$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: irFH3buSqIujDUt/XBddKPWghnfSW/xPtru22RvloAE= Subject key identifier: 40:E4:FE:CE:60:B8:33:2F:AC:A3:86:FD:99:12:0D:7F:CE:48:96:78 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2C22 Signing time: Tue 12 May 2026 15:32:22 +0000 Manifest this update: Tue 12 May 2026 15:32:22 +0000 Manifest next update: Tue 19 May 2026 15:32:22 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: vGFwB9m+ZHp7vJG5Z4HXkFgx9Mhnrg0ZppP0HpRbDmU=) 2: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: iD/ZZuFi7/RhaL5/ToA8PIzL2/6qCFz6N1JbxCrgnXQ=) 3: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: HzrAoaY9JYPA2q5sXzU/LWx/s6FAhl2YIVATDmW8pSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11338 (0x2c4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: May 12 15:32:22 2026 GMT Not After : May 19 15:32:22 2026 GMT Subject: CN=6a034806-a5a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ac:42:0d:96:b2:04:70:d4:1c:6c:0a:f6:e7: 12:da:1b:25:64:9e:bc:8c:26:92:d6:fa:09:54:f4: 9a:96:e9:2b:77:79:3b:1f:c4:3f:c6:e5:41:b9:a3: a2:fb:7a:d7:49:4a:dc:e3:8f:06:ba:7f:09:00:60: 7f:e0:82:61:1a:34:a1:01:ce:aa:75:a2:d2:ae:82: de:96:3c:43:62:bb:89:26:72:66:6f:53:9e:1d:a1: 5c:7a:e8:2f:36:91:0d:d0:33:bf:8c:39:ec:b6:fb: e7:ef:95:22:06:51:3f:82:f8:0c:73:50:b6:20:9b: 94:4c:17:91:a2:35:36:f0:2b:95:43:ec:29:72:a2: 9f:0a:b8:2f:89:28:17:8c:48:c5:a5:9c:a6:6f:23: fa:27:a0:d4:5c:ee:ab:a7:43:8d:15:13:39:5b:85: fb:90:08:86:19:c9:4c:91:af:46:ea:0a:d0:45:d7: 18:84:c5:32:1a:4c:3f:b5:27:be:e0:86:72:21:a8: d8:75:e2:5d:ed:94:7e:e4:88:ad:97:18:52:c9:5d: d7:3b:06:66:a2:60:24:e0:1d:60:25:42:f3:f6:fe: ec:f2:d2:bd:da:9a:14:56:4f:82:b3:1e:6b:c3:44: b9:9b:9c:74:e0:d4:af:93:61:6d:aa:d2:ff:ac:19: 9d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E4:FE:CE:60:B8:33:2F:AC:A3:86:FD:99:12:0D:7F:CE:48:96:78 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ce:f5:92:4f:f2:25:cb:e4:3d:22:f4:85:e9:83:95:4c:ad: d5:f8:26:c1:27:d2:5f:34:b1:ed:75:98:63:76:61:a4:b5:cf: e4:1d:04:93:8a:07:4e:fb:a8:56:68:18:5c:7d:d6:47:95:19: fb:7b:83:dc:4e:dd:dc:d6:17:cb:22:65:85:96:08:37:71:c3: 28:24:33:7b:4d:f7:34:c0:2d:10:71:69:1e:c2:a5:7f:2e:31: 11:f2:bf:f6:6c:39:76:a2:ef:7b:2f:da:b8:bc:14:5d:3f:5c: fa:6b:f7:00:55:90:3c:bc:c1:48:28:ff:2e:5e:37:f4:98:52: 0f:8c:02:be:91:b7:c4:55:68:57:1f:1a:e3:00:c5:89:83:8f: 7e:0b:16:0d:be:52:a9:fd:76:55:91:74:47:e1:37:60:29:e7: 59:ab:d1:e0:e8:0a:5b:b3:0d:e6:6c:39:e0:10:2c:a7:5a:25: 03:49:a6:5c:96:58:6c:c6:94:03:6d:03:04:40:87:9c:c6:50: f1:23:ec:68:3d:91:65:59:38:62:20:36:1c:72:ac:6a:85:b1: a3:ab:53:7b:13:e0:09:34:74:2b:4c:4e:34:63:38:79:94:ac: 99:47:5f:3a:09:d9:fb:06:17:17:b4:67:3d:4f:ad:77:e4:2a: 9b:5d:38:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwNTEyMTUzMjIyWhcNMjYwNTE5MTUzMjIyWjAYMRYwFAYD VQQDEw02YTAzNDgwNi1hNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+axCDZayBHDUHGwK9ucS2hslZJ68jCaS1voJVPSalukrd3k7H8Q/xuVBuaOi +3rXSUrc448Gun8JAGB/4IJhGjShAc6qdaLSroLeljxDYruJJnJmb1OeHaFceugv NpEN0DO/jDnstvvn75UiBlE/gvgMc1C2IJuUTBeRojU28CuVQ+wpcqKfCrgviSgX jEjFpZymbyP6J6DUXO6rp0ONFRM5W4X7kAiGGclMka9G6grQRdcYhMUyGkw/tSe+ 4IZyIajYdeJd7ZR+5IitlxhSyV3XOwZmomAk4B1gJULz9v7s8tK92poUVk+Csx5r w0S5m5x04NSvk2FtqtL/rBmdfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEDk/s5g uDMvrKOG/ZkSDX/OSJZ4MB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeM71kk/yJcvkPSL0hemDlUyt1fgmwSfSXzSx7XWYY3ZhpLXP5B0Ek4oHTvuo VmgYXH3WR5UZ+3uD3E7d3NYXyyJlhZYIN3HDKCQze033NMAtEHFpHsKlfy4xEfK/ 9mw5dqLvey/auLwUXT9c+mv3AFWQPLzBSCj/Ll439JhSD4wCvpG3xFVoVx8a4wDF iYOPfgsWDb5Sqf12VZF0R+E3YCnnWavR4OgKW7MN5mw54BAsp1olA0mmXJZYbMaU A20DBECHnMZQ8SPsaD2RZVk4YiA2HHKsaoWxo6tTexPgCTR0K0xONGM4eZSsmUdf OgnZ+wYXF7RnPU+td+Qqm104/Q== -----END CERTIFICATE-----Generated at Wed May 13 14:01:47 2026 by rpki-client