6:92:3b:9c:76:9b:f4:c0: f9:f8:44:cd:03:6b:f7:aa:00:c0:03:28:a1:b0:76: d6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:25:EB:33:6D:5E:D8:01:22:A3:D9:DC:6F:AE:1F:84:3F:9E:20:B2 X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0c:92:71:04:5c:f3:8b:c7:e6:21:8c:b0:fb:72:35:d7:94: c1:8c:77:0e:44:25:1f:2f:89:2b:99:23:da:d0:b7:32:6c:dc: 4d:f2:ef:e7:68:f3:1e:a7:bf:96:00:db:96:7a:c5:b3:8e:15: bd:89:c7:79:65:a1:f1:48:d7:c9:9e:fd:c1:c2:e6:0c:45:0a: 65:fc:f6:a3:17:b3:b7:67:40:3a:80:cf:7d:16:06:b4:e9:9d: 69:e3:75:aa:fb:4c:7f:43:df:c1:4f:57:fa:45:cc:94:5b:95: cf:27:94:ff:ad:71:3e:6c:5f:c0:45:20:9c:5d:5e:57:66:25: c5:3d:6c:27:ac:5b:39:10:a9:f4:f4:7e:9f:49:5e:04:20:d8: af:0c:a8:2c:2d:b9:bd:78:86:85:c9:16:09:fd:ca:f7:60:50: 75:ca:b1:ad:a5:f0:7f:c1:22:cf:60:d4:45:4d:19:5b:17:33: f5:29:75:a2:c2:37:78:96:41:ed:1a:17:94:0f:55:53:ee:b1: af:2e:55:3e:ed:10:75:16:7d:50:af:52:09:8a:52:7b:fd:1f: 79:b4:8f:ce:fe:7c:f3:fb:ed:1b:56:fc:c1:92:96:f9:07:0a: d9:ec:78:15:32:23:88:3a:97:1e:19:fa:bf:32:90:0f:70:c4: 65:f3:92:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjYwNTEzMDAwMDI4WhcNMjYwNTIwMDAwMDI4WjAYMRYwFAYD VQQDEw02YTAzYmYxYy02YmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkaeRzqmWbh/lvIZX0M7Wvv3gVd9CEO+0M811FebMp+ggvL/XOGsAi7GQ9m21 Tov742gtXFQrXLfH9/QjR7PDOOxjPumiEiwGZ+r83mpD7EUr1Bdt5wXqzPwbmRPU LZvU7jKYQkvDKNleZT7LlNhVCNi4mGTX9D8i1WRMLebrZWYXV4ujenygRnY3R6LE 28BitAYGy4VFM3LONfA04jg5Pe31mt7VnfEb7KBbh14G1RE6x4p/gcezUY/f6fqe sSvTade2S52BEVy29KCxCTTygvZKZ5nQwWg8SGy+1SlwJj8sAZ6ZoONwxpI7nHab 9MD5+ETNA2v3qgDAAyihsHbW2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ0l6zNt XtgBIqPZ3G+uH4Q/niCyMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApAyScQRc84vH5iGMsPtyNdeUwYx3DkQlHy+JK5kj2tC3MmzcTfLv52jzHqe/ lgDblnrFs44VvYnHeWWh8UjXyZ79wcLmDEUKZfz2oxezt2dAOoDPfRYGtOmdaeN1 qvtMf0PfwU9X+kXMlFuVzyeU/61xPmxfwEUgnF1eV2YlxT1sJ6xbORCp9PR+n0le BCDYrwyoLC25vXiGhckWCf3K92BQdcqxraXwf8Eiz2DURU0ZWxcz9Sl1osI3eJZB 7RoXlA9VU+6xry5VPu0QdRZ9UK9SCYpSe/0febSPzv588/vtG1b8wZKW+QcK2ex4 FTIjiDqXHhn6vzKQD3DEZfOSuw== -----END CERTIFICATE-----Generated at Wed May 13 16:34:46 2026 by rpki-client