$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft File: 3dzECt5nfyP4p5ukFo729r7wZcc.mft (raw, json) Hash identifier: dMLO5WnAlKE3EH9rD2uenSeMaFomKgqAEn/saKYysoI= Subject key identifier: 5F:38:C4:B1:BC:F1:F3:9F:38:18:F2:C1:47:AB:4F:86:8E:16:84:CC Authority key identifier: DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 Certificate issuer: /CN=A91CB2E2/serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft Manifest number: 82 Signing time: Mon 11 May 2026 07:47:27 +0000 Manifest this update: Mon 11 May 2026 07:47:26 +0000 Manifest next update: Mon 18 May 2026 07:47:26 +0000 Files and hashes: 1: 3dzECt5nfyP4p5ukFo729r7wZcc.crl (hash: slozQiFBOvtUHV5AYtVFMtUndlDzIFKg6sxlJjsok2g=) 2: 240EF95E896311F0B911053BC4F9AE02.roa (hash: bgfPYSTEsSkfhGSuxOoFNVtQR8SOazKoHfsSU4GrHl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB2E2, serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Validity Not Before: May 11 07:47:26 2026 GMT Not After : May 18 07:47:26 2026 GMT Subject: CN=6a01898f-b32a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:8c:7c:41:f4:22:42:0d:62:40:f2:8e:ef: bd:a1:28:d2:2f:78:4b:aa:ff:e7:4d:40:a2:aa:a9: d1:04:7e:69:de:8e:33:ce:42:31:c3:a2:7a:89:d3: d4:55:dd:b0:ba:91:2c:0d:50:20:b4:f6:29:3c:ec: ad:ff:7d:5b:90:65:b8:c0:64:64:0e:79:f8:6b:2c: 47:5f:4e:b6:5d:26:24:50:e4:cc:88:72:c5:45:4e: fa:58:40:c3:30:3a:e0:d9:05:ec:b1:ab:f6:2e:5a: 0b:1b:84:03:27:53:60:dd:de:51:7f:cf:d3:09:8b: 72:cc:91:b9:58:43:c9:83:0b:51:6c:65:06:89:db: 5a:6c:ec:65:08:08:c0:9a:0e:e7:8b:ae:06:af:29: 8e:90:ea:fc:59:30:ad:f5:2d:20:6b:88:99:ab:91: 18:ad:d9:26:0e:8c:31:1e:ad:92:ad:b8:2e:3c:55: 63:63:d0:47:29:f3:9d:cb:51:f4:80:2e:3b:0f:48: 8c:18:bd:a4:e5:01:f6:62:1e:a5:1c:a5:06:6a:40: c6:52:e6:78:e6:fe:75:69:94:c9:65:7e:26:02:8a: f8:12:9b:8a:79:ea:00:5a:26:73:d7:f8:c0:5b:20: 88:06:74:a0:a8:4a:ff:46:1a:d2:55:71:f8:5e:fd: 63:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:38:C4:B1:BC:F1:F3:9F:38:18:F2:C1:47:AB:4F:86:8E:16:84:CC X509v3 Authority Key Identifier: keyid:DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:60:0d:f8:a6:20:ae:b0:dc:bd:c8:4f:ad:26:06:2a:87:6e: 62:d0:70:28:2c:e2:03:ec:8a:33:ed:a7:d4:4f:84:c6:2e:09: d2:32:e2:5e:c1:df:fe:d8:8c:9a:ea:88:7e:b0:69:b0:10:3d: 30:f1:15:ff:78:4c:e2:82:ab:c1:4f:8a:24:d1:1c:fd:5d:fe: 43:8a:9b:7f:d7:01:73:28:3b:26:b7:3d:f1:bb:22:4c:13:7e: 1d:f6:16:22:91:9c:a4:14:83:54:53:e3:ad:cc:f2:1b:91:cd: f9:9a:5f:45:2a:d0:dc:7b:1b:9d:08:c1:9a:5e:58:97:7b:90: 7a:2e:5a:7c:e7:fd:58:03:51:60:02:79:26:84:33:0e:b0:8a: e6:42:10:f3:8d:0a:73:dc:3a:c2:38:b1:f7:67:d7:ef:51:5b: 8c:0d:21:33:27:86:8d:1d:62:91:92:98:0d:30:83:1f:f8:b5: a2:a5:cc:9e:e6:e0:bd:1b:2a:59:45:21:43:1b:5b:1b:4b:f3: 58:d1:bc:aa:c4:3c:b9:d4:cc:28:b1:bd:a9:8c:c8:86:f2:0c: 26:e7:e2:e8:cd:cb:99:44:2f:a7:b5:c0:38:3b:5f:4e:ff:a7: 5c:0e:ae:ed:fe:b4:b3:e0:bf:28:df:49:6b:fd:4d:d5:8f:5e: 1f:0a:78:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyRTIxMTAvBgNVBAUTKERERENDNDBBREU2NzdGMjNGOEE3OUJBNDE2OEVGNkY2 QkVGMDY1QzcwHhcNMjYwNTExMDc0NzI2WhcNMjYwNTE4MDc0NzI2WjAYMRYwFAYD VQQDEw02YTAxODk4Zi1iMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu36MfEH0IkINYkDyju+9oSjSL3hLqv/nTUCiqqnRBH5p3o4zzkIxw6J6idPU Vd2wupEsDVAgtPYpPOyt/31bkGW4wGRkDnn4ayxHX062XSYkUOTMiHLFRU76WEDD MDrg2QXssav2LloLG4QDJ1Ng3d5Rf8/TCYtyzJG5WEPJgwtRbGUGidtabOxlCAjA mg7ni64GrymOkOr8WTCt9S0ga4iZq5EYrdkmDowxHq2SrbguPFVjY9BHKfOdy1H0 gC47D0iMGL2k5QH2Yh6lHKUGakDGUuZ45v51aZTJZX4mAor4EpuKeeoAWiZz1/jA WyCIBnSgqEr/RhrSVXH4Xv1jzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF84xLG8 8fOfOBjywUerT4aOFoTMMB8GA1UdIwQYMBaAFN3cxAreZ38j+KebpBaO9va+8GXH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjJFMi80MTFDNjNCMDg5 NTkxMUYwQkE2NTM0NURDNEY5QUUwMi8zZHpFQ3Q1bmZ5UDRwNXVrRm83MjlyN3da Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkekVDdDVuZnlQNHA1dWtGbzcyOXI3d1pjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjJFMi80MTFDNjNCMDg5NTkxMUYwQkE2NTM0NURDNEY5QUUwMi8zZHpFQ3Q1bmZ5 UDRwNXVrRm83MjlyN3daY2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANGAN+KYgrrDcvchPrSYGKoduYtBwKCziA+yKM+2n1E+Exi4J0jLiXsHf/tiM muqIfrBpsBA9MPEV/3hM4oKrwU+KJNEc/V3+Q4qbf9cBcyg7Jrc98bsiTBN+HfYW IpGcpBSDVFPjrczyG5HN+ZpfRSrQ3HsbnQjBml5Yl3uQei5afOf9WANRYAJ5JoQz DrCK5kIQ840Kc9w6wjix92fX71FbjA0hMyeGjR1ikZKYDTCDH/i1oqXMnubgvRsq WUUhQxtbG0vzWNG8qsQ8udTMKLG9qYzIhvIMJufi6M3LmUQvp7XAODtfTv+nXA6u 7f60s+C/KN9Ja/1N1Y9eHwp4sw== -----END CERTIFICATE-----Generated at Wed May 13 09:46:02 2026 by rpki-client