$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: zMEgfv/a0si2WrsGGCXvN3lLod3TdmZTHVMJGIOxfJw= Subject key identifier: 8A:D8:CD:EB:C9:9F:A2:BF:4A:D3:36:AB:61:5E:06:65:77:3F:3B:20 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 36D9 Signing time: Tue 12 May 2026 14:25:23 +0000 Manifest this update: Tue 12 May 2026 14:25:22 +0000 Manifest next update: Tue 19 May 2026 14:25:22 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: m5jWEojcSjif1CdOVWkxtpSJ6E6v3hDVOwtYru6LZlw=) 2: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: z4MfCyr+jDttoP5VW5Vb0l643tPHIibVvGJ7ZyGfs8M=) 3: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: 548W6O4jy2t4m978fP7/vkFNV7StaszXL5cUkqOrlsQ=) 4: B6704306C9F111F08975B813C4F9AE02.roa (hash: QnDSYmh9AS+vc7/gM3qgxQlZaNKWdqAp8+Ehbtb0lnc=) 5: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 6MJI5nd76wUg6mIJiXKwgcaYmVbyO2X4VHI5tQqt2gM=) 6: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: aZB+rnqYjRl4Uc+17dt2ByemLhQ+5bYKCdCl9y70GQM=) 7: 305A13D6C9F211F0ABA27932C4F9AE02.roa (hash: NrPp83eADET8bdfQFh9hNsWD9EoYo/UsIxIfM+Xp3F8=) 8: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: qOuOZrrZglkih59X/Pjz7efqStftFhfdFn50wlzJXt4=) 9: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: KFI2tWHfw3kppvCKmuDyoJI/TXZwNEgYE/dBKADg924=) 10: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: 2nquH/Th3aV+FpaTguBv+jy8p2aXbOfhDSjXTwmNigg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14419 (0x3853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: May 12 14:25:22 2026 GMT Not After : May 19 14:25:22 2026 GMT Subject: CN=6a033853-e0bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0f:df:bd:fc:4c:76:6a:03:cf:15:3b:ac:40: c9:42:28:05:d6:35:13:06:72:6d:1c:a1:26:60:ae: 70:44:f4:55:aa:8f:9c:7e:72:9a:83:e1:9b:37:a3: d6:8a:09:d0:ae:ef:65:f8:c7:a7:a6:17:56:9b:a4: 6d:ab:4d:90:3c:ef:27:81:2f:58:67:8f:f8:ef:f2: 86:3f:ba:92:0b:89:4d:b1:9b:21:6d:35:b8:de:6f: 05:96:29:98:b6:ad:1f:70:20:83:c7:4f:fd:5b:a8: e0:51:23:de:d8:52:c5:93:56:d1:63:95:70:97:a1: a9:bd:94:73:2b:c5:f9:32:d0:10:32:d3:ae:60:40: f9:ee:8e:58:60:9f:01:58:57:b9:59:91:1b:9f:07: af:91:1a:1f:37:ac:47:63:fb:fd:e5:67:34:bd:21: 30:7a:21:83:2f:63:8f:bf:56:4b:91:74:ec:b7:b5: 4a:27:42:2b:fe:4c:27:af:c1:c8:b1:74:cf:1d:42: 43:3f:8c:96:df:01:e9:0e:06:af:86:35:71:7b:6f: 3d:52:dd:e7:f6:2c:48:b8:2b:12:21:4e:2e:5d:3a: a8:d5:70:0f:6c:3b:19:62:97:33:ee:57:9f:cb:8c: 5d:1c:ec:28:79:4b:7f:7e:27:30:4e:71:16:4d:4e: 40:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D8:CD:EB:C9:9F:A2:BF:4A:D3:36:AB:61:5E:06:65:77:3F:3B:20 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:79:7d:82:ad:5b:ef:cc:97:fe:dc:53:3d:43:82:ee:3f:f6: 3d:95:6a:86:29:10:e9:9b:0b:1b:ea:ce:47:af:f5:9b:5b:9e: 95:66:8c:1a:83:df:64:1d:ef:f8:21:1f:9f:ad:ef:c4:d8:62: aa:cb:da:dc:7f:15:1f:35:d9:1e:e0:c8:14:51:ba:f5:74:80: c6:73:2d:2e:06:85:d8:7b:45:8c:68:d2:5a:aa:17:60:5d:4f: 93:d0:b2:c1:39:eb:09:06:ce:23:b5:ec:4d:b2:a2:84:80:b1: f6:ce:25:1f:47:39:c9:c2:a5:db:df:06:29:b2:d4:6e:2c:41: 53:74:36:85:0d:f6:18:be:4c:c5:f5:02:37:2e:0a:24:f1:90: c6:b2:98:6c:09:55:3e:ce:40:d7:d2:88:26:6a:d8:44:f6:81: e9:af:51:9c:96:05:60:d0:0c:da:96:ab:b7:e9:b6:a3:57:98: 74:21:2c:4f:e9:98:d1:f7:ba:23:71:2c:d3:99:f6:a4:81:53: 7b:00:74:bf:5d:41:34:c4:e9:2e:6e:8f:5c:13:3f:de:13:20: 91:7b:3e:30:97:a4:0e:db:f6:c7:80:72:eb:94:24:bd:19:6e: e6:bb:32:8f:fb:ad:dc:a8:5c:90:c2:04:28:32:64:9d:ae:0c: 47:54:72:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjYwNTEyMTQyNTIyWhcNMjYwNTE5MTQyNTIyWjAYMRYwFAYD VQQDEw02YTAzMzg1My1lMGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQ/fvfxMdmoDzxU7rEDJQigF1jUTBnJtHKEmYK5wRPRVqo+cfnKag+GbN6PW ignQru9l+MenphdWm6Rtq02QPO8ngS9YZ4/47/KGP7qSC4lNsZshbTW43m8FlimY tq0fcCCDx0/9W6jgUSPe2FLFk1bRY5Vwl6GpvZRzK8X5MtAQMtOuYED57o5YYJ8B WFe5WZEbnwevkRofN6xHY/v95Wc0vSEweiGDL2OPv1ZLkXTst7VKJ0Ir/kwnr8HI sXTPHUJDP4yW3wHpDgavhjVxe289Ut3n9ixIuCsSIU4uXTqo1XAPbDsZYpcz7lef y4xdHOwoeUt/ficwTnEWTU5AQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIrYzevJ n6K/StM2q2FeBmV3PzsgMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoXl9gq1b78yX/txTPUOC7j/2PZVqhikQ6ZsLG+rOR6/1m1uelWaMGoPfZB3v +CEfn63vxNhiqsva3H8VHzXZHuDIFFG69XSAxnMtLgaF2HtFjGjSWqoXYF1Pk9Cy wTnrCQbOI7XsTbKihICx9s4lH0c5ycKl298GKbLUbixBU3Q2hQ32GL5MxfUCNy4K JPGQxrKYbAlVPs5A19KIJmrYRPaB6a9RnJYFYNAM2part+m2o1eYdCEsT+mY0fe6 I3Es05n2pIFTewB0v11BNMTpLm6PXBM/3hMgkXs+MJekDtv2x4By65QkvRlu5rsy j/ut3KhckMIEKDJkna4MR1Ry2g== -----END CERTIFICATE-----Generated at Wed May 13 07:47:29 2026 by rpki-client