$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: GxU96lYnkgoWbuL55GhhXQm/iHwDiTJ2GmO1Ps3bmCk= Subject key identifier: C5:BA:35:55:C7:71:FC:11:D1:35:54:88:38:3B:9B:55:3D:49:D8:B9 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 34C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 34A4 Signing time: Tue 12 May 2026 15:19:28 +0000 Manifest this update: Tue 12 May 2026 15:19:27 +0000 Manifest next update: Tue 19 May 2026 15:19:27 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: e98Xc7PLCrPL7HrChsiTJhAcS7v77Qw6HE58ubItjNI=) 2: A634576635D511F1A68BE981A0833773.roa (hash: 4ZRG+jBKDkZrZQYJ33ftXyXhm7MnH5udmfkKK13Boew=) 3: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: NHHqtoWG+gwaIC084o2r9OLvOpqSCVAznqovXmjnsXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13512 (0x34c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: May 12 15:19:27 2026 GMT Not After : May 19 15:19:27 2026 GMT Subject: CN=6a0344ff-4720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:1b:2b:1c:3f:e4:74:eb:d6:b0:4e:4a:cb: 9d:2e:5a:2d:15:95:3d:bb:ad:2d:92:90:0d:43:ce: 33:28:26:39:b5:9f:cd:44:53:4c:10:3e:7a:71:d0: d2:98:4c:1f:20:ab:80:ee:87:16:67:a8:5c:09:b2: 76:41:ec:cf:4d:77:6c:01:35:b7:16:6e:05:73:09: 39:4d:e2:7e:a6:75:d2:7a:61:6d:ff:8d:24:c2:2c: 46:0e:06:84:bb:95:fa:1a:16:42:d1:06:60:0e:dc: df:65:20:75:1d:b4:a9:61:4f:a9:48:c3:78:88:31: 05:78:03:21:02:79:2e:db:57:ab:aa:94:38:e2:ec: ef:89:03:8a:c2:6e:ad:eb:b2:5f:46:67:ee:15:b2: 9a:1e:8b:c0:72:51:69:2c:7f:cb:7b:be:69:9f:13: bb:f4:83:d2:ee:97:f9:96:33:fd:e6:9d:b8:f9:bc: cd:ee:b2:91:1e:5c:5d:6c:02:f3:2e:ee:2c:35:73: 2a:52:96:6f:73:95:4a:71:c5:e0:f9:bc:29:68:88: 04:54:aa:27:8b:78:84:6e:a9:56:de:be:0b:6e:fa: d5:53:e8:e4:76:cc:cc:eb:96:1b:d1:c5:b4:57:7a: 1b:53:ae:d2:84:25:59:ed:a4:9d:9d:7b:4b:a5:71: 1e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:BA:35:55:C7:71:FC:11:D1:35:54:88:38:3B:9B:55:3D:49:D8:B9 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:d9:72:9c:66:fd:79:29:c2:a0:84:bc:81:27:ec:32:3f:4b: 8d:e6:f8:35:77:91:8a:43:4e:94:fb:36:91:1f:5f:d2:a1:2d: 30:2a:86:1d:8e:9d:09:20:3b:95:27:62:a1:b8:c6:82:75:fb: 1f:33:5c:cc:d8:3c:aa:d3:a8:4a:81:21:93:00:16:50:fe:43: 01:ef:f0:b5:46:15:c6:8b:84:3c:8d:f6:ff:a1:c1:71:82:e0: d4:0f:39:b3:2f:85:bd:62:93:87:8f:9f:f9:d7:c0:16:c6:c8: cc:2f:ce:a9:de:94:40:3d:87:b3:48:51:09:e0:83:e4:ad:9a: 8a:55:3e:f5:44:d6:f4:5c:79:c3:ef:94:a5:d9:4d:86:9f:67: e1:57:e4:3f:02:a8:0d:ab:03:b4:26:f9:76:d1:49:de:78:09: c0:8e:00:63:ab:42:e3:0b:cd:46:8b:4b:d1:6a:6c:bb:49:67: 94:4f:c2:42:19:3b:cb:36:f3:d2:49:5b:6e:bf:b5:b9:4a:bb: 14:2f:ff:39:a5:bb:e6:68:47:ac:7c:06:57:d1:68:62:d1:83: 47:90:2e:25:62:19:7d:0d:3a:ab:ab:7a:55:d7:47:1e:f6:3b: 73:c8:bb:89:3e:33:f1:98:65:0c:97:52:f9:5a:81:fa:98:a2: 00:90:e0:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjYwNTEyMTUxOTI3WhcNMjYwNTE5MTUxOTI3WjAYMRYwFAYD VQQDEw02YTAzNDRmZi00NzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdgbKxw/5HTr1rBOSsudLlotFZU9u60tkpANQ84zKCY5tZ/NRFNMED56cdDS mEwfIKuA7ocWZ6hcCbJ2QezPTXdsATW3Fm4Fcwk5TeJ+pnXSemFt/40kwixGDgaE u5X6GhZC0QZgDtzfZSB1HbSpYU+pSMN4iDEFeAMhAnku21erqpQ44uzviQOKwm6t 67JfRmfuFbKaHovAclFpLH/Le75pnxO79IPS7pf5ljP95p24+bzN7rKRHlxdbALz Lu4sNXMqUpZvc5VKccXg+bwpaIgEVKoni3iEbqlW3r4LbvrVU+jkdszM65Yb0cW0 V3obU67ShCVZ7aSdnXtLpXEeEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMW6NVXH cfwR0TVUiDg7m1U9Sdi5MB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEdlynGb9eSnCoIS8gSfsMj9Ljeb4NXeRikNOlPs2kR9f0qEtMCqGHY6dCSA7 lSdiobjGgnX7HzNczNg8qtOoSoEhkwAWUP5DAe/wtUYVxouEPI32/6HBcYLg1A85 sy+FvWKTh4+f+dfAFsbIzC/Oqd6UQD2Hs0hRCeCD5K2ailU+9UTW9Fx5w++UpdlN hp9n4VfkPwKoDasDtCb5dtFJ3ngJwI4AY6tC4wvNRotL0Wpsu0lnlE/CQhk7yzbz 0klbbr+1uUq7FC//OaW75mhHrHwGV9FoYtGDR5AuJWIZfQ06q6t6VddHHvY7c8i7 iT4z8ZhlDJdS+VqB+piiAJDgkA== -----END CERTIFICATE-----Generated at Wed May 13 19:34:26 2026 by rpki-client