$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft File: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft (raw, json) Hash identifier: AYtoTVpvU0j5AOnihr80f285xH2LX7pAOMBasMBCR1I= Subject key identifier: 25:88:44:7B:A7:D9:7F:28:E0:B6:34:4B:F3:63:C4:98:B9:2F:9B:28 Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Certificate serial: 7E2B2FA76085F8C40D9086C03DF0820D5FF9FEF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft Manifest number: 02D1 Signing time: Tue 12 May 2026 08:27:57 +0000 Manifest this update: Tue 12 May 2026 08:22:57 +0000 Manifest next update: Wed 13 May 2026 12:11:57 +0000 Files and hashes: 1: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (hash: kx3ayya4lPrQllp+nogQF65nwTl1whhZEUlAaHtTvAM=) 2: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl (hash: p5zDTGEbeyKNopUe8ubt353mPXo4dTkv9UOaAnqkYgI=) 3: AS153176.asa (hash: YcrzTg+SBKdEmHSIK1udwefH81IvEnVPIpXsuF8j4aw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 12:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2b:2f:a7:60:85:f8:c4:0d:90:86:c0:3d:f0:82:0d:5f:f9:fe:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Validity Not Before: May 12 08:22:57 2026 GMT Not After : May 13 12:11:57 2026 GMT Subject: CN=2588447BA7D97F28E0B6344BF363C498B92F9B28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:4a:8d:fe:7e:61:c9:e7:99:db:98:89:2c: 70:16:cb:ee:88:90:d7:75:64:00:c1:b4:6f:b0:44: f0:9e:9e:ef:57:66:db:a6:69:be:fc:af:3b:a2:64: 67:85:39:81:2e:b2:ea:7e:2b:8f:16:0a:a9:7b:74: d6:e9:3b:00:d9:65:16:3a:4b:60:4c:ad:e4:6e:99: 69:8b:f9:84:b9:cc:63:2f:b2:79:91:db:7e:09:0d: ed:89:23:61:2d:f2:c2:33:a0:4f:9d:23:6c:51:76: 7f:6b:1f:62:b6:43:05:67:97:43:ac:c9:2a:7f:26: 8b:94:b9:3e:a5:14:a6:5a:df:1b:ca:3c:81:6e:7c: aa:b3:fa:c9:6e:76:32:1d:db:51:ae:72:0d:02:9f: 1f:bf:46:7f:57:d0:7e:b1:26:fd:69:fb:f5:40:3c: 05:b3:7a:66:6a:4a:e4:cb:74:37:b7:3c:15:4b:65: 3c:70:6d:25:b9:3e:fb:16:f4:81:fa:d9:f9:9e:76: ab:bc:75:e7:e2:29:c1:ba:c1:0f:c0:90:38:71:8e: 27:aa:26:03:3e:a6:c3:91:cd:59:ae:f3:94:dc:7a: 83:57:cf:de:95:39:d3:76:d3:ee:ef:96:40:bf:21: 81:ea:d2:fa:c0:27:76:52:85:c6:b6:1d:54:c9:63: c3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:88:44:7B:A7:D9:7F:28:E0:B6:34:4B:F3:63:C4:98:B9:2F:9B:28 X509v3 Authority Key Identifier: keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:6f:f8:24:4e:a9:7b:38:c1:12:a3:80:4a:da:c2:e3:b5:99: 0b:cb:fc:93:61:9b:c6:e2:5d:50:e5:76:fc:1c:e8:8a:63:c8: 64:64:ff:16:6c:4f:98:0a:c3:f6:91:52:16:aa:dd:a7:19:4c: c6:89:a5:70:02:b4:0a:a7:9f:ed:45:26:13:2e:8a:3a:e7:a2: 78:7f:97:63:eb:41:86:66:d8:09:43:3f:89:15:3f:6f:96:93: e5:3a:64:40:3a:8e:31:52:fd:55:87:4f:4f:7d:bb:1d:9e:9e: 8c:47:a4:ea:92:4f:ba:b3:f7:b3:0c:36:c6:eb:a4:3a:ac:8f: d1:b8:e8:4d:9b:df:bf:2f:dc:7f:39:47:e1:85:0b:80:05:97: ce:33:f6:07:e8:f0:5a:78:ca:71:fe:b5:83:1d:4d:18:b2:53: 18:83:50:86:ca:0c:57:c1:2f:4b:2b:de:32:95:08:70:f0:45: 05:1e:80:26:23:28:eb:86:ef:9c:3a:e4:41:4e:33:e5:16:06: a2:95:e1:64:69:6c:ca:c6:bc:5c:c4:02:48:11:9d:8f:2c:8f: 22:ed:df:54:6a:a3:08:87:29:45:25:8c:ad:07:ee:c7:f7:09: bb:8e:48:a1:33:7f:ea:7e:26:96:a5:81:20:9a:81:a4:4f:92: 13:c2:2e:46 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUfisvp2CF+MQNkIbAPfCCDV/5/vYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyg5NEEyRjE2REY0 MTdDMzJFMDU3QUEyNjhDMEU1MkM3MEQxQTQwNkM1MB4XDTI2MDUxMjA4MjI1N1oX DTI2MDUxMzEyMTE1N1owMzExMC8GA1UEAxMoMjU4ODQ0N0JBN0Q5N0YyOEUwQjYz NDRCRjM2M0M0OThCOTJGOUIyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBrSo3+fmHJ55nbmIkscBbL7oiQ13VkAMG0b7BE8J6e71dm26ZpvvyvO6Jk Z4U5gS6y6n4rjxYKqXt01uk7ANllFjpLYEyt5G6ZaYv5hLnMYy+yeZHbfgkN7Ykj YS3ywjOgT50jbFF2f2sfYrZDBWeXQ6zJKn8mi5S5PqUUplrfG8o8gW58qrP6yW52 Mh3bUa5yDQKfH79Gf1fQfrEm/Wn79UA8BbN6ZmpK5Mt0N7c8FUtlPHBtJbk++xb0 gfrZ+Z52q7x15+IpwbrBD8CQOHGOJ6omAz6mw5HNWa7zlNx6g1fP3pU503bT7u+W QL8hgerS+sAndlKFxrYdVMljw4sCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBQliER7 p9l/KOC2NEvzY8SYuS+bKDAfBgNVHSMEGDAWgBSUovFt9BfDLgV6omjA5Sxw0aQG xTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMy85NEEyRjE2REY0MTdDMzJFMDU3 QUEyNjhDMEU1MkM3MEQxQTQwNkM1LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sS0x4YmZRWHd5NEZlcUpvd09Vc2NO R2tCc1UuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzMvOTRBMkYxNkRGNDE3QzMyRTA1 N0FBMjY4QzBFNTJDNzBEMUE0MDZDNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAKRv+CROqXs4wRKjgEra wuO1mQvL/JNhm8biXVDldvwc6IpjyGRk/xZsT5gKw/aRUhaq3acZTMaJpXACtAqn n+1FJhMuijrnonh/l2PrQYZm2AlDP4kVP2+Wk+U6ZEA6jjFS/VWHT099ux2enoxH pOqST7qz97MMNsbrpDqsj9G46E2b378v3H85R+GFC4AFl84z9gfo8Fp4ynH+tYMd TRiyUxiDUIbKDFfBL0sr3jKVCHDwRQUegCYjKOuG75w65EFOM+UWBqKV4WRpbMrG vFzEAkgRnY8sjyLt31RqowiHKUUljK0H7sf3CbuOSKEzf+p+JpalgSCagaRPkhPC LkY= -----END CERTIFICATE-----Generated at Wed May 13 03:03:49 2026 by rpki-client