$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: YBa0wE2EKbianlAeHENXd/erY+cCbb0QB9oG3S9mS2M= Subject key identifier: 05:68:02:69:6B:25:24:85:78:A2:F6:EF:28:4F:62:62:BA:FD:99:48 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06F8 Signing time: Tue 12 May 2026 19:21:53 +0000 Manifest this update: Tue 12 May 2026 19:21:53 +0000 Manifest next update: Tue 19 May 2026 19:21:53 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: 2pQBOqFvjB1Db01ZHJhg1KhNcxvDbjd7AFbB6EUOmUM=) 2: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: Dc/AP1q1880Z3HHIDD3oFPRelHNNWO5cCeIAhTTwAeE=) 3: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: YIMgtn+dQ8yJTeLxcT1UUhFPvR85/hE3R6ckZdnpSnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: May 12 19:21:53 2026 GMT Not After : May 19 19:21:53 2026 GMT Subject: CN=6a037dd1-d3f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:39:9f:86:a3:1e:fa:8e:83:03:8c:59:b6:00: 1c:a4:5e:fc:94:db:6e:c8:8c:8a:24:d5:4d:08:1c: 97:c8:dd:55:bc:5a:f8:5f:1e:31:e9:b0:a0:af:9d: 63:8b:ed:67:78:20:df:e4:a2:00:f7:c8:30:2d:f6: c7:c5:d3:74:a2:07:cf:86:ff:02:d4:85:c5:7b:1d: b4:93:62:09:33:f8:a7:ee:34:6e:05:46:18:6b:ed: 59:4f:ba:f5:4c:b6:e1:02:2c:3a:6b:7f:b9:00:28: 03:01:8a:e7:cc:58:76:b8:15:3e:46:1d:38:a5:ba: ff:bd:05:54:df:7b:bc:ca:ed:75:ba:59:ce:73:7c: 65:a6:73:98:03:49:5f:06:a3:3e:ad:0a:46:cf:2e: 28:ca:f5:69:01:02:8c:2b:9e:55:c9:28:72:72:dc: 16:ee:b9:14:ee:fd:6d:2b:88:f5:cd:18:9c:f5:20: 6c:8c:79:15:8a:9a:37:47:55:4b:20:5d:b6:c8:d6: f6:d3:95:a1:ef:bd:95:ed:e8:69:8a:b2:30:a8:e8: 4f:cf:49:03:ad:00:41:54:00:02:bb:8c:77:8d:02: 16:a6:01:2b:b5:95:4f:60:d8:99:7b:22:b0:12:64: 2a:58:1f:2c:ff:fa:b2:8c:46:7a:fb:2d:72:12:1e: 8d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:68:02:69:6B:25:24:85:78:A2:F6:EF:28:4F:62:62:BA:FD:99:48 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:be:b4:6d:4f:e8:a2:31:df:cc:f9:8c:49:b7:6b:92:05:a9: e0:fa:86:ff:89:1e:1f:86:d9:4f:1d:3f:03:5d:e8:48:be:47: 8b:86:bc:31:80:ba:d3:ad:c3:ff:aa:5e:7e:e6:09:ca:a4:42: 7f:66:c4:41:12:f7:0a:2a:e8:bb:58:a1:82:56:99:73:36:02: 3a:b5:9d:15:5b:48:ff:71:83:c9:8f:23:e7:6b:8d:c3:37:93: d0:d3:8a:b4:37:a8:7c:93:04:38:9e:54:83:c2:de:b8:d2:7f: e3:1d:d5:ac:37:d7:37:5b:e9:e2:af:1b:e2:84:12:ec:10:2e: 74:7d:72:eb:24:ee:3f:71:c3:cc:9d:b3:19:0b:d0:d2:ef:4b: c0:a4:ee:53:d2:40:5f:f3:01:5a:a8:77:37:81:ae:c9:90:f5: e2:ea:82:47:57:f0:06:f7:36:02:32:f3:9f:32:25:d4:5d:7c: 46:7b:a0:7a:1a:aa:98:5d:08:a3:a8:71:b2:86:21:04:ba:20: cb:49:82:11:16:a5:b8:00:53:92:ee:b4:d7:65:e4:67:2c:e8: 97:51:23:38:61:77:82:5b:ea:88:3d:07:69:b3:62:e2:75:5e: 3c:09:89:41:fe:e6:27:49:73:ac:86:01:8a:e4:25:75:f6:0f: ac:2c:e4:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwNTEyMTkyMTUzWhcNMjYwNTE5MTkyMTUzWjAYMRYwFAYD VQQDEw02YTAzN2RkMS1kM2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzmfhqMe+o6DA4xZtgAcpF78lNtuyIyKJNVNCByXyN1VvFr4Xx4x6bCgr51j i+1neCDf5KIA98gwLfbHxdN0ogfPhv8C1IXFex20k2IJM/in7jRuBUYYa+1ZT7r1 TLbhAiw6a3+5ACgDAYrnzFh2uBU+Rh04pbr/vQVU33u8yu11ulnOc3xlpnOYA0lf BqM+rQpGzy4oyvVpAQKMK55VyShyctwW7rkU7v1tK4j1zRic9SBsjHkVipo3R1VL IF22yNb205Wh772V7ehpirIwqOhPz0kDrQBBVAACu4x3jQIWpgErtZVPYNiZeyKw EmQqWB8s//qyjEZ6+y1yEh6NbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAVoAmlr JSSFeKL27yhPYmK6/ZlIMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArL60bU/oojHfzPmMSbdrkgWp4PqG/4keH4bZTx0/A13oSL5Hi4a8MYC6063D /6pefuYJyqRCf2bEQRL3Cirou1ihglaZczYCOrWdFVtI/3GDyY8j52uNwzeT0NOK tDeofJMEOJ5Ug8LeuNJ/4x3VrDfXN1vp4q8b4oQS7BAudH1y6yTuP3HDzJ2zGQvQ 0u9LwKTuU9JAX/MBWqh3N4GuyZD14uqCR1fwBvc2AjLznzIl1F18RnugehqqmF0I o6hxsoYhBLogy0mCERaluABTku6012XkZyzol1EjOGF3glvqiD0HabNi4nVePAmJ Qf7mJ0lzrIYBiuQldfYPrCzksg== -----END CERTIFICATE-----Generated at Wed May 13 11:37:14 2026 by rpki-client