$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: yB0nlh3LmgPdK+FVlq0iL8clrbiLkksm9PfU33oXgbA= Subject key identifier: 20:33:A1:5D:E5:C6:64:50:BA:EA:9A:D2:55:89:10:59:A2:88:70:C1 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: 015D Signing time: Mon 11 May 2026 05:08:32 +0000 Manifest this update: Mon 11 May 2026 05:08:32 +0000 Manifest next update: Mon 18 May 2026 05:08:32 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: Qbtp4PB5ZTzJ7Rr8zfpdZ2NygFJgJs8LjYods7w4aD8=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: m3Jo8FCeaELT1I3nJBgJYkzF+itVMTxAlpjgG+4EtAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: May 11 05:08:32 2026 GMT Not After : May 18 05:08:32 2026 GMT Subject: CN=6a016450-6c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:04:b6:e5:fb:82:56:28:a4:19:e3:95:78:6c: 78:4b:2d:e6:71:1f:e0:bd:3f:7a:ea:77:f4:c5:71: 1c:28:4e:05:75:d8:bb:54:21:88:00:d6:b3:0b:02: 82:3c:38:32:57:9b:a4:a9:cb:a7:bd:2c:55:1f:29: ad:16:56:ef:4a:51:92:05:00:b0:9a:e8:ab:46:7f: 01:b1:d9:db:0a:6d:e9:27:81:d8:46:78:dd:3b:09: 4b:15:aa:03:a7:ff:31:3d:a5:bd:48:97:20:ef:4f: e5:41:2a:9b:47:eb:a0:5e:6f:36:2f:5d:88:2a:9b: 4a:46:ba:b1:2a:a5:15:52:c7:c6:9d:54:67:dd:06: 77:53:4e:d7:3f:1d:a0:b9:63:13:ec:7a:6e:97:bb: 01:41:62:6a:db:7b:0e:75:9e:80:7d:0f:71:3c:c4: 2c:95:bc:17:1f:ef:be:d5:bb:48:7f:55:7a:0c:6f: 09:4c:f0:15:f3:65:11:4d:72:70:84:d2:4c:32:c2: 17:bf:4d:4c:d3:cb:bc:7b:19:89:ab:69:c8:22:28: a4:c0:67:00:93:e6:85:7f:d5:90:a7:df:8b:6d:b6: 35:77:c3:55:f4:d8:68:19:2a:39:1f:32:29:ed:6e: 15:e2:cc:5f:6e:d9:8b:1d:aa:99:5e:5b:2f:5a:a3: 27:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:33:A1:5D:E5:C6:64:50:BA:EA:9A:D2:55:89:10:59:A2:88:70:C1 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:35:a1:3b:1d:73:20:00:35:2b:02:10:3e:08:d2:ff:c9:a0: 74:6f:1d:6f:bc:60:8a:e7:06:52:55:9f:cb:31:85:e7:1b:d7: 69:53:d2:79:09:f8:04:34:23:0d:1d:f8:8b:fb:5a:24:31:a3: a1:16:a4:f1:3d:67:15:62:95:32:e2:61:b1:2f:13:0d:4e:6e: 1c:1d:10:1d:1e:c5:2c:0c:93:ae:b3:f6:93:ef:a6:70:c8:d4: 67:bb:13:26:4b:d3:17:b8:5e:a2:15:ff:93:89:75:5e:b6:cd: 40:87:5e:e3:6f:33:71:07:42:a4:28:60:82:1a:c8:24:ed:1b: 49:af:29:72:d9:05:9e:7d:1d:4e:a0:92:6a:10:12:70:51:6c: 8b:2a:b5:df:8c:ef:14:42:0b:75:21:d4:92:c9:90:6c:6d:93: 38:d1:bf:b7:29:c0:b1:39:3f:aa:d5:37:22:b1:b9:6e:4f:a0: 83:65:35:6b:25:a4:e0:2a:00:0b:8c:d8:9f:2a:a7:51:1b:44: 58:87:ce:0e:d0:8b:09:d2:45:e6:3b:09:6c:ba:b8:03:16:38: 53:35:5c:41:b9:be:51:01:d1:bc:45:c7:56:97:39:77:11:62: ee:23:df:8b:67:f2:2d:81:42:86:ba:97:c3:7d:37:cb:ba:b5: cf:9b:c4:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjYwNTExMDUwODMyWhcNMjYwNTE4MDUwODMyWjAYMRYwFAYD VQQDEw02YTAxNjQ1MC02YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QS25fuCViikGeOVeGx4Sy3mcR/gvT966nf0xXEcKE4Fddi7VCGIANazCwKC PDgyV5ukqcunvSxVHymtFlbvSlGSBQCwmuirRn8BsdnbCm3pJ4HYRnjdOwlLFaoD p/8xPaW9SJcg70/lQSqbR+ugXm82L12IKptKRrqxKqUVUsfGnVRn3QZ3U07XPx2g uWMT7Hpul7sBQWJq23sOdZ6AfQ9xPMQslbwXH+++1btIf1V6DG8JTPAV82URTXJw hNJMMsIXv01M08u8exmJq2nIIiikwGcAk+aFf9WQp9+LbbY1d8NV9NhoGSo5HzIp 7W4V4sxfbtmLHaqZXlsvWqMnywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCAzoV3l xmRQuuqa0lWJEFmiiHDBMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYTWhOx1zIAA1KwIQPgjS/8mgdG8db7xgiucGUlWfyzGF5xvXaVPSeQn4BDQj DR34i/taJDGjoRak8T1nFWKVMuJhsS8TDU5uHB0QHR7FLAyTrrP2k++mcMjUZ7sT JkvTF7heohX/k4l1XrbNQIde428zcQdCpChgghrIJO0bSa8pctkFnn0dTqCSahAS cFFsiyq134zvFEILdSHUksmQbG2TONG/tynAsTk/qtU3IrG5bk+gg2U1ayWk4CoA C4zYnyqnURtEWIfODtCLCdJF5jsJbLq4AxY4UzVcQbm+UQHRvEXHVpc5dxFi7iPf i2fyLYFChrqXw303y7q1z5vELg== -----END CERTIFICATE-----Generated at Wed May 13 05:52:57 2026 by rpki-client