$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: vJ6ctSi4lPcLhpxZ+INLCvXoaUUyK+gjF7lNwNV+ysM= Subject key identifier: DE:E5:72:CA:F6:1F:30:2F:A0:85:5D:AA:41:18:89:07:F1:EA:E9:42 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0589 Signing time: Tue 12 May 2026 23:20:47 +0000 Manifest this update: Tue 12 May 2026 23:20:47 +0000 Manifest next update: Tue 19 May 2026 23:20:47 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: 5v2gZRDfj2BXIWViO0Sxxfu5NC1FjOo1cPRXITwcECY=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: 1OTKEgqlZnaKGpmz6oNBNrSZubeFhZS/c5pM2HU9abQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: May 12 23:20:47 2026 GMT Not After : May 19 23:20:47 2026 GMT Subject: CN=6a03b5cf-3483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7d:c1:29:09:5a:a1:c0:09:1b:bb:e8:e5:14: 4d:a3:ab:ae:a9:21:76:42:06:2b:a4:e0:fa:c6:0b: 20:9f:3f:0d:29:c7:24:f4:3e:77:3e:f7:2b:d2:f2: 01:87:82:fd:47:03:8c:ff:fa:ec:50:e3:c0:e5:e7: f4:55:d2:c4:d6:0e:d8:95:e9:6a:bb:11:fb:43:1c: aa:8e:40:c3:b4:3b:fb:fd:70:54:b6:30:e1:2b:12: 41:85:1e:83:58:fc:f1:6d:c9:d9:ad:90:4e:f6:81: e4:df:cc:92:06:67:35:37:37:e0:41:e4:90:17:c1: a2:be:76:20:03:c2:b4:cc:26:00:ef:3c:70:68:c8: e8:4c:bd:3c:f2:0d:f0:04:de:fd:cb:4e:9a:b5:46: e8:b5:ea:08:e6:55:97:14:c2:fb:48:75:61:03:b6: 31:6d:4f:ff:8b:44:37:64:4b:0f:c3:02:eb:b4:aa: f8:0e:7c:d7:0e:56:cf:3a:f4:4c:e0:c9:09:10:c2: 4a:9f:d3:03:a2:66:9c:37:ae:b4:1b:87:33:0d:7a: c2:03:f0:97:8c:f6:0a:48:63:f4:fb:5c:92:82:fb: 70:20:61:9c:c6:1e:84:0f:4e:1b:78:14:1f:d3:93: 84:78:03:0a:9e:32:f0:08:de:04:20:48:4f:a9:30: 0c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E5:72:CA:F6:1F:30:2F:A0:85:5D:AA:41:18:89:07:F1:EA:E9:42 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f4:ee:cd:24:88:f1:77:b2:3b:0f:c0:af:e3:8b:fe:2d:52: 33:a7:81:e5:53:1c:28:4b:5e:dc:6b:d1:5a:66:cd:ee:b9:6f: 7e:d3:4b:ea:eb:47:3f:03:a9:89:1d:ff:98:9a:7f:59:0b:1b: b0:34:3e:c5:57:4b:5e:b2:9d:61:5c:96:27:60:eb:f1:cc:96: 0b:a1:7a:ad:08:3a:64:c0:31:2e:bd:69:82:8b:0e:fc:1f:92: b2:bc:8f:9d:59:84:03:22:96:f1:57:30:1d:5f:63:98:3d:59: 34:67:c4:21:bc:18:54:78:6f:7a:83:bb:be:3e:a9:b7:b3:bb: 21:78:4f:36:7e:32:46:a3:d6:d5:e1:04:bf:d3:6f:ec:e1:86: 06:2a:68:e0:bd:7f:f6:d8:52:95:68:2e:0c:00:ae:47:21:07: a3:97:26:7a:d1:ee:81:d9:30:45:90:a4:6b:c7:b7:04:f3:b7: 42:14:f0:06:58:3c:2e:7c:db:71:81:15:12:26:ff:4a:9c:f3: 01:b5:32:84:fb:a6:fa:96:22:a7:3f:9f:80:e2:32:70:86:a6: 77:80:37:e0:de:83:c6:ac:10:e3:42:5e:dc:1d:76:70:0f:e2: ed:98:39:47:32:80:3c:17:17:8b:a3:88:fa:65:3c:07:76:62: 1a:6d:19:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjYwNTEyMjMyMDQ3WhcNMjYwNTE5MjMyMDQ3WjAYMRYwFAYD VQQDEw02YTAzYjVjZi0zNDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvH3BKQlaocAJG7vo5RRNo6uuqSF2QgYrpOD6xgsgnz8NKcck9D53Pvcr0vIB h4L9RwOM//rsUOPA5ef0VdLE1g7YlelquxH7QxyqjkDDtDv7/XBUtjDhKxJBhR6D WPzxbcnZrZBO9oHk38ySBmc1NzfgQeSQF8GivnYgA8K0zCYA7zxwaMjoTL088g3w BN79y06atUboteoI5lWXFML7SHVhA7YxbU//i0Q3ZEsPwwLrtKr4DnzXDlbPOvRM 4MkJEMJKn9MDomacN660G4czDXrCA/CXjPYKSGP0+1ySgvtwIGGcxh6ED04beBQf 05OEeAMKnjLwCN4EIEhPqTAMhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN7lcsr2 HzAvoIVdqkEYiQfx6ulCMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQvTuzSSI8XeyOw/Ar+OL/i1SM6eB5VMcKEte3GvRWmbN7rlvftNL6utHPwOp iR3/mJp/WQsbsDQ+xVdLXrKdYVyWJ2Dr8cyWC6F6rQg6ZMAxLr1pgosO/B+SsryP nVmEAyKW8VcwHV9jmD1ZNGfEIbwYVHhveoO7vj6pt7O7IXhPNn4yRqPW1eEEv9Nv 7OGGBipo4L1/9thSlWguDACuRyEHo5cmetHugdkwRZCka8e3BPO3QhTwBlg8Lnzb cYEVEib/SpzzAbUyhPum+pYipz+fgOIycIamd4A34N6DxqwQ40Je3B12cA/i7Zg5 RzKAPBcXi6OI+mU8B3ZiGm0Z+g== -----END CERTIFICATE-----Generated at Wed May 13 04:14:37 2026 by rpki-client