$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft File: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft (raw, json) Hash identifier: QE0D/xovC6s475FtWj6DfYshUM/yUUnwzkDz0Vlv7k4= Subject key identifier: 30:F3:5D:3C:6E:57:2C:20:46:D8:85:3F:E0:AE:4B:F6:44:A9:69:8D Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 12D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft Manifest number: 12A8 Signing time: Tue 12 May 2026 17:05:48 +0000 Manifest this update: Tue 12 May 2026 17:05:47 +0000 Manifest next update: Tue 19 May 2026 17:05:47 +0000 Files and hashes: 1: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl (hash: e0pntaZFLWaJSY3UOru4RQ0upAjd+Nz7Q4lUuxX5ybk=) 2: 4551BE2CD19D11EAA120EE14C4F9AE02.roa (hash: yX0Uzg9eTPoxhzg9lrLk/1K20OmA34T+jetmGie5oOM=) 3: 29ED0D46839011EE946C5E63C4F9AE02.roa (hash: QiP/Tw9hklight716IQFhsBaTNPHXt42nLTbqUKFQ1w=) 4: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (hash: QNLelKdMSlDKmsbvqvRzrLkhu/2hfJJqmOa+I6J1bAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4817 (0x12d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33, serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: May 12 17:05:47 2026 GMT Not After : May 19 17:05:47 2026 GMT Subject: CN=6a035dec-9a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:aa:89:27:48:3b:2c:fd:e3:06:86:c8:4a:82: 40:97:a9:ab:b8:4e:32:6f:55:94:87:22:38:f0:a0: 1d:95:aa:8d:42:24:a9:f2:87:19:d6:44:c8:d2:30: 6f:ce:1d:d0:a1:97:25:85:d4:14:a3:95:84:d6:f2: c1:69:47:81:f8:2b:cd:ce:d1:75:c8:62:93:33:39: 93:f5:d5:c3:ec:02:d5:f4:01:15:b4:30:d6:4a:45: 65:91:b2:11:47:19:13:d0:17:ca:98:22:27:eb:3d: 9e:f8:2f:3b:17:43:f2:24:dd:71:72:44:6c:ef:96: 55:c3:ed:64:58:e3:3c:d8:40:d5:25:32:9a:4e:2a: 83:c8:6c:69:90:2f:19:d1:10:95:6b:e2:cb:8b:16: ad:81:2d:39:9e:9e:d3:54:5c:b8:2a:e6:32:8f:6b: 02:91:87:c7:3f:18:03:98:1a:f1:e4:29:ab:4a:7d: 6b:c4:9a:78:80:93:ee:b6:f5:06:3d:cb:8c:b6:f9: 78:b3:5c:47:e9:38:d4:f1:93:52:ce:c5:b8:89:ee: 08:bd:23:97:ae:2d:78:8e:c6:a3:42:97:e0:56:80: ce:18:7d:7b:e0:64:86:cb:b1:8a:3d:c7:46:71:cb: a5:fb:2c:36:d3:0a:ec:4e:55:c4:26:28:2b:ec:47: 48:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F3:5D:3C:6E:57:2C:20:46:D8:85:3F:E0:AE:4B:F6:44:A9:69:8D X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:38:cc:55:b7:87:41:5f:e2:7b:29:7c:3b:bb:8c:95:38:ce: af:cc:e7:8a:10:77:e0:78:e7:78:ff:7d:a7:56:5e:71:7b:7e: 03:a1:9d:86:45:b3:72:f8:d8:c1:8a:8a:41:84:71:9b:60:83: ae:56:0b:a2:58:d4:95:2b:28:3b:0d:87:d0:03:83:ab:30:1c: e0:4a:46:29:b6:89:04:bf:bf:60:25:1f:0b:af:00:3c:11:2c: af:e4:a5:91:e2:5e:1e:8f:38:b1:d8:62:80:6c:6b:f8:6a:9d: ef:c7:42:32:01:d9:67:91:77:ce:80:0d:7f:2e:88:57:f0:1a: cf:34:df:47:17:28:ad:de:c8:04:23:c0:14:60:33:0f:cd:0f: 4f:d9:fa:e1:46:c5:ba:61:33:8c:41:70:ad:c6:59:47:71:21: b8:d5:e2:d5:d3:bb:22:e8:71:2a:f0:8d:e2:5e:28:a5:67:1d: b2:82:80:b1:4b:1d:39:ff:ec:bc:dd:e4:ca:6a:87:e2:9c:69: 8a:7b:d7:3e:3c:a5:ac:b4:2c:91:f6:2b:31:5c:e3:1e:55:25: 1d:e7:a6:9d:35:e9:7f:cd:50:86:26:00:b9:7f:04:b0:af:3e: c4:9c:0d:24:48:2d:25:d1:f1:2c:bd:76:3e:e7:03:2b:fb:22: c5:20:99:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjYwNTEyMTcwNTQ3WhcNMjYwNTE5MTcwNTQ3WjAYMRYwFAYD VQQDEw02YTAzNWRlYy05YTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqqJJ0g7LP3jBobISoJAl6mruE4yb1WUhyI48KAdlaqNQiSp8ocZ1kTI0jBv zh3QoZclhdQUo5WE1vLBaUeB+CvNztF1yGKTMzmT9dXD7ALV9AEVtDDWSkVlkbIR RxkT0BfKmCIn6z2e+C87F0PyJN1xckRs75ZVw+1kWOM82EDVJTKaTiqDyGxpkC8Z 0RCVa+LLixatgS05np7TVFy4KuYyj2sCkYfHPxgDmBrx5CmrSn1rxJp4gJPutvUG PcuMtvl4s1xH6TjU8ZNSzsW4ie4IvSOXri14jsajQpfgVoDOGH174GSGy7GKPcdG ccul+yw20wrsTlXEJigr7EdIiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDDzXTxu VywgRtiFP+CuS/ZEqWmNMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UzMy84NzdBNzlCNkU5RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0Vp TUtxWGk3R3FqSGtPY0daNnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjDjMVbeHQV/ieyl8O7uMlTjOr8znihB34HjneP99p1ZecXt+A6GdhkWzcvjY wYqKQYRxm2CDrlYLoljUlSsoOw2H0AODqzAc4EpGKbaJBL+/YCUfC68APBEsr+Sl keJeHo84sdhigGxr+Gqd78dCMgHZZ5F3zoANfy6IV/AazzTfRxcord7IBCPAFGAz D80PT9n64UbFumEzjEFwrcZZR3EhuNXi1dO7IuhxKvCN4l4opWcdsoKAsUsdOf/s vN3kymqH4pxpinvXPjylrLQskfYrMVzjHlUlHeemnTXpf81QhiYAuX8EsK8+xJwN JEgtJdHxLL12PucDK/sixSCZ/g== -----END CERTIFICATE-----Generated at Wed May 13 15:20:12 2026 by rpki-client