$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: bGDwq7i7GsJ0fQATAGgpG/3jWiZaJYUUXUHOwPpXzx8= Subject key identifier: D3:52:B4:DD:E1:B7:7C:CD:65:E7:E6:A0:4D:70:33:C0:4C:A4:35:70 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0BA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B88 Signing time: Tue 12 May 2026 19:11:39 +0000 Manifest this update: Tue 12 May 2026 19:11:39 +0000 Manifest next update: Tue 19 May 2026 19:11:39 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: jzR4pDXOoN+2WH/ZOx4JzcBUI8v3edixwX9lmmJ0v9A=) 2: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: bw6V3e8uxgz/w4mVGTTnR4lCFXMSeabuBZrROz8xFwc=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: nvrbL4K8UTuSHUzb0sameKGMaeUHHtqeYardPlMzhKY=) 4: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: NYJZvZPzyDgeHzpdsKVjfnf0vb6jVGfn+iXWogNI5w0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:11:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: May 12 19:11:39 2026 GMT Not After : May 19 19:11:39 2026 GMT Subject: CN=6a037b6b-6e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:39:fd:61:4f:31:9c:4f:b1:57:4f:02:46:6c: e0:43:fc:59:d2:cd:53:e7:d5:c9:26:d5:2b:1e:17: 9a:29:25:a4:7c:f4:ba:a8:77:88:03:4e:1e:5a:25: f4:5a:f4:cd:b1:17:76:06:44:6b:2d:2f:10:b9:57: cc:b8:21:76:14:61:cb:6a:c4:0e:41:e8:55:38:f0: 92:d2:bf:f4:73:55:2b:46:d9:b6:30:22:1d:18:74: 96:1c:e4:9e:38:42:10:9c:f3:7f:fc:88:00:ff:a5: fa:4a:7d:3f:d9:2a:04:7b:36:7b:e7:8b:40:a6:3f: 52:75:f6:1e:5c:0a:be:c5:81:16:d1:65:39:9f:5d: 74:37:90:93:d3:23:09:4c:8b:10:c6:ab:3b:b0:e4: 97:ad:ec:4f:60:a9:20:ad:a4:52:8c:33:b6:72:9d: 66:bb:c6:f7:b2:17:49:e0:dc:0e:e6:58:9d:d9:9a: 31:43:81:cc:d2:50:67:ac:42:23:6b:44:02:bb:20: 92:2a:8c:96:d5:5b:d7:ba:d9:27:ef:4b:a6:c9:2a: f5:d9:27:6b:f1:5b:50:94:9d:47:e0:f7:2b:85:a6: d7:0c:22:45:3d:ce:5b:b4:7f:22:42:8b:3a:3a:85: b9:90:de:d9:a8:b6:ae:c3:90:3a:2c:8b:38:42:a1: b0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:52:B4:DD:E1:B7:7C:CD:65:E7:E6:A0:4D:70:33:C0:4C:A4:35:70 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a3:4d:d3:23:45:e7:29:19:ed:86:29:b7:55:f2:ee:94:cf: cc:f4:82:c8:0f:c3:98:84:45:69:5b:15:16:74:e6:be:ae:6c: 74:36:d5:24:10:dc:d3:70:e8:ba:25:96:0c:c6:b4:77:aa:9f: 39:89:0a:59:14:e6:30:7b:85:c2:d5:55:bf:3a:78:79:24:85: 90:81:e1:7c:ce:c1:30:af:86:73:ca:f7:72:82:3e:5b:72:5e: d6:04:e0:f4:3d:0e:7d:28:97:17:b3:eb:1c:06:df:e6:c1:a8: 5d:e3:d9:0c:60:1a:9a:28:b6:fb:90:61:7e:85:95:7e:4b:95: 79:0d:e1:19:0e:76:4a:68:ad:ed:9c:21:20:6d:cb:c1:0f:af: fa:8c:e5:c9:23:fb:22:cd:9b:b0:00:dd:70:af:99:62:c2:42: 98:ac:b5:76:16:00:b7:1a:3e:c2:3b:73:41:45:e7:2f:6d:fd: b4:72:c9:d3:e6:ce:7d:92:e4:a3:89:88:7f:d9:c1:b7:88:9b: 63:09:c2:e4:31:42:9c:42:16:72:f8:07:89:35:8a:fc:4c:fa: 3f:99:45:2c:4a:4c:4c:f4:91:f2:87:e9:a8:ca:0b:ef:4e:09: 56:e2:90:2a:44:20:db:e9:57:7d:1b:cf:c7:d1:d8:83:50:62: 49:f7:03:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjYwNTEyMTkxMTM5WhcNMjYwNTE5MTkxMTM5WjAYMRYwFAYD VQQDEw02YTAzN2I2Yi02ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jn9YU8xnE+xV08CRmzgQ/xZ0s1T59XJJtUrHheaKSWkfPS6qHeIA04eWiX0 WvTNsRd2BkRrLS8QuVfMuCF2FGHLasQOQehVOPCS0r/0c1UrRtm2MCIdGHSWHOSe OEIQnPN//IgA/6X6Sn0/2SoEezZ754tApj9SdfYeXAq+xYEW0WU5n110N5CT0yMJ TIsQxqs7sOSXrexPYKkgraRSjDO2cp1mu8b3shdJ4NwO5lid2ZoxQ4HM0lBnrEIj a0QCuyCSKoyW1VvXutkn70umySr12Sdr8VtQlJ1H4PcrhabXDCJFPc5btH8iQos6 OoW5kN7ZqLauw5A6LIs4QqGwWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNNStN3h t3zNZefmoE1wM8BMpDVwMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXaNN0yNF5ykZ7YYpt1Xy7pTPzPSCyA/DmIRFaVsVFnTmvq5sdDbVJBDc03Do uiWWDMa0d6qfOYkKWRTmMHuFwtVVvzp4eSSFkIHhfM7BMK+Gc8r3coI+W3Je1gTg 9D0OfSiXF7PrHAbf5sGoXePZDGAamii2+5BhfoWVfkuVeQ3hGQ52Smit7ZwhIG3L wQ+v+ozlySP7Is2bsADdcK+ZYsJCmKy1dhYAtxo+wjtzQUXnL239tHLJ0+bOfZLk o4mIf9nBt4ibYwnC5DFCnEIWcvgHiTWK/Ez6P5lFLEpMTPSR8ofpqMoL704JVuKQ KkQg2+lXfRvPx9HYg1BiSfcDBg== -----END CERTIFICATE-----Generated at Wed May 13 15:14:12 2026 by rpki-client