$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: QUKEGcwWSJeOCVfBUybkCf+wg7VL1MZQxZiTjHmzfI4= Subject key identifier: 82:33:99:A9:A5:87:E4:69:87:A2:20:26:93:00:0D:8A:F3:5E:9E:8A Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 024D Signing time: Mon 11 May 2026 02:22:24 +0000 Manifest this update: Mon 11 May 2026 02:22:24 +0000 Manifest next update: Mon 18 May 2026 02:22:24 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: DtnqNA7gQlrS3I6S6/rtncQuzNljnC0bPFvx+Xfws5s=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: uBe9trVvTXibsFAdUxncYIdjHBZ+5n+JI/NflInuCrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: May 11 02:22:24 2026 GMT Not After : May 18 02:22:24 2026 GMT Subject: CN=6a013d60-eec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c2:88:63:9d:ff:2c:d8:bc:06:5c:10:07:91: 50:5b:5a:ef:08:3b:b8:6e:74:65:dc:94:dd:c4:8d: ad:d4:c1:70:aa:6c:a0:ec:75:a0:2a:17:4b:35:1f: 61:5b:a8:cb:b9:ca:4d:e9:2f:12:60:7c:36:a8:5b: 86:61:91:a7:3c:ce:b7:17:ea:f7:3b:f0:7c:a3:6c: 98:7f:56:d6:55:69:49:8c:54:ed:a8:a5:74:71:89: b5:00:05:d9:04:22:30:03:09:b4:13:86:13:43:6d: 61:b0:55:73:aa:b2:29:47:9b:b5:96:c1:be:1e:69: d8:1e:a9:f6:46:2c:07:fc:03:c6:5c:70:ae:fb:b3: f5:72:b2:82:e6:90:c8:7f:08:95:19:bb:91:0b:bf: 9e:86:9d:2d:83:d0:e1:3f:6a:97:aa:aa:11:ef:29: 83:3d:da:4c:57:72:46:71:02:9b:6d:b5:23:a2:05: 71:4e:35:81:1c:b6:ea:a7:5e:8f:af:3d:1e:5c:43: 2d:a0:a5:eb:44:a3:d3:0d:cb:3b:d2:36:80:28:9e: 68:a1:56:8c:31:29:f4:e2:2f:cf:c2:54:5d:34:a4: 6e:16:1f:3f:85:66:13:6f:05:50:4c:16:1f:fa:36: 4d:af:e8:bd:81:ed:99:f5:62:33:43:5e:0d:64:79: 93:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:33:99:A9:A5:87:E4:69:87:A2:20:26:93:00:0D:8A:F3:5E:9E:8A X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:20:dd:f5:c8:33:ee:31:d7:aa:6d:6f:8b:b8:d3:d2:c2:dc: 90:89:fb:c1:95:bf:f8:58:ed:e3:cc:39:71:29:0e:3d:ab:d4: 4e:0e:a2:4b:65:d5:7a:2f:a9:06:49:ce:42:27:6a:cb:6a:fe: 51:5c:0b:a8:55:7b:e8:ad:8a:6a:7c:7f:73:da:1a:33:a6:6f: f3:b4:2d:31:bd:0a:6b:bb:7f:c0:2d:a2:13:e0:5c:0d:f8:25: cb:c6:8c:4d:6d:75:78:8d:b5:88:3d:0c:9c:98:47:9f:f5:0d: 92:ca:31:8c:9b:f7:89:6a:07:b7:0d:3d:ea:9a:fa:d2:07:a1: 27:6f:a4:42:84:a4:55:b9:f8:6d:e8:13:c6:74:b5:a7:1a:a9: a8:bb:48:f4:6b:00:06:01:80:ec:9c:cf:64:e4:39:2e:a2:0f: 42:80:40:85:d5:d1:0b:2d:36:9e:e4:51:1c:7d:7e:7e:27:a7: 21:b2:8a:5c:cd:ca:7e:44:ee:6d:bf:7c:a4:01:c7:77:3b:56: ae:5b:fb:7c:55:51:f1:6e:6b:54:db:dd:fe:a1:e0:44:75:ce: 7b:2b:3b:7f:68:8e:50:4b:37:67:62:c8:32:dc:94:e0:0e:c6: 23:8f:c7:04:59:14:f6:9f:5b:f4:98:68:1d:18:b2:80:8f:bd: 8a:cb:33:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjYwNTExMDIyMjI0WhcNMjYwNTE4MDIyMjI0WjAYMRYwFAYD VQQDEw02YTAxM2Q2MC1lZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08KIY53/LNi8BlwQB5FQW1rvCDu4bnRl3JTdxI2t1MFwqmyg7HWgKhdLNR9h W6jLucpN6S8SYHw2qFuGYZGnPM63F+r3O/B8o2yYf1bWVWlJjFTtqKV0cYm1AAXZ BCIwAwm0E4YTQ21hsFVzqrIpR5u1lsG+HmnYHqn2RiwH/APGXHCu+7P1crKC5pDI fwiVGbuRC7+ehp0tg9DhP2qXqqoR7ymDPdpMV3JGcQKbbbUjogVxTjWBHLbqp16P rz0eXEMtoKXrRKPTDcs70jaAKJ5ooVaMMSn04i/PwlRdNKRuFh8/hWYTbwVQTBYf +jZNr+i9ge2Z9WIzQ14NZHmT3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIIzmaml h+Rph6IgJpMADYrzXp6KMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfyDd9cgz7jHXqm1vi7jT0sLckIn7wZW/+Fjt48w5cSkOPavUTg6iS2XVei+p BknOQidqy2r+UVwLqFV76K2Kanx/c9oaM6Zv87QtMb0Ka7t/wC2iE+BcDfgly8aM TW11eI21iD0MnJhHn/UNksoxjJv3iWoHtw096pr60gehJ2+kQoSkVbn4begTxnS1 pxqpqLtI9GsABgGA7JzPZOQ5LqIPQoBAhdXRCy02nuRRHH1+fienIbKKXM3KfkTu bb98pAHHdztWrlv7fFVR8W5rVNvd/qHgRHXOeys7f2iOUEs3Z2LIMtyU4A7GI4/H BFkU9p9b9JhoHRiygI+9issz7Q== -----END CERTIFICATE-----Generated at Tue May 12 23:04:42 2026 by rpki-client