$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: 9NWc1+cN4XnwhCWRyd14hPUtYzr5yoeKBH1viCh8RYw= Subject key identifier: 6E:56:9E:BA:90:AD:09:3F:95:1D:BF:F8:F4:00:66:F0:52:E0:C2:F6 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 024D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0248 Signing time: Wed 13 May 2026 02:29:03 +0000 Manifest this update: Wed 13 May 2026 02:29:03 +0000 Manifest next update: Wed 20 May 2026 02:29:03 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: D6abf+AucI5VSAK2JYiFkS6fNcagiWOx++yftL3w5Mo=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: 6U++pNkeW+MPTCwzdV8Vs83jpXrL1CTpZqHD9JNg/bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: May 13 02:29:03 2026 GMT Not After : May 20 02:29:03 2026 GMT Subject: CN=6a03e1ef-6af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cb:f9:66:6e:be:2a:9b:81:b3:eb:4f:6e:bc: 47:1f:0f:1e:a7:25:8b:30:0e:f0:e9:17:49:d0:9c: c6:8f:63:6d:30:d1:37:34:ee:ef:ee:6c:26:f3:3f: 7b:84:77:c1:4a:5b:73:47:b1:2d:cc:01:2e:2d:6e: af:40:da:6f:78:e8:19:97:19:c4:b2:51:3b:7c:5f: 3c:99:b5:5a:cd:bb:34:97:04:ce:9c:70:53:f1:76: ad:32:03:a7:2a:92:c7:c9:1a:d5:b3:d1:3f:36:cd: 17:12:a7:e6:7e:af:39:a6:65:1b:02:8f:f7:9d:5f: 5d:9c:94:cc:45:e1:09:87:14:89:8d:94:31:aa:b8: e9:b7:13:3d:b7:6a:48:7c:7a:3b:35:bd:dc:2f:06: 06:24:74:6c:59:59:9a:cc:a4:98:86:62:68:74:fc: 95:f6:3f:9b:11:18:06:09:c9:50:83:91:f3:b8:33: 8b:7b:30:12:e5:4c:fe:b0:c0:d3:b5:d9:c2:db:51: c2:1c:40:be:40:79:70:88:14:ac:8f:31:4f:c2:9e: 91:70:1b:7c:3f:bb:0d:7f:1f:20:d6:b9:28:79:ad: f2:37:89:c9:24:72:47:28:64:13:61:bd:5a:00:e9: b1:65:ce:18:fa:f1:64:8d:17:84:7f:a2:93:cd:06: 6c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:56:9E:BA:90:AD:09:3F:95:1D:BF:F8:F4:00:66:F0:52:E0:C2:F6 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:5c:42:fe:8c:f8:55:23:55:26:3b:d0:35:45:b3:e6:2d:67: 06:2f:77:29:86:fd:06:84:a6:f7:4f:8c:d8:b4:90:e0:e2:aa: bd:38:07:fb:05:ea:af:c5:78:2a:d3:c3:e9:b6:34:9e:3a:73: 44:dc:bb:69:1b:b0:f7:ef:b0:09:26:13:a6:b7:d6:44:ab:ce: b9:81:f6:95:58:83:16:66:47:cd:da:de:b7:f3:f0:84:94:39: d9:80:ad:3a:c6:60:7e:b9:53:fd:30:f8:8a:60:21:ae:c4:08: 69:7d:9e:cc:bb:ed:0b:80:9a:d2:08:c9:d3:61:7f:54:31:af: 80:99:92:c2:0a:6f:a6:9f:64:cf:76:f9:61:a0:41:f5:d6:32: 7e:43:c1:72:35:13:10:68:e8:0a:de:0b:3c:59:d8:f1:78:01: 42:3f:ab:d9:48:70:af:3b:ac:f0:53:90:65:7e:fd:49:19:a6: 7f:5d:1a:e1:e6:f2:9f:41:1e:1d:e5:ee:e3:b9:b7:a2:30:30: 74:f2:cc:01:73:61:15:bf:c0:54:b2:48:22:6d:27:db:1a:81: 93:21:8e:eb:2e:56:5d:e2:a3:0d:4c:50:6a:e8:ed:be:b7:86: 99:ad:dd:36:83:6e:6e:9c:34:b9:0a:a2:ae:3b:01:d7:8d:6d: 6b:a6:b3:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjYwNTEzMDIyOTAzWhcNMjYwNTIwMDIyOTAzWjAYMRYwFAYD VQQDEw02YTAzZTFlZi02YWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMv5Zm6+KpuBs+tPbrxHHw8epyWLMA7w6RdJ0JzGj2NtMNE3NO7v7mwm8z97 hHfBSltzR7EtzAEuLW6vQNpveOgZlxnEslE7fF88mbVazbs0lwTOnHBT8XatMgOn KpLHyRrVs9E/Ns0XEqfmfq85pmUbAo/3nV9dnJTMReEJhxSJjZQxqrjptxM9t2pI fHo7Nb3cLwYGJHRsWVmazKSYhmJodPyV9j+bERgGCclQg5HzuDOLezAS5Uz+sMDT tdnC21HCHEC+QHlwiBSsjzFPwp6RcBt8P7sNfx8g1rkoea3yN4nJJHJHKGQTYb1a AOmxZc4Y+vFkjReEf6KTzQZs5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG5WnrqQ rQk/lR2/+PQAZvBS4ML2MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfVxC/oz4VSNVJjvQNUWz5i1nBi93KYb9BoSm90+M2LSQ4OKqvTgH+wXqr8V4 KtPD6bY0njpzRNy7aRuw9++wCSYTprfWRKvOuYH2lViDFmZHzdret/PwhJQ52YCt OsZgfrlT/TD4imAhrsQIaX2ezLvtC4Ca0gjJ02F/VDGvgJmSwgpvpp9kz3b5YaBB 9dYyfkPBcjUTEGjoCt4LPFnY8XgBQj+r2Uhwrzus8FOQZX79SRmmf10a4ebyn0Ee HeXu47m3ojAwdPLMAXNhFb/AVLJIIm0n2xqBkyGO6y5WXeKjDUxQaujtvreGma3d NoNubpw0uQqirjsB141ta6azoA== -----END CERTIFICATE-----Generated at Wed May 13 08:16:10 2026 by rpki-client