$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: lji4+4E7iHF4q3utN0uJ4+DRFz4gspcQcalbN9VxD8E= Subject key identifier: 34:86:F9:E3:BF:8C:59:8F:BD:66:39:70:D1:7C:03:98:B4:04:EB:D4 Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 1727 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 17B8 Signing time: Tue 12 May 2026 16:38:15 +0000 Manifest this update: Tue 12 May 2026 16:38:14 +0000 Manifest next update: Tue 19 May 2026 16:38:14 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: 8TIjcRIiFbdW7Nhg+p/CRDf8/kf03k9Ao1ufxNVOopA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5927 (0x1727) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: May 12 16:38:14 2026 GMT Not After : May 19 16:38:14 2026 GMT Subject: CN=6a035776-1a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ad:bc:bc:66:30:30:d4:29:3d:97:26:de:e8: 7a:c1:90:24:fa:4b:54:25:09:ea:91:8f:f1:33:4b: cc:16:f4:e5:1a:78:d2:f1:44:4f:7d:36:c0:1b:70: e9:00:54:76:47:f1:6b:ea:5b:d3:94:49:d6:2f:d8: 35:f2:18:d4:1c:dc:25:1c:c1:9c:35:33:58:6f:09: c2:18:c9:84:e2:4a:42:cc:4e:53:bd:be:92:0e:37: ce:23:ee:41:43:21:42:78:e9:67:36:bf:d6:8b:06: 80:af:21:91:06:43:4f:96:ef:1b:cd:bd:35:66:a0: fb:0c:0e:14:93:78:d6:c1:18:c7:8d:e6:59:db:a1: 26:cf:aa:3d:97:02:eb:4b:13:49:91:26:0f:0c:01: 54:19:6f:c8:39:50:67:6f:1b:97:f3:2e:50:c8:50: 06:06:e4:95:85:53:27:d0:19:d1:d9:96:67:6a:f8: 4e:e3:47:68:67:0e:0b:de:0c:ba:f8:eb:57:97:e0: 50:b5:63:cd:da:c8:f5:9b:3f:25:8b:4b:35:c7:93: d1:f3:d3:65:63:1e:ce:53:c7:58:96:a7:88:78:fb: c0:aa:1e:44:f9:fc:7b:d0:e6:b5:82:6c:60:45:ee: 39:62:fd:7e:07:05:3d:ce:b1:6f:3d:da:e3:42:de: 32:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:86:F9:E3:BF:8C:59:8F:BD:66:39:70:D1:7C:03:98:B4:04:EB:D4 X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:48:78:db:93:61:f0:76:cb:79:7c:0f:11:81:37:2e:18:5a: 22:79:dc:26:b8:c4:c2:17:bd:34:ab:78:fa:9c:31:79:80:db: 34:2e:3e:ec:e8:b5:da:25:20:9d:71:ae:6c:fb:be:74:c5:35: cc:51:95:04:28:da:2a:d6:0a:0e:d6:fb:17:57:fd:e2:06:2f: 6e:b6:ea:3a:54:a7:35:11:19:70:7f:30:b8:b3:00:ac:e3:07: ec:86:e5:25:aa:e7:81:58:d7:72:ce:17:49:b0:fe:7e:f6:16: e3:71:f8:4a:99:19:8c:ac:9b:83:a0:22:f4:e4:fd:a4:3b:c2: 9a:cd:b1:fb:29:51:5e:f4:74:9c:23:38:95:2b:94:b8:99:e6: 0a:3c:ab:e7:0f:61:03:4c:a9:4a:33:10:2f:21:8c:ea:0e:27: cd:b7:06:7f:5c:2d:03:95:c7:88:ff:1b:25:62:64:75:8e:08: 14:c9:03:fc:bb:80:8b:4e:d1:36:c6:d4:40:75:d4:2c:e0:cb: 7f:41:1b:c4:b5:05:91:cd:21:30:5a:79:d7:db:cb:a9:63:15: 86:9b:34:38:8e:59:ac:4d:2a:db:ea:8d:46:95:dd:60:fa:e4: 08:c6:4b:07:bd:e5:70:ce:9b:09:1a:a3:ea:a0:89:3a:3c:bd: b4:82:24:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjYwNTEyMTYzODE0WhcNMjYwNTE5MTYzODE0WjAYMRYwFAYD VQQDEw02YTAzNTc3Ni0xYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqK28vGYwMNQpPZcm3uh6wZAk+ktUJQnqkY/xM0vMFvTlGnjS8URPfTbAG3Dp AFR2R/Fr6lvTlEnWL9g18hjUHNwlHMGcNTNYbwnCGMmE4kpCzE5Tvb6SDjfOI+5B QyFCeOlnNr/WiwaAryGRBkNPlu8bzb01ZqD7DA4Uk3jWwRjHjeZZ26Emz6o9lwLr SxNJkSYPDAFUGW/IOVBnbxuX8y5QyFAGBuSVhVMn0BnR2ZZnavhO40doZw4L3gy6 +OtXl+BQtWPN2sj1mz8li0s1x5PR89NlYx7OU8dYlqeIePvAqh5E+fx70Oa1gmxg Re45Yv1+BwU9zrFvPdrjQt4yOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDSG+eO/ jFmPvWY5cNF8A5i0BOvUMB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfUh425Nh8HbLeXwPEYE3LhhaInncJrjEwhe9NKt4+pwxeYDbNC4+7Oi12iUg nXGubPu+dMU1zFGVBCjaKtYKDtb7F1f94gYvbrbqOlSnNREZcH8wuLMArOMH7Ibl JarngVjXcs4XSbD+fvYW43H4SpkZjKybg6Ai9OT9pDvCms2x+ylRXvR0nCM4lSuU uJnmCjyr5w9hA0ypSjMQLyGM6g4nzbcGf1wtA5XHiP8bJWJkdY4IFMkD/LuAi07R NsbUQHXULODLf0EbxLUFkc0hMFp519vLqWMVhps0OI5ZrE0q2+qNRpXdYPrkCMZL B73lcM6bCRqj6qCJOjy9tIIkNQ== -----END CERTIFICATE-----Generated at Tue May 12 23:39:35 2026 by rpki-client