$ rpki-client -vvf rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft File: pdThiKsl2GlB4GvF8NK-mNClCi0.mft (raw, json) Hash identifier: zatDFPBkodi7fZnN8xyobPksK+c6QeRXkxvqYQWuFyo= Subject key identifier: FE:08:8E:E4:C4:F5:BD:6F:5F:79:81:CC:24:91:52:6A:66:50:9C:E1 Authority key identifier: A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D Certificate issuer: /CN=A918E3C0/serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft Manifest number: 3A Signing time: Wed 13 May 2026 08:46:17 +0000 Manifest this update: Wed 13 May 2026 08:46:16 +0000 Manifest next update: Wed 20 May 2026 08:46:16 +0000 Files and hashes: 1: pdThiKsl2GlB4GvF8NK-mNClCi0.crl (hash: BTOg49U+d0QFNkCGbVau+V6kH7vCbD19WVRs8lL0bSo=) 2: 3EE95EC801B211F19B62C4E66C6F56BC.roa (hash: B0jnDdaxg9Qc3b+l9St8mXLfihlNO3bYzJFFHiKIOSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E3C0, serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Validity Not Before: May 13 08:46:16 2026 GMT Not After : May 20 08:46:16 2026 GMT Subject: CN=6a043a59-dfe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:80:ae:3a:90:dd:43:56:83:f5:1d:bc:50: fb:21:73:8b:5b:01:85:70:cb:33:03:fb:75:05:17: b4:d0:70:36:cc:73:ff:4d:63:39:59:ff:0f:45:e7: 92:a5:7a:38:e6:3b:f2:f7:0a:bf:61:df:70:60:81: 5f:c1:ab:51:1a:78:bd:33:af:60:28:ac:5b:e1:aa: b8:99:c6:33:e2:60:56:47:a4:2b:89:c5:dc:9f:47: 54:0a:5d:7e:e7:34:32:7d:5e:43:ea:16:34:48:56: 5c:0f:22:12:f5:be:1d:9f:57:d7:df:b9:29:1b:d0: fc:98:ec:d0:ae:7d:a9:78:77:39:35:16:86:9f:3b: 2d:0f:f9:71:6c:4f:e4:90:02:a6:db:89:6f:89:a3: 7d:28:76:b0:9f:d1:01:01:0a:e6:14:3b:b8:81:aa: 60:6f:15:3c:61:ba:2d:60:72:16:8d:29:3f:8c:8b: 38:c8:17:fe:46:e7:48:1b:c0:99:60:d2:94:49:99: d1:05:6f:2e:cb:10:38:44:01:41:ee:3d:1e:5a:2f: 8c:5a:85:73:06:21:0f:fc:31:57:d9:99:28:23:38: de:c7:b6:52:5e:c8:24:d1:39:63:bd:22:d8:99:28: c9:13:1c:28:4f:74:5d:d6:da:eb:1d:6b:6f:ce:8a: f4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:08:8E:E4:C4:F5:BD:6F:5F:79:81:CC:24:91:52:6A:66:50:9C:E1 X509v3 Authority Key Identifier: keyid:A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:2c:14:95:52:04:1f:0d:59:e3:72:9f:f7:83:ff:35:2e:c3: 20:d2:1e:f0:0d:38:7f:09:3f:de:e3:7e:7e:63:0c:fa:ce:53: 07:39:c2:f6:aa:0f:2f:cc:24:6c:10:26:7f:e4:dd:eb:21:46: 56:ac:73:95:84:73:4e:4b:5c:4a:b3:bc:28:b6:7f:2c:2b:55: b8:69:16:72:93:2f:bc:b8:f6:3e:80:ec:68:90:0d:f5:6f:08: cf:b2:b9:d4:90:2d:fb:b4:8c:9d:e3:b2:9d:e4:fc:6e:1f:67: 1b:d6:a6:cf:3b:a9:b3:60:fe:0c:cd:d4:d1:74:7f:3e:2c:75: 2b:74:cf:55:9b:98:47:04:72:42:25:55:b6:c4:55:b2:f7:2b: 40:53:23:bb:dc:00:2d:ff:2e:1a:bd:93:b3:a3:f6:e7:53:0f: 83:a9:09:b9:5f:e8:c5:5a:bc:1d:31:1e:83:f0:77:81:e1:e4: 61:8b:0c:c5:4d:88:49:fa:df:e0:7b:ed:8e:54:0f:b5:f9:26: 81:1a:c5:42:40:1a:9b:8f:53:05:50:8b:f7:98:59:32:2c:cc: 35:2a:aa:42:6d:ba:f0:f9:a6:ce:e2:ae:b1:98:6f:64:d7:c1: e3:e1:06:d7:4e:99:c1:67:f8:e6:0d:fa:74:54:a7:f1:e3:2b: 47:f7:15:d5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTNDMDExMC8GA1UEBRMoQTVENEUxODhBQjI1RDg2OTQxRTA2QkM1RjBEMkJFOThE MEE1MEEyRDAeFw0yNjA1MTMwODQ2MTZaFw0yNjA1MjAwODQ2MTZaMBgxFjAUBgNV BAMTDTZhMDQzYTU5LWRmZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjAICuOpDdQ1aD9R28UPshc4tbAYVwyzMD+3UFF7TQcDbMc/9NYzlZ/w9F55Kl ejjmO/L3Cr9h33BggV/Bq1EaeL0zr2AorFvhqriZxjPiYFZHpCuJxdyfR1QKXX7n NDJ9XkPqFjRIVlwPIhL1vh2fV9ffuSkb0PyY7NCufal4dzk1FoafOy0P+XFsT+SQ AqbbiW+Jo30odrCf0QEBCuYUO7iBqmBvFTxhui1gchaNKT+MizjIF/5G50gbwJlg 0pRJmdEFby7LEDhEAUHuPR5aL4xahXMGIQ/8MVfZmSgjON7HtlJeyCTROWO9ItiZ KMkTHChPdF3W2usda2/OivT9AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU/giO5MT1 vW9feYHMJJFSamZQnOEwHwYDVR0jBBgwFoAUpdThiKsl2GlB4GvF8NK+mNClCi0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFM0MwLzlBOEFEODUyMDFC MTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkdsQjRHdkY4TkstbU5DbENp MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGRUaGlLc2wyR2xCNEd2RjhOSy1tTkNsQ2kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF M0MwLzlBOEFEODUyMDFCMTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkds QjRHdkY4TkstbU5DbENpMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCdLBSVUgQfDVnjcp/3g/81LsMg0h7wDTh/CT/e435+Ywz6zlMHOcL2qg8vzCRs ECZ/5N3rIUZWrHOVhHNOS1xKs7wotn8sK1W4aRZyky+8uPY+gOxokA31bwjPsrnU kC37tIyd47Kd5PxuH2cb1qbPO6mzYP4MzdTRdH8+LHUrdM9Vm5hHBHJCJVW2xFWy 9ytAUyO73AAt/y4avZOzo/bnUw+DqQm5X+jFWrwdMR6D8HeB4eRhiwzFTYhJ+t/g e+2OVA+1+SaBGsVCQBqbj1MFUIv3mFkyLMw1KqpCbbrw+abO4q6xmG9k18Hj4QbX TpnBZ/jmDfp0VKfx4ytH9xXV -----END CERTIFICATE-----Generated at Wed May 13 15:38:22 2026 by rpki-client