$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: jP3OR3QFTEWjvk9ELAprz0j1BNPwtp4NDXg3i/oj0Ek= Subject key identifier: 36:EC:31:68:D9:48:AA:80:32:70:BC:51:3A:E1:D3:EB:69:76:CE:A5 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0FA3 Signing time: Tue 12 May 2026 17:45:37 +0000 Manifest this update: Tue 12 May 2026 17:45:37 +0000 Manifest next update: Tue 19 May 2026 17:45:37 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: V2Q7t/KReOfbonimyzdBCgYQD0ah1Pk51Mkw8B7EHys=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: 8kaLAfVElFdAC99fHwGaunXXva1K/sV7AglDy8IxEuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: May 12 17:45:37 2026 GMT Not After : May 19 17:45:37 2026 GMT Subject: CN=6a036741-cba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b4:60:d9:61:ac:04:28:e8:61:45:20:db:1e: 8c:09:e0:5e:b4:8e:c0:6e:e8:64:81:56:b1:2c:c3: b1:84:e5:2d:46:6e:0c:f2:bb:44:73:c4:09:1b:8d: be:ac:a9:a7:fa:49:2e:f5:cb:a7:41:18:20:2f:e2: 7a:00:8a:9f:ac:3a:7d:0e:54:bd:11:31:03:23:27: a0:2f:3a:96:12:2a:6f:8a:b8:2e:22:9b:93:a3:27: 40:1a:23:27:f7:73:6a:21:ae:ac:2e:84:da:ea:74: f9:56:65:33:0d:48:d3:e0:68:e1:5e:f4:24:31:6a: 41:5e:a4:57:8e:f7:0e:ff:cf:d7:02:0e:e2:b2:92: f8:4f:3e:8e:81:40:27:f9:75:c0:34:c9:e0:35:c9: 51:82:57:14:22:5b:00:67:c2:dd:c6:ba:6f:a0:2d: f8:6a:b1:71:4d:20:d2:93:49:e1:70:1d:ca:62:2a: de:d3:14:8f:42:f7:41:d5:b0:d1:d3:d1:5b:96:b9: a8:42:13:d4:f5:b5:97:8a:fa:58:d0:bb:db:f1:e0: 1f:65:cc:0c:46:8b:a8:dc:87:0a:1d:3a:f4:e3:0b: 6b:79:5e:1b:77:df:7d:f1:10:9e:0f:b5:a7:18:03: 1b:72:a0:f7:f2:ab:ec:6f:bb:51:fe:40:ec:57:74: 0b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:EC:31:68:D9:48:AA:80:32:70:BC:51:3A:E1:D3:EB:69:76:CE:A5 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b2:58:22:1a:70:46:e4:0a:da:e3:77:1d:ea:af:06:45:ed: af:da:bb:78:b3:3f:46:7a:bf:46:8c:f1:32:75:b4:ec:92:88: 40:95:f4:22:e1:cc:0f:52:67:e4:b5:d3:03:a1:77:2f:49:ef: 0f:7d:fb:61:c9:73:52:ac:0b:12:55:9e:17:d3:ae:8a:ea:36: c0:96:5e:04:fa:38:37:43:60:5c:07:9d:54:ec:91:72:18:97: a8:a0:e3:48:c5:58:81:32:5e:f7:f5:b2:86:75:38:c1:53:5d: 14:2a:ba:63:72:4c:1a:df:e0:97:32:59:92:0d:b6:69:ae:ae: e2:fd:4b:79:20:e7:e2:3d:05:c8:9a:af:10:54:0c:da:06:53: 83:b0:70:db:a6:cf:ba:e5:26:e3:db:65:6e:0b:d0:fa:2c:ef: d0:6b:3a:33:12:46:c6:54:d5:3f:b9:a4:25:1b:da:68:32:b5: 0c:f1:7c:2b:00:7f:69:36:ef:05:06:b7:80:24:c1:96:38:53: 65:c7:c7:b0:dc:7e:12:02:12:11:64:5a:bc:4f:85:4a:81:a5: 78:51:15:c3:35:6a:83:27:ba:af:26:08:a6:d3:6b:e8:53:0a: bf:94:57:bb:cf:10:6a:8b:6a:00:be:1b:1c:d8:23:e9:68:24: 04:9c:f6:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKERCNzhEOUY5MzU4RTU2N0QzMDZFRTNCRDFFQUM3NDhF OTYwNkJGOEYwHhcNMjYwNTEyMTc0NTM3WhcNMjYwNTE5MTc0NTM3WjAYMRYwFAYD VQQDEw02YTAzNjc0MS1jYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLRg2WGsBCjoYUUg2x6MCeBetI7AbuhkgVaxLMOxhOUtRm4M8rtEc8QJG42+ rKmn+kku9cunQRggL+J6AIqfrDp9DlS9ETEDIyegLzqWEipvirguIpuToydAGiMn 93NqIa6sLoTa6nT5VmUzDUjT4GjhXvQkMWpBXqRXjvcO/8/XAg7ispL4Tz6OgUAn +XXANMngNclRglcUIlsAZ8LdxrpvoC34arFxTSDSk0nhcB3KYire0xSPQvdB1bDR 09FblrmoQhPU9bWXivpY0Lvb8eAfZcwMRouo3IcKHTr04wtreV4bd9998RCeD7Wn GAMbcqD38qvsb7tR/kDsV3QLJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDbsMWjZ SKqAMnC8UTrh0+tpds6lMB8GA1UdIwQYMBaAFNt42fk1jlZ9MG7jvR6sdI6WBr+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1ZuMHdidU85SHF4MGpwWUd2 NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1Zu MHdidU85SHF4MGpwWUd2NDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALrJYIhpwRuQK2uN3HeqvBkXtr9q7eLM/Rnq/RozxMnW07JKIQJX0IuHMD1Jn 5LXTA6F3L0nvD337YclzUqwLElWeF9Ouiuo2wJZeBPo4N0NgXAedVOyRchiXqKDj SMVYgTJe9/WyhnU4wVNdFCq6Y3JMGt/glzJZkg22aa6u4v1LeSDn4j0FyJqvEFQM 2gZTg7Bw26bPuuUm49tlbgvQ+izv0Gs6MxJGxlTVP7mkJRvaaDK1DPF8KwB/aTbv BQa3gCTBljhTZcfHsNx+EgISEWRavE+FSoGleFEVwzVqgye6ryYIptNr6FMKv5RX u88QaotqAL4bHNgj6WgkBJz28A== -----END CERTIFICATE-----Generated at Wed May 13 13:23:14 2026 by rpki-client