$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: lLpuKBjPXu3GIUWu1vVdNMMQS91gBJs0ZlIMt3AeHyM= Subject key identifier: 67:CE:1C:DB:8C:F7:B7:56:43:B3:CB:F9:FA:8F:E9:F2:6E:4D:3B:1C Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0D5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0D31 Signing time: Tue 12 May 2026 18:13:19 +0000 Manifest this update: Tue 12 May 2026 18:13:19 +0000 Manifest next update: Tue 19 May 2026 18:13:19 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: FRTfgQXJ6ho+tgu9rHF5z9+GwtooXvRJTTHFTA+98Ks=) 2: 4F383CB6FF6B11F0AD4BC885576F56BC.roa (hash: wwbAK8oiejrRqztY01yoKfr0EpZtJpfxnGCsmORuPJk=) 3: F824C588FF7A11F0B218EB915B6F56BC.roa (hash: vyzv0f1THJyglSIA32Cmr/3tLhp6nkKIDvP00vthIq0=) 4: 4C8BB01CF0A511F0AE903042706F56BC.roa (hash: O4BcOq2hKD3I3RD3vTsJAeBqf6AIzX76ZzjjaHK+ElU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3420 (0xd5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: May 12 18:13:19 2026 GMT Not After : May 19 18:13:19 2026 GMT Subject: CN=6a036dbf-3d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:90:cf:27:71:ee:91:51:13:02:84:e8:bc: db:e2:b6:61:42:bb:65:cf:00:45:1b:e3:71:26:96: e2:75:22:31:e5:da:95:8a:02:b7:8f:53:8a:5f:44: cf:bc:c2:7c:ba:b4:3c:74:99:aa:0d:f2:fd:31:94: 00:9f:7e:26:5e:82:3c:7c:60:b5:ee:77:26:28:fc: 1b:98:0c:00:c3:fc:86:ae:5d:26:32:a6:5a:1c:05: 0a:39:20:a1:77:9a:97:20:80:07:ce:86:d6:f1:84: 2d:95:65:37:79:58:8e:d2:bc:44:ab:42:e3:3a:35: 22:16:a2:53:f3:4a:99:fe:af:72:a4:a3:e1:28:41: 8d:23:2d:5e:0a:0d:78:03:25:67:9a:07:16:17:a2: 54:b0:ee:95:2e:8b:fe:33:30:bc:4b:80:c3:71:40: f2:19:cb:fd:b6:c2:85:43:b0:4f:0f:fa:5d:38:99: d0:a0:fc:8c:12:17:dc:a4:ef:d9:b9:ca:5b:be:dc: c4:19:b3:28:4a:ba:58:bf:df:24:83:f3:6c:c6:bb: 65:77:56:4e:6f:f1:f4:a9:f6:09:d3:e5:c5:dc:83: 9f:ab:ca:39:37:bf:0e:01:8a:7d:e9:6a:59:d2:dc: 98:d3:bb:75:4c:2f:c4:33:e3:0b:8d:9d:1f:3a:6c: 91:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CE:1C:DB:8C:F7:B7:56:43:B3:CB:F9:FA:8F:E9:F2:6E:4D:3B:1C X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7a:8a:13:51:84:b4:65:9c:c6:36:a2:5a:38:89:7a:23:00: 2a:48:8d:64:4f:ed:89:73:f8:4f:4b:6f:d5:94:6c:34:26:3f: cd:e2:3a:60:c9:70:f2:ab:4e:ed:16:b3:2d:51:f6:db:5d:92: 33:33:aa:b2:11:c5:76:4c:36:4d:e0:98:71:08:1f:ff:53:99: f5:b8:6d:f4:f2:7e:15:eb:54:f2:aa:64:b9:5c:10:07:9d:de: 3a:aa:1f:bc:18:9d:88:2d:6c:67:a6:9f:bf:4d:63:20:fb:6e: 1b:7b:99:87:12:a4:ef:e8:ea:7d:41:e6:84:34:0e:e4:07:fc: 9c:18:93:3f:1b:d6:3c:21:cb:b9:46:97:5d:92:d7:e0:59:70: c6:c5:56:fe:8c:d3:6e:a3:b0:63:b3:22:b1:29:52:e2:73:a5: 75:92:a9:a0:c7:21:d4:4b:e9:23:0b:2f:4d:51:7c:37:34:ef: 36:f9:f8:7e:16:bd:48:ec:8e:bc:8a:05:bf:aa:06:d5:04:4b: 6f:b1:30:6c:ee:90:27:49:ac:d3:b1:29:5d:9a:b9:44:1f:fc: 6e:00:2b:74:d4:a9:be:30:a1:02:c8:b7:80:5a:1f:59:28:c7: 13:c4:6f:94:ef:6f:e5:3b:3c:fb:46:10:4a:09:58:26:40:65: 85:cc:52:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjYwNTEyMTgxMzE5WhcNMjYwNTE5MTgxMzE5WjAYMRYwFAYD VQQDEw02YTAzNmRiZi0zZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQKQzydx7pFREwKE6Lzb4rZhQrtlzwBFG+NxJpbidSIx5dqVigK3j1OKX0TP vMJ8urQ8dJmqDfL9MZQAn34mXoI8fGC17ncmKPwbmAwAw/yGrl0mMqZaHAUKOSCh d5qXIIAHzobW8YQtlWU3eViO0rxEq0LjOjUiFqJT80qZ/q9ypKPhKEGNIy1eCg14 AyVnmgcWF6JUsO6VLov+MzC8S4DDcUDyGcv9tsKFQ7BPD/pdOJnQoPyMEhfcpO/Z ucpbvtzEGbMoSrpYv98kg/Nsxrtld1ZOb/H0qfYJ0+XF3IOfq8o5N78OAYp96WpZ 0tyY07t1TC/EM+MLjZ0fOmyRHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGfOHNuM 97dWQ7PL+fqP6fJuTTscMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATnqKE1GEtGWcxjaiWjiJeiMAKkiNZE/tiXP4T0tv1ZRsNCY/zeI6YMlw8qtO 7RazLVH2212SMzOqshHFdkw2TeCYcQgf/1OZ9bht9PJ+FetU8qpkuVwQB53eOqof vBidiC1sZ6afv01jIPtuG3uZhxKk7+jqfUHmhDQO5Af8nBiTPxvWPCHLuUaXXZLX 4FlwxsVW/ozTbqOwY7MisSlS4nOldZKpoMch1EvpIwsvTVF8NzTvNvn4fha9SOyO vIoFv6oG1QRLb7EwbO6QJ0ms07EpXZq5RB/8bgArdNSpvjChAsi3gFofWSjHE8Rv lO9v5Ts8+0YQSglYJkBlhcxS2Q== -----END CERTIFICATE-----Generated at Wed May 13 13:01:32 2026 by rpki-client