$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: GVYrIbqm6y4YGC1SO8KhvcJOgcF8a2Y5O8Ff2OAbOlY= Subject key identifier: C1:58:47:E8:5D:6C:12:8F:18:10:ED:C6:C4:39:62:08:D3:45:CC:52 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0F37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0F2C Signing time: Tue 12 May 2026 17:36:11 +0000 Manifest this update: Tue 12 May 2026 17:36:10 +0000 Manifest next update: Tue 19 May 2026 17:36:10 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: hZtfIPJLGXA1bgh7Ro4ZBij+N6wUMfpqAGbup3Bv+Fc=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: epuRJDNpLBRjInLcr8wNqAbigHvQWwNVcLarPZoddFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3895 (0xf37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: May 12 17:36:10 2026 GMT Not After : May 19 17:36:10 2026 GMT Subject: CN=6a03650a-24b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7d:d7:00:cf:a0:b7:17:ca:f9:be:cb:39:da: a9:f5:e2:78:85:86:36:7c:b4:0e:7b:30:26:f8:72: 1c:31:8c:42:5b:2b:67:31:36:67:78:4a:3b:43:bd: eb:76:f2:17:43:71:f0:b6:9f:19:ef:82:8a:50:1c: 38:9f:ce:c7:df:c8:a7:b1:f1:00:cf:6c:af:ca:f7: b6:6c:01:71:6c:07:63:72:e4:b2:ca:0d:74:c6:1d: ff:6e:62:8c:15:6f:55:33:e7:43:f5:9e:4a:aa:ae: 7d:1f:41:0b:0a:f1:2b:cb:b4:dd:23:0a:f1:41:09: 93:e7:72:91:f5:63:f3:38:03:a4:dc:2c:7b:82:d4: ef:c0:1b:79:c5:7c:c0:93:37:d0:d0:d7:42:cc:97: 58:eb:3c:33:0f:52:c5:55:66:91:40:24:9b:82:c3: 07:00:e2:30:3b:77:74:7d:9f:0c:13:9f:22:80:7d: 31:d3:c5:8f:b8:35:f5:11:1b:78:08:8e:ac:50:24: a4:93:8b:01:df:f9:b5:b9:a3:aa:50:47:69:07:40: aa:1a:da:d2:31:9a:59:15:d4:08:98:e4:8f:10:3b: af:32:04:e5:f1:96:32:39:49:78:2a:c5:cb:a7:2e: ed:17:45:75:4a:fb:b8:f2:80:d2:c7:bc:d0:85:f2: 99:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:58:47:E8:5D:6C:12:8F:18:10:ED:C6:C4:39:62:08:D3:45:CC:52 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d6:e6:46:72:32:3a:77:88:33:0c:e0:63:16:52:22:7a:a6: a7:a4:82:91:3e:f2:5c:19:95:37:0c:5f:3c:f8:2e:55:ab:63: cf:d2:94:6c:34:2c:8a:50:5f:00:66:56:3b:84:54:0b:02:32: 0d:47:52:e0:97:d6:c7:fe:1f:21:85:24:d7:b2:1a:18:3a:e5: f5:d7:1f:12:10:dc:e3:a8:45:c4:40:c1:db:9f:8a:35:36:c1: 84:5d:1f:ee:42:eb:80:ee:ad:ed:87:4f:96:4c:21:ca:19:86: 8f:90:b1:cc:e5:c4:22:0f:2e:b2:c1:aa:5a:ca:7a:d9:2e:70: 3b:23:b0:86:46:24:12:22:ad:77:56:47:46:95:70:0d:4c:1a: 21:09:da:b3:30:17:de:47:8f:d9:91:bb:31:58:84:84:0c:12: 7b:bd:42:7b:16:cd:9b:a1:6d:fe:0b:74:86:3b:00:e0:0a:65: de:13:9f:5d:9f:f7:92:b4:28:26:1d:49:bb:e6:bb:7a:b0:d1: db:95:25:0d:66:06:d1:85:0b:b7:c9:49:ea:7a:d1:be:02:bc: 6d:67:32:0f:4f:05:7f:f6:b2:df:51:01:8c:d8:9a:55:fb:63: 97:e2:d3:01:56:3a:4c:06:7b:bf:66:23:a6:da:af:da:ab:88: 9e:50:9a:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjYwNTEyMTczNjEwWhcNMjYwNTE5MTczNjEwWjAYMRYwFAYD VQQDEw02YTAzNjUwYS0yNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArn3XAM+gtxfK+b7LOdqp9eJ4hYY2fLQOezAm+HIcMYxCWytnMTZneEo7Q73r dvIXQ3Hwtp8Z74KKUBw4n87H38insfEAz2yvyve2bAFxbAdjcuSyyg10xh3/bmKM FW9VM+dD9Z5Kqq59H0ELCvEry7TdIwrxQQmT53KR9WPzOAOk3Cx7gtTvwBt5xXzA kzfQ0NdCzJdY6zwzD1LFVWaRQCSbgsMHAOIwO3d0fZ8ME58igH0x08WPuDX1ERt4 CI6sUCSkk4sB3/m1uaOqUEdpB0CqGtrSMZpZFdQImOSPEDuvMgTl8ZYyOUl4KsXL py7tF0V1Svu48oDSx7zQhfKZHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMFYR+hd bBKPGBDtxsQ5YgjTRcxSMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARtbmRnIyOneIMwzgYxZSInqmp6SCkT7yXBmVNwxfPPguVatjz9KUbDQsilBf AGZWO4RUCwIyDUdS4JfWx/4fIYUk17IaGDrl9dcfEhDc46hFxEDB25+KNTbBhF0f 7kLrgO6t7YdPlkwhyhmGj5CxzOXEIg8ussGqWsp62S5wOyOwhkYkEiKtd1ZHRpVw DUwaIQnaszAX3keP2ZG7MViEhAwSe71CexbNm6Ft/gt0hjsA4Apl3hOfXZ/3krQo Jh1Ju+a7erDR25UlDWYG0YULt8lJ6nrRvgK8bWcyD08Ff/ay31EBjNiaVftjl+LT AVY6TAZ7v2Yjptqv2quInlCaYQ== -----END CERTIFICATE-----Generated at Wed May 13 09:13:04 2026 by rpki-client