$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: +FXYJaFi8920haJEeiBvWoRrr3LQR4FKL/tgGiM4Jz4= Subject key identifier: 1C:B8:4B:CA:33:7B:63:86:94:90:3B:5A:55:EE:97:FF:1F:B8:E2:2E Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 35D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3593 Signing time: Tue 12 May 2026 14:27:36 +0000 Manifest this update: Tue 12 May 2026 14:27:36 +0000 Manifest next update: Tue 19 May 2026 14:27:36 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: BSxxuOTwAoIfkEzxDmXaHdEtyLCcviITydR9/UUHKww=) 2: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: 8+OhuWCy2Q/+5EOFBaBhHTBOjwb6o2MiQFSjk3LYjzg=) 3: B16ED608D4A311F09760561DC4F9AE02.roa (hash: KTE/5UmLg1Jx7p3qXHkj9a3Zu722Q28ccyfvFDypscA=) 4: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: ZbvAqdZRdRlZ0nK19Soo+W7fZP+M1TyK82wvNdqV5u4=) 5: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: Ix+QmO0rSCT4pyJs1dGC/MTdKFeZNsFKd69IpQPvvRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13784 (0x35d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: May 12 14:27:36 2026 GMT Not After : May 19 14:27:36 2026 GMT Subject: CN=6a0338d8-e8ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d1:50:80:d6:51:80:a5:cc:95:85:74:cf:24: f8:cd:96:0d:c9:ce:e2:4a:5f:ea:4b:03:6a:5f:ee: 02:69:e3:c3:05:0a:c0:33:4b:f2:fa:c3:81:fc:1a: 5e:c9:7b:77:dc:38:81:cb:e8:82:2d:b0:a9:a6:9c: 19:93:e0:af:8f:d8:6e:33:94:65:e5:f9:1d:ea:f4: 6f:de:6c:be:8d:2f:db:97:70:97:65:d8:04:77:7e: 56:07:f7:4d:0c:87:b7:81:6b:bd:26:d9:dc:39:a0: 29:be:e7:6d:f2:c3:73:3d:4c:5f:c2:b2:df:c5:ab: a6:25:17:ce:be:f3:da:d7:a4:64:72:dd:05:50:0c: e2:f0:bc:1f:8e:dc:70:be:3e:5f:8c:7b:79:4c:05: 9f:2e:2f:fa:e1:64:ca:40:ee:59:68:81:40:6b:65: e5:0c:a8:22:32:96:f4:93:1f:56:ce:d6:0b:1d:ae: 55:34:c5:cb:bc:df:30:b9:a9:81:8e:cb:d0:18:2a: 80:d7:cf:b9:a6:1e:fe:74:d2:99:2d:01:8e:92:ff: f2:eb:d4:ce:96:b8:12:bf:09:d0:1b:eb:0f:f4:83: fd:ea:38:34:04:14:10:b4:a1:5f:4a:a5:28:4b:aa: df:3e:b4:f6:26:8d:d4:5a:6c:35:82:28:f8:a0:29: b0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B8:4B:CA:33:7B:63:86:94:90:3B:5A:55:EE:97:FF:1F:B8:E2:2E X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e2:13:31:a1:8b:15:9f:b4:0e:d1:a0:9a:8f:b5:79:91:7a: 6e:79:78:c7:2b:9b:89:3e:ee:d2:f1:b4:66:aa:46:95:a4:6c: cc:07:d6:29:1c:12:5b:d4:8f:0a:17:b3:20:7d:24:b9:d0:ee: c3:4f:ef:6a:a3:f2:3f:c8:e0:c2:7b:82:40:dc:9b:20:b7:20: 4a:fa:28:06:3a:4e:e8:4e:7d:c6:0e:b1:c8:33:b5:b4:2c:49: 86:1b:e9:4a:f5:8f:51:22:83:56:65:ee:9a:18:ad:d0:fe:a9: 3a:2b:a7:a7:61:48:09:5d:54:ed:0e:ec:5e:77:8d:57:d9:e2: 35:68:a0:a2:06:c6:9c:75:c7:d2:fd:c3:90:2d:99:68:9e:54: 14:54:3f:75:bd:c8:a9:5d:76:3d:b8:00:4e:ad:1f:b1:12:9b: b3:d1:36:39:81:77:01:07:79:aa:88:a4:1f:dc:b2:60:b6:32: 71:1e:42:81:a2:69:f9:82:8c:ec:f7:82:93:85:05:22:ef:6c: 72:4c:65:60:2b:d8:8b:8d:44:d1:9b:73:8f:00:af:b3:85:98: af:65:68:19:f3:b6:d7:68:3b:29:2e:a0:16:15:e4:44:db:76: 99:7e:b0:19:cf:2b:6d:f0:6a:b6:95:81:9e:1c:00:66:19:90: f3:0b:b7:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwNTEyMTQyNzM2WhcNMjYwNTE5MTQyNzM2WjAYMRYwFAYD VQQDEw02YTAzMzhkOC1lOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztFQgNZRgKXMlYV0zyT4zZYNyc7iSl/qSwNqX+4CaePDBQrAM0vy+sOB/Bpe yXt33DiBy+iCLbCpppwZk+Cvj9huM5Rl5fkd6vRv3my+jS/bl3CXZdgEd35WB/dN DIe3gWu9JtncOaApvudt8sNzPUxfwrLfxaumJRfOvvPa16Rkct0FUAzi8Lwfjtxw vj5fjHt5TAWfLi/64WTKQO5ZaIFAa2XlDKgiMpb0kx9WztYLHa5VNMXLvN8wuamB jsvQGCqA18+5ph7+dNKZLQGOkv/y69TOlrgSvwnQG+sP9IP96jg0BBQQtKFfSqUo S6rfPrT2Jo3UWmw1gij4oCmwlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBy4S8oz e2OGlJA7WlXul/8fuOIuMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmuITMaGLFZ+0DtGgmo+1eZF6bnl4xyubiT7u0vG0ZqpGlaRszAfWKRwSW9SP ChezIH0kudDuw0/vaqPyP8jgwnuCQNybILcgSvooBjpO6E59xg6xyDO1tCxJhhvp SvWPUSKDVmXumhit0P6pOiunp2FICV1U7Q7sXneNV9niNWigogbGnHXH0v3DkC2Z aJ5UFFQ/db3IqV12PbgATq0fsRKbs9E2OYF3AQd5qoikH9yyYLYycR5CgaJp+YKM 7PeCk4UFIu9sckxlYCvYi41E0ZtzjwCvs4WYr2VoGfO212g7KS6gFhXkRNt2mX6w Gc8rbfBqtpWBnhwAZhmQ8wu3FA== -----END CERTIFICATE-----Generated at Wed May 13 03:40:28 2026 by rpki-client