$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: TjPbZkqkFWixXRAWThJYLq3K5OZKTgVpxWjWm+M2jC8= Subject key identifier: 36:6B:60:D6:94:CC:C0:71:4F:8C:50:E0:DE:7A:5A:8B:8C:23:5C:E1 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1E6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1E4F Signing time: Tue 12 May 2026 16:04:54 +0000 Manifest this update: Tue 12 May 2026 16:04:54 +0000 Manifest next update: Tue 19 May 2026 16:04:54 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: uHCweB6BsHpW9bVCgsLpExV3DjaCLG1okPmclzPdJ/o=) 2: 1D57FF40A01311E684546521C4F9AE02.roa (hash: lNaIu73lqivuKf4impc1RoL9Iorynr8Oq1i414eOVLY=) 3: 4865DD00A13B11E687921078C4F9AE02.roa (hash: ct9I/aMYPGYqo53jKTnyxK/j3JeT25nkuXtpX13/eJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7786 (0x1e6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: May 12 16:04:54 2026 GMT Not After : May 19 16:04:54 2026 GMT Subject: CN=6a034fa6-3f20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:bf:1a:6d:9c:d4:d0:0a:26:2b:c9:b4:c0: 4b:e6:48:96:32:60:38:9e:87:99:dd:b0:9d:6e:93: 11:6d:de:7d:3c:b7:c4:43:dd:b9:c9:12:f7:f2:c1: 65:76:46:ab:34:7e:52:7a:20:94:ee:81:09:e6:9f: bd:9d:fe:79:82:92:da:a4:fa:cc:0a:2f:9e:0a:e3: 35:58:19:45:2c:c2:21:db:f5:cc:1a:eb:f5:79:9f: f6:f2:c7:0d:4c:15:dd:92:af:65:91:df:82:36:4a: 11:6c:ae:dc:63:ec:e9:70:fd:a5:2b:b6:e3:d2:88: 92:4c:ac:94:4e:de:9a:77:f5:0c:95:02:bd:25:65: 7f:e2:e0:0a:a1:14:a2:69:13:ea:42:16:28:6c:1d: 65:54:49:71:ad:09:c8:f2:1d:14:ae:22:ea:65:1e: d7:de:83:f6:fc:ca:e2:79:e3:c9:5b:98:56:f2:43: ae:15:1e:fc:fe:00:db:e6:b0:ed:cf:d1:9c:26:26: 3d:c8:e3:f3:dc:15:39:af:4f:90:bf:31:fd:5b:47: d9:1f:96:89:e3:1e:ae:0d:36:ab:67:9f:9d:3b:78: b5:f1:59:a7:a0:e5:11:c2:d5:ee:49:23:f1:37:ff: 5f:81:67:5f:78:82:8e:f9:1a:87:26:80:27:18:a3: 4d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6B:60:D6:94:CC:C0:71:4F:8C:50:E0:DE:7A:5A:8B:8C:23:5C:E1 X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:4a:ed:db:01:ca:45:0a:91:65:45:f1:9a:80:7c:3a:5e:23: 10:83:25:74:6b:83:75:d8:01:31:c6:6b:6e:ec:a3:41:b6:c5: 48:89:53:08:84:42:8b:46:80:a5:14:03:99:dd:a7:a5:92:31: 53:ca:d3:f6:d0:c5:14:4a:ac:e6:58:69:2d:85:a2:50:7c:ee: 57:66:e7:c7:85:a5:c1:89:43:2f:f2:e7:e6:bc:12:b1:6b:81: a1:a9:9a:12:3e:b2:d2:1b:35:6b:b6:56:37:ce:9f:48:28:ff: b8:1f:d5:c7:1c:79:02:b9:5d:19:4f:6e:95:69:22:13:a0:b4: c6:c0:5e:be:42:ba:6c:4a:3b:c9:8d:59:55:7f:4c:5b:2f:91: af:e3:f5:44:a7:a6:26:61:6e:c6:05:a1:72:2e:54:f3:4c:39: e5:ba:46:6f:8c:82:b9:4a:a3:cf:65:a9:5d:9e:9b:f3:84:9f: a0:3a:97:34:8a:9c:98:a6:fc:a8:d6:82:9c:9c:44:e6:29:7c: 00:bc:75:e8:df:c4:38:8f:e1:89:d2:87:bc:63:f9:f8:3e:4d: 2b:f0:19:f3:39:7e:c4:cd:fc:18:f8:c2:58:4c:e2:87:33:40: fc:e2:ff:b5:d7:39:39:81:c2:4c:ef:72:a1:9b:e9:de:03:c6: 81:ca:c4:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjYwNTEyMTYwNDU0WhcNMjYwNTE5MTYwNDU0WjAYMRYwFAYD VQQDEw02YTAzNGZhNi0zZjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSW/Gm2c1NAKJivJtMBL5kiWMmA4noeZ3bCdbpMRbd59PLfEQ925yRL38sFl dkarNH5SeiCU7oEJ5p+9nf55gpLapPrMCi+eCuM1WBlFLMIh2/XMGuv1eZ/28scN TBXdkq9lkd+CNkoRbK7cY+zpcP2lK7bj0oiSTKyUTt6ad/UMlQK9JWV/4uAKoRSi aRPqQhYobB1lVElxrQnI8h0UriLqZR7X3oP2/MrieePJW5hW8kOuFR78/gDb5rDt z9GcJiY9yOPz3BU5r0+QvzH9W0fZH5aJ4x6uDTarZ5+dO3i18VmnoOURwtXuSSPx N/9fgWdfeIKO+RqHJoAnGKNNTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZrYNaU zMBxT4xQ4N56WouMI1zhMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk0rt2wHKRQqRZUXxmoB8Ol4jEIMldGuDddgBMcZrbuyjQbbFSIlTCIRCi0aA pRQDmd2npZIxU8rT9tDFFEqs5lhpLYWiUHzuV2bnx4WlwYlDL/Ln5rwSsWuBoama Ej6y0hs1a7ZWN86fSCj/uB/Vxxx5ArldGU9ulWkiE6C0xsBevkK6bEo7yY1ZVX9M Wy+Rr+P1RKemJmFuxgWhci5U80w55bpGb4yCuUqjz2WpXZ6b84SfoDqXNIqcmKb8 qNaCnJxE5il8ALx16N/EOI/hidKHvGP5+D5NK/AZ8zl+xM38GPjCWEzihzNA/OL/ tdc5OYHCTO9yoZvp3gPGgcrEVQ== -----END CERTIFICATE-----Generated at Wed May 13 12:08:45 2026 by rpki-client