$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: 5j64mLKDj163aW+ZgS0EHakmguqJVf3mMCnHIwFMQgc= Subject key identifier: F9:EA:A7:0E:CE:99:8C:1F:D3:BD:1F:CF:18:78:C0:F1:E1:DA:64:2A Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: D3 Signing time: Mon 11 May 2026 06:52:54 +0000 Manifest this update: Mon 11 May 2026 06:52:54 +0000 Manifest next update: Mon 18 May 2026 06:52:54 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: LSwXCP76QU9CBOQC9UGZqL3jdExeeZGYKnSxD3YekYg=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: 09psz8wD6VQRY3lNubXSJ0qySYqq1I9NwqwomYkBSy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: May 11 06:52:54 2026 GMT Not After : May 18 06:52:54 2026 GMT Subject: CN=6a017cc6-aea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:6e:83:5f:6e:64:2b:18:46:eb:29:0c:f2:29: 0d:96:54:39:27:ad:94:eb:8e:37:61:84:7c:01:57: 83:79:31:69:1d:61:67:42:0b:a8:b9:6f:e3:d2:ba: 89:9b:3b:e3:37:bd:ed:83:ed:4d:dc:00:97:ee:c4: 0f:87:b7:a6:63:fb:2a:98:6b:4e:f3:ae:f2:b3:48: 64:db:bb:d4:5d:5a:f1:48:e1:04:3b:8e:43:e2:cc: 4c:2d:5a:b7:6c:05:50:19:01:ca:a7:cf:b0:38:80: 97:63:e5:ac:9b:f9:04:f4:2a:a3:f4:f2:90:c9:b9: 41:ec:c0:3c:d0:43:d9:ac:b0:22:86:69:29:02:cb: b2:a6:40:37:02:1b:e8:58:ae:f4:4f:84:24:69:f4: 72:24:f2:b5:be:f6:52:9a:c4:72:36:6d:93:03:19: d0:0c:56:e2:b0:da:64:da:be:74:c1:a7:4d:18:2a: 89:1d:99:a8:70:2d:1d:09:f1:5a:6d:14:c3:08:03: ca:f9:1e:3f:de:32:7b:35:98:51:6d:e5:9b:8c:09: ec:dc:24:7c:15:ee:f7:57:2b:b7:0e:19:5f:fe:08: 48:a2:36:ad:37:82:21:38:30:e9:ff:e1:88:98:dc: c9:83:e2:83:df:5b:2a:95:48:4e:dc:a1:42:3d:bf: d9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:EA:A7:0E:CE:99:8C:1F:D3:BD:1F:CF:18:78:C0:F1:E1:DA:64:2A X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:fa:74:ec:57:ab:fb:96:19:38:60:5b:f0:96:fe:55:2d:37: 16:65:06:9c:cd:be:b1:b9:16:64:ad:a4:c9:2a:fa:3d:a3:26: 4c:ad:26:db:7e:c2:7e:41:06:44:c8:a3:06:2e:dc:33:9a:01: 27:fa:76:14:b1:b4:0d:e6:43:e0:74:2f:ad:b1:62:92:76:9c: 3c:f8:d9:37:bd:d2:90:6a:23:16:26:e5:d5:8b:43:05:2a:d7: 3d:bd:d5:b7:c1:5c:aa:58:b6:60:fc:d3:7e:0d:ac:21:f2:11: 5b:c1:6d:3a:71:6c:9c:46:81:37:e2:be:44:5a:a6:5d:47:2e: 29:03:ac:2a:28:e7:6a:3e:93:9f:9c:9f:cf:db:48:45:45:2c: 5c:10:c8:09:9a:df:eb:ec:64:be:7a:f9:21:1d:e0:55:f8:1d: be:24:8b:e6:62:1d:35:07:e8:c2:e1:2f:59:2b:4d:e5:17:3d: 86:d5:6d:90:ae:d9:91:15:e3:14:00:4c:94:81:b5:e1:c4:05: 90:c5:3c:2f:20:36:f5:3e:80:c8:92:fb:ea:d1:c0:a9:b8:0c: 7c:42:dc:88:ed:33:2e:65:b0:df:81:b2:75:21:fa:52:9f:8b: 54:b5:f8:68:97:41:79:fd:64:49:7d:7c:f7:c6:5a:0e:81:fc: fa:98:1e:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKEIwRDUyNUVBOTlENEM4RUM3NTYwNzEyNkE0OUVGNjcw N0JENkY0QUQwHhcNMjYwNTExMDY1MjU0WhcNMjYwNTE4MDY1MjU0WjAYMRYwFAYD VQQDEw02YTAxN2NjNi1hZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk26DX25kKxhG6ykM8ikNllQ5J62U6443YYR8AVeDeTFpHWFnQguouW/j0rqJ mzvjN73tg+1N3ACX7sQPh7emY/sqmGtO867ys0hk27vUXVrxSOEEO45D4sxMLVq3 bAVQGQHKp8+wOICXY+Wsm/kE9Cqj9PKQyblB7MA80EPZrLAihmkpAsuypkA3Ahvo WK70T4QkafRyJPK1vvZSmsRyNm2TAxnQDFbisNpk2r50wadNGCqJHZmocC0dCfFa bRTDCAPK+R4/3jJ7NZhRbeWbjAns3CR8Fe73Vyu3Dhlf/ghIojatN4IhODDp/+GI mNzJg+KD31sqlUhO3KFCPb/ZaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPnqpw7O mYwf070fzxh4wPHh2mQqMB8GA1UdIwQYMBaAFLDVJeqZ1MjsdWBxJqSe9nB71vSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS83QkEzRTcwQzBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlPeDFZSEVtcEo3MmNIdlc5 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRDOS83QkEzRTcwQzBFQzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlP eDFZSEVtcEo3MmNIdlc5SzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiPp07Fer+5YZOGBb8Jb+VS03FmUGnM2+sbkWZK2kySr6PaMmTK0m237CfkEG RMijBi7cM5oBJ/p2FLG0DeZD4HQvrbFiknacPPjZN73SkGojFibl1YtDBSrXPb3V t8Fcqli2YPzTfg2sIfIRW8FtOnFsnEaBN+K+RFqmXUcuKQOsKijnaj6Tn5yfz9tI RUUsXBDICZrf6+xkvnr5IR3gVfgdviSL5mIdNQfowuEvWStN5Rc9htVtkK7ZkRXj FABMlIG14cQFkMU8LyA29T6AyJL76tHAqbgMfELciO0zLmWw34GydSH6Up+LVLX4 aJdBef1kSX1898ZaDoH8+pgeiQ== -----END CERTIFICATE-----Generated at Wed May 13 06:41:53 2026 by rpki-client