$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: cw7e032EkGtLIw5K0u8d2PnVpNlgQ9k1v3PU94TyoAA= Subject key identifier: 8D:22:D8:3C:98:3E:6F:BF:9F:B6:D4:4E:80:5F:2E:A6:9E:91:A1:64 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0EE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0EC1 Signing time: Tue 12 May 2026 17:43:45 +0000 Manifest this update: Tue 12 May 2026 17:43:44 +0000 Manifest next update: Tue 19 May 2026 17:43:44 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: V/ztkD0mVPQEYmsSwOMuZkFX7MuVxJKa5rxLmwoa8Rs=) 2: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: 9DZO4gtEwqGm1N7r2iLEutY8W3IqMNDQEag8fkVAF7Q=) 3: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: x2dbHHpd6lHu6U/D+Z5h6UrLSps4ACkU8JTV2sRYFDo=) 4: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: 8ERTDv7Mz23v2Rbdakt8Gt3XJ8tL5M1Uk1kQf/u/YMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3810 (0xee2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: May 12 17:43:44 2026 GMT Not After : May 19 17:43:44 2026 GMT Subject: CN=6a0366d1-52a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:09:5d:d6:b2:10:7e:9e:53:6a:4f:c8:12:84: b4:ff:e7:c2:72:7d:f1:b0:45:c0:c5:77:9c:8f:e1: 92:35:4b:e1:bf:e8:11:8c:a1:c1:a4:db:06:be:58: 40:59:69:74:ff:41:13:73:e4:8f:b9:60:f0:07:33: 1a:65:71:ec:80:04:4e:17:3a:a4:0a:c5:0e:4e:27: 90:d7:dc:ee:26:e5:cc:f7:2d:07:86:06:ff:1b:63: 39:ed:f0:bb:45:80:b5:b2:6b:c0:d1:c8:04:ea:89: 85:dd:e4:74:07:5c:2f:da:bc:07:d3:08:39:84:d1: a4:d4:b5:39:6a:3e:e3:22:1b:cc:16:bb:d9:5e:62: 2d:69:cc:c6:7a:e4:f0:12:22:47:79:a9:68:f5:7f: 4f:ac:c8:1b:90:bb:f2:d5:b2:ca:08:76:07:cf:be: 45:3b:58:72:a7:0b:1e:2e:93:c4:ff:5d:87:fb:f8: 35:3a:0f:01:19:09:7a:d1:4e:0d:4f:6e:27:95:00: 64:4b:46:92:d7:5b:01:8b:73:ab:5f:8f:4a:9e:3a: 59:b6:e0:8a:34:5f:1b:2f:d9:be:f0:65:83:18:64: 73:29:20:3c:f8:05:26:05:62:ea:cd:fb:1d:c5:0f: 47:2b:f8:5b:05:a6:79:26:09:58:19:ee:76:0b:23: 62:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:22:D8:3C:98:3E:6F:BF:9F:B6:D4:4E:80:5F:2E:A6:9E:91:A1:64 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f8:ad:8d:76:de:a0:4a:98:c7:79:4b:a4:42:00:67:89:9c: a1:be:0a:d6:70:3a:83:4a:ec:2b:9b:35:20:d6:93:1a:41:6c: dd:8a:c9:0f:fb:4c:7e:bb:a8:9a:67:b7:a9:75:71:95:84:54: 14:8f:c3:01:85:cf:2d:91:c0:85:5d:0c:c4:aa:2e:ec:ad:e5: 50:96:e8:c1:6c:47:74:3c:29:35:be:d7:22:72:89:2a:c2:1a: d2:5c:2f:d7:db:cd:7b:07:7e:84:ac:eb:3b:8a:48:84:1d:5b: e2:5f:63:45:0f:86:f8:56:59:f6:e0:71:bf:fc:4d:e1:cb:ef: ba:7f:7b:7e:a0:0d:46:b7:96:b5:c3:82:1a:34:b4:d4:c5:b9: fc:7d:7c:98:38:01:e9:a7:3a:ad:dc:49:fa:56:b6:ec:e5:66: 76:3e:5e:28:d7:80:ce:c7:7f:15:de:c3:b4:5f:aa:af:b7:3a: 56:1a:f9:74:64:1d:27:97:dd:b1:eb:be:ab:2e:c6:05:4b:15: 28:a1:c1:84:45:05:ee:65:c1:96:da:28:f4:0b:77:4f:65:90: 77:33:af:0f:a5:43:48:fa:d1:4b:4c:a3:08:86:d8:79:02:30: 66:30:a7:4e:b9:b5:19:c5:2e:f7:c4:09:26:5c:f9:b9:64:4d: 46:96:c2:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjYwNTEyMTc0MzQ0WhcNMjYwNTE5MTc0MzQ0WjAYMRYwFAYD VQQDEw02YTAzNjZkMS01MmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Qld1rIQfp5Tak/IEoS0/+fCcn3xsEXAxXecj+GSNUvhv+gRjKHBpNsGvlhA WWl0/0ETc+SPuWDwBzMaZXHsgAROFzqkCsUOTieQ19zuJuXM9y0Hhgb/G2M57fC7 RYC1smvA0cgE6omF3eR0B1wv2rwH0wg5hNGk1LU5aj7jIhvMFrvZXmItaczGeuTw EiJHealo9X9PrMgbkLvy1bLKCHYHz75FO1hypwseLpPE/12H+/g1Og8BGQl60U4N T24nlQBkS0aS11sBi3OrX49KnjpZtuCKNF8bL9m+8GWDGGRzKSA8+AUmBWLqzfsd xQ9HK/hbBaZ5JglYGe52CyNiQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI0i2DyY Pm+/n7bUToBfLqaekaFkMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbPitjXbeoEqYx3lLpEIAZ4mcob4K1nA6g0rsK5s1INaTGkFs3YrJD/tMfruo mme3qXVxlYRUFI/DAYXPLZHAhV0MxKou7K3lUJbowWxHdDwpNb7XInKJKsIa0lwv 19vNewd+hKzrO4pIhB1b4l9jRQ+G+FZZ9uBxv/xN4cvvun97fqANRreWtcOCGjS0 1MW5/H18mDgB6ac6rdxJ+la27OVmdj5eKNeAzsd/Fd7DtF+qr7c6Vhr5dGQdJ5fd seu+qy7GBUsVKKHBhEUF7mXBltoo9At3T2WQdzOvD6VDSPrRS0yjCIbYeQIwZjCn Trm1GcUu98QJJlz5uWRNRpbCGg== -----END CERTIFICATE-----Generated at Wed May 13 06:43:59 2026 by rpki-client