$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: GI2vsX4iqDy1DICX5U3jDQrvr4rujm86r/PGDoviLL4= Subject key identifier: D0:16:6D:E6:82:7E:2F:91:15:DB:BB:2D:27:8B:0C:ED:F3:9D:F4:FE Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 363F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 35A3 Signing time: Tue 12 May 2026 14:25:02 +0000 Manifest this update: Tue 12 May 2026 14:25:01 +0000 Manifest next update: Tue 19 May 2026 14:25:01 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: 1bBYrzrNw273gN51989DOr+aSVkW2F63/WbmMCX6I9w=) 2: 80222864027211F19767E73A2C3D8C67.roa (hash: ywqZnsw0viWQVsstxlcIR8TqE6o6V9nWSSr21sJVdy4=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: W4C6/CMmIu13G3sy+4epSwhK8wjgstVqttIzDULu+ak=) 4: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: GK0larljqDnIZSIDwqWiFQo4BToMGpYrvOsSZwaLGDI=) 5: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: Aq2aXJwiDmleCL4Y5dXro6eaNkC/MLx9wlaLd0aot6I=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: AAS+jxhp2xik0OYMSPq+B01L4sPGFryRO2dGHyui2mE=) 7: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: 2+uDGIyNCQwdI4kpyLzkpL270iQx3eFCTQmOCW4llcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13887 (0x363f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: May 12 14:25:01 2026 GMT Not After : May 19 14:25:01 2026 GMT Subject: CN=6a03383e-68db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:fc:5e:d9:26:3a:4f:83:52:9d:9c:91:1c: b1:84:35:ff:80:55:76:d2:7e:9d:e7:ff:6b:e4:d7: 02:9b:26:91:6d:7b:26:72:c8:63:f7:14:8f:51:63: 04:24:b8:c6:50:9c:0c:5d:5e:18:37:de:dc:b6:e8: 01:6e:ad:7a:bd:6a:0c:93:9c:98:f3:2e:d7:7e:f0: 69:d3:7c:1c:f3:2d:cf:56:d1:07:54:54:14:71:ed: e9:73:db:d2:c5:52:d7:62:21:07:65:ac:6b:2f:3f: fa:27:50:df:18:c9:18:8a:44:12:4b:1a:64:6a:57: ce:eb:f8:a6:98:1e:1c:c4:dc:25:a2:5f:e0:69:36: a8:ff:fc:46:a3:72:c9:e4:9f:6a:d5:b3:35:7c:21: ff:01:3c:94:60:9a:9d:8d:07:2b:75:aa:e8:e9:82: 5b:de:76:58:2d:e5:09:01:f8:51:43:23:9e:c4:39: 32:83:87:da:c4:f7:ca:b4:01:77:ca:91:1e:5e:60: 77:40:6a:da:d8:37:1b:00:60:62:b9:3a:50:14:1f: 58:31:f0:8a:f4:17:40:0f:4e:99:18:bf:90:db:46: d1:7e:bb:e9:b8:51:de:3a:f4:44:73:e1:02:a0:61: 4d:27:cf:58:e7:a0:19:f9:59:2b:8d:03:65:c8:1a: 69:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:16:6D:E6:82:7E:2F:91:15:DB:BB:2D:27:8B:0C:ED:F3:9D:F4:FE X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:30:47:d7:54:6d:67:80:42:c4:cb:93:8e:9b:f0:e3:c2:bf: 16:e9:8a:f8:66:e7:e7:a7:77:d1:4b:9e:93:52:fc:83:38:0f: 7a:9b:bb:8e:69:16:2b:0b:58:a6:45:91:37:ec:8f:f1:66:08: 72:5b:d7:ae:63:ea:63:dc:f4:2c:18:66:e5:61:3c:da:42:b5: 64:06:72:a5:79:be:0b:5f:30:6d:f2:ec:22:a7:80:96:0d:53: 1e:36:79:05:ae:07:3c:a8:0a:b4:54:84:b4:43:a5:67:e2:d0: 59:68:5c:ac:48:33:81:87:3f:f1:fb:ec:c6:26:00:5a:68:77: 7f:b6:d2:40:26:95:da:d4:f6:59:dc:3f:96:ed:d0:c3:ab:dc: c8:8f:68:34:9a:a1:85:a7:b4:21:c8:fc:5b:a9:a1:42:4f:44: ba:14:b1:e6:29:3a:48:34:63:73:8c:f2:fe:c3:42:32:52:c7: a1:ce:13:91:a3:1c:ce:49:2a:d1:12:c2:da:05:7b:d9:31:3d: b1:97:75:71:90:96:15:04:4d:95:4f:58:c8:b9:aa:4e:4d:c4: 6d:f6:e9:49:19:25:17:eb:0f:4b:58:fe:dc:f3:f3:6e:45:ea: e8:aa:a6:67:41:b2:cc:53:06:9b:7d:26:c8:06:ec:e6:35:e4: 9b:49:08:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjYwNTEyMTQyNTAxWhcNMjYwNTE5MTQyNTAxWjAYMRYwFAYD VQQDEw02YTAzMzgzZS02OGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu478XtkmOk+DUp2ckRyxhDX/gFV20n6d5/9r5NcCmyaRbXsmcshj9xSPUWME JLjGUJwMXV4YN97ctugBbq16vWoMk5yY8y7XfvBp03wc8y3PVtEHVFQUce3pc9vS xVLXYiEHZaxrLz/6J1DfGMkYikQSSxpkalfO6/immB4cxNwlol/gaTao//xGo3LJ 5J9q1bM1fCH/ATyUYJqdjQcrdaro6YJb3nZYLeUJAfhRQyOexDkyg4faxPfKtAF3 ypEeXmB3QGra2DcbAGBiuTpQFB9YMfCK9BdAD06ZGL+Q20bRfrvpuFHeOvREc+EC oGFNJ89Y56AZ+VkrjQNlyBppjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNAWbeaC fi+RFdu7LSeLDO3znfT+MB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVDBH11RtZ4BCxMuTjpvw48K/FumK+Gbn56d30Uuek1L8gzgPepu7jmkWKwtY pkWRN+yP8WYIclvXrmPqY9z0LBhm5WE82kK1ZAZypXm+C18wbfLsIqeAlg1THjZ5 Ba4HPKgKtFSEtEOlZ+LQWWhcrEgzgYc/8fvsxiYAWmh3f7bSQCaV2tT2Wdw/lu3Q w6vcyI9oNJqhhae0Icj8W6mhQk9EuhSx5ik6SDRjc4zy/sNCMlLHoc4TkaMczkkq 0RLC2gV72TE9sZd1cZCWFQRNlU9YyLmqTk3EbfbpSRklF+sPS1j+3PPzbkXq6Kqm Z0GyzFMGm30myAbs5jXkm0kIew== -----END CERTIFICATE-----Generated at Wed May 13 11:04:55 2026 by rpki-client