$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: RE/SepAfiGYeTIcvf/183MNhAHB9tlP9rFgkg7RAWZc= Subject key identifier: DA:72:5D:83:AE:38:B1:5D:DA:37:0C:F5:F6:73:8D:28:15:6F:96:7A Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 35A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 356C Signing time: Tue 12 May 2026 14:44:55 +0000 Manifest this update: Tue 12 May 2026 14:44:54 +0000 Manifest next update: Tue 19 May 2026 14:44:54 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: ygBJ9DnsE6Cs7qwkQJRAeodUitL/nvQTBmGnx6oT/TQ=) 2: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) 3: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) 4: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13735 (0x35a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: May 12 14:44:54 2026 GMT Not After : May 19 14:44:54 2026 GMT Subject: CN=6a033ce6-8ca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:2e:cf:f1:d9:86:05:3f:cb:46:b3:67:8d: a5:f2:26:f2:78:93:69:58:39:59:dd:a7:bd:9a:21: 5a:96:b2:2a:de:83:60:7b:cd:85:41:5a:4e:2f:13: 93:62:d9:89:0c:30:8a:a0:21:44:94:2e:9c:08:67: 57:5b:d2:e5:ef:65:42:72:35:66:36:21:e3:7a:aa: 94:07:a0:4f:32:60:7b:90:d3:1b:28:96:65:bd:b7: a6:91:e0:bc:62:0e:e7:60:d0:a9:d8:1d:4c:50:fb: 46:4b:81:03:6b:4b:3c:29:96:2d:b0:e1:3a:18:11: de:95:e5:59:d7:e0:35:14:e7:36:ce:6c:10:73:35: 3e:6c:35:2c:15:da:fd:28:96:88:e2:fe:4f:86:26: 52:40:7e:5c:4e:12:9d:78:c4:0c:20:80:5e:83:e4: 6d:32:35:3f:ff:33:d7:fc:0c:36:6c:5e:c7:92:32: 95:cb:75:fa:72:e9:6b:52:44:d1:ea:41:4f:a4:63: e9:37:64:78:6f:95:e4:c1:70:77:26:35:b5:e4:2f: 3b:ee:eb:fb:a0:7e:e9:80:67:5d:51:79:3b:7c:d8: 4e:23:85:99:ae:7f:5c:de:c1:da:be:97:27:b4:0f: 31:a3:70:25:bc:3c:c2:24:f3:5c:76:70:e0:cf:d8: 6b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:72:5D:83:AE:38:B1:5D:DA:37:0C:F5:F6:73:8D:28:15:6F:96:7A X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:91:dd:36:63:00:ac:0b:5a:0e:94:94:60:db:64:41:17:5c: 2e:75:d9:06:91:1a:90:6b:1a:5a:a2:e0:de:7e:a7:a3:d9:0d: 3b:f7:b1:90:b3:58:33:75:98:3d:cc:72:97:ab:4c:60:92:3c: 0c:8c:01:4c:38:23:1b:7e:a4:99:56:93:2a:9a:a9:fb:d9:cd: b0:0a:70:80:e9:29:a0:72:c4:53:9b:60:9b:e4:c4:c7:b7:13: 6d:1b:d6:fd:2c:41:1b:cc:d6:f2:9a:87:a8:2b:8d:1c:28:37: 51:ef:f4:94:9b:2b:a8:67:38:ba:f8:94:06:b0:3d:fe:37:22: f0:29:83:b8:b0:c3:12:2f:52:24:ba:03:42:9a:18:d2:0f:78: 66:c1:39:c4:a3:69:36:4b:8e:d1:82:aa:c3:46:79:0a:f2:f4: 11:72:5e:51:d8:bc:1f:01:e2:c1:c7:74:88:f6:d3:b3:ae:b5: 6a:51:d0:58:66:e0:e7:9b:d4:e5:06:a9:88:15:08:28:11:89: 77:a9:db:da:03:10:0d:71:6d:43:38:8e:c5:a1:3c:6b:50:39: 29:42:f1:8e:08:17:ae:d7:1e:ca:4e:f0:81:2d:64:61:07:16: cf:d7:6e:64:4a:4d:ea:9d:9b:d9:42:4a:6d:63:53:55:e4:f0: 86:e3:28:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwNTEyMTQ0NDU0WhcNMjYwNTE5MTQ0NDU0WjAYMRYwFAYD VQQDEw02YTAzM2NlNi04Y2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoAuz/HZhgU/y0azZ42l8ibyeJNpWDlZ3ae9miFalrIq3oNge82FQVpOLxOT YtmJDDCKoCFElC6cCGdXW9Ll72VCcjVmNiHjeqqUB6BPMmB7kNMbKJZlvbemkeC8 Yg7nYNCp2B1MUPtGS4EDa0s8KZYtsOE6GBHeleVZ1+A1FOc2zmwQczU+bDUsFdr9 KJaI4v5PhiZSQH5cThKdeMQMIIBeg+RtMjU//zPX/Aw2bF7HkjKVy3X6culrUkTR 6kFPpGPpN2R4b5XkwXB3JjW15C877uv7oH7pgGddUXk7fNhOI4WZrn9c3sHavpcn tA8xo3AlvDzCJPNcdnDgz9hriQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNpyXYOu OLFd2jcM9fZzjSgVb5Z6MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMZHdNmMArAtaDpSUYNtkQRdcLnXZBpEakGsaWqLg3n6no9kNO/exkLNYM3WY Pcxyl6tMYJI8DIwBTDgjG36kmVaTKpqp+9nNsApwgOkpoHLEU5tgm+TEx7cTbRvW /SxBG8zW8pqHqCuNHCg3Ue/0lJsrqGc4uviUBrA9/jci8CmDuLDDEi9SJLoDQpoY 0g94ZsE5xKNpNkuO0YKqw0Z5CvL0EXJeUdi8HwHiwcd0iPbTs661alHQWGbg55vU 5QapiBUIKBGJd6nb2gMQDXFtQziOxaE8a1A5KULxjggXrtceyk7wgS1kYQcWz9du ZEpN6p2b2UJKbWNTVeTwhuMosw== -----END CERTIFICATE-----Generated at Wed May 13 05:41:23 2026 by rpki-client