$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: TlkhJjtLU70kEW0mH5xx5fJGCLGUuuTg4Y9hzPvOl/I= Subject key identifier: 0F:C1:B7:E8:48:6A:4B:84:41:A7:40:62:85:B5:AD:E9:CC:8C:8C:D5 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 121A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 108B Signing time: Tue 12 May 2026 17:34:40 +0000 Manifest this update: Tue 12 May 2026 17:34:39 +0000 Manifest next update: Tue 19 May 2026 17:34:39 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: JRilX7DK8XVC/x3QCqgM/03xrPbI0wOLXkp0Lsqt7Jg=) 2: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: SwqLx1ykNlWfnGxIgnnplctUN2Uh69BTnr1sDfxJRlM=) 3: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: J+oM/GM4p3/6d6pclXs1NjnCH5p34XNUGcl5IM3ZZ78=) 4: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: Yra/cySrBt0zcZ3P5GOXeK6swd+KmGvdWYxnM5VydGA=) 5: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: jAhN4tezvJPwZDVpGZejWw4TU5H1Av+GZW6zZMmb67I=) 6: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: RdnFjFlQSbXhKdwY5kMqtzBzkUycrU7RuwuLidB948U=) 7: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: VlAWA5/d+uBjOMZi4UPagGvqPim5oPM3SxEdySpg39I=) 8: C2356A948FE811E98B967A66C4F9AE02.roa (hash: Spu6ueKiAix7Vx1bbz3QuH8zuY42SfhsOYEFzJ/3W4o=) 9: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: Dy3vf2brgO7ffq8geCJNrRWY4aeeqFaFWyK7H7SMUrk=) 10: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: wW2NNDoiiggQLts6yoRWeEta8EfkfmkpuQXd4IRvuj4=) 11: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: k1IfgBcHOoF2DvAmPhMFiueaAUbhFvWp7b5AsEN0aGA=) 12: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: t0lrWYbEsDKRavSA+NYxahXVuuhYWwqHsIgE48/DyB8=) 13: C435900ACF7C11F0AAC14644C4F9AE02.roa (hash: m9D73VL27f9lVIbOReJ6AOP2zRgFJFj+KEXEimjyt7I=) 14: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: KmEu0JXVBtwzMz7EetZKwa8KqrgE2kj5+Y9cCaXraFo=) 15: C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa (hash: 0xacdRxIlt6XlMYC4ytgm5Wnpkb/XtvJrzfDYrQNkow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4634 (0x121a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: May 12 17:34:39 2026 GMT Not After : May 19 17:34:39 2026 GMT Subject: CN=6a0364b0-e049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:78:75:11:9b:97:fb:8b:4b:c3:8c:26:1e:12: 9a:e0:8f:34:31:54:e2:5b:7e:0b:72:b0:d3:e0:8b: 4b:14:62:a2:57:d3:15:46:8a:f8:a9:ee:8c:b5:a5: 1e:de:a8:ba:33:e5:9b:9f:f9:b9:0f:be:28:02:ae: e4:31:9d:95:83:1f:7f:f3:d3:06:7e:e9:da:f1:af: 56:1d:07:62:f3:9d:29:ed:41:69:8f:b2:ea:cf:ad: 31:56:be:31:82:db:ee:1e:a0:d9:a5:41:f4:2a:74: b3:09:0c:8a:84:99:56:e7:65:87:81:67:af:3f:22: ed:27:ad:6e:1e:ed:32:c7:78:0c:bd:4c:dc:a2:6d: 67:b1:cd:45:23:a0:17:40:5c:ed:da:8e:fb:28:a4: ed:1f:bc:09:b7:09:1a:2c:84:d2:e3:3d:bb:7f:09: 38:a2:a8:ef:59:73:ac:ee:0c:02:0e:90:69:0c:c8: 82:1d:31:d9:de:fd:06:7d:d4:9c:a5:f2:70:9f:26: e8:37:fc:11:27:71:cb:4e:83:49:48:cc:04:ac:a0: 97:6a:0b:ea:56:8e:7d:48:e2:c7:d1:4b:fc:f7:6d: 8b:3c:1d:57:d8:e6:40:1a:0a:19:f0:54:34:8b:b2: 2c:32:47:5c:09:8f:76:9e:3d:c5:7a:d9:1f:3e:b4: 56:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C1:B7:E8:48:6A:4B:84:41:A7:40:62:85:B5:AD:E9:CC:8C:8C:D5 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:dc:9f:83:9e:b5:43:94:06:fe:50:f7:4c:6c:47:35:24:51: cb:32:b8:a2:84:b9:06:6e:79:86:c7:62:85:7c:84:bb:7b:22: fd:78:89:9d:e8:f5:1e:72:29:be:b7:e7:2a:8c:f9:e9:94:86: 18:d7:59:c7:85:f2:40:b7:76:70:a0:89:09:f8:27:06:b8:3f: 68:66:54:cb:df:ee:23:a1:3b:c8:d0:81:83:8d:73:67:d1:f5: d9:07:38:ff:26:d2:1f:54:54:4d:d8:c2:8c:fe:a6:90:ce:89: f8:60:b4:53:27:c1:cf:90:3b:76:1a:c5:73:8d:ba:99:6b:f7: c3:d7:7d:d4:60:02:29:db:fb:e0:40:11:b9:15:09:97:6d:b5: 58:b6:87:29:1d:4f:03:22:5e:69:9e:e9:14:d5:8d:b7:55:5e: 61:1b:90:43:d5:22:9d:06:9f:94:5a:f7:b3:5e:88:a4:eb:46: 2c:64:d7:d5:16:cd:31:94:d9:1a:34:c6:21:6e:d3:2d:b2:d7: 8b:5b:63:ec:bc:c3:98:70:11:50:40:27:a9:71:d6:9e:62:52: 7b:cf:5e:37:2c:2b:33:f8:8b:95:2c:47:f3:9c:7c:59:68:44: 66:13:93:88:59:ab:f4:3f:35:02:31:fd:43:de:35:c4:3a:9e: e8:9d:b5:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjYwNTEyMTczNDM5WhcNMjYwNTE5MTczNDM5WjAYMRYwFAYD VQQDEw02YTAzNjRiMC1lMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3h1EZuX+4tLw4wmHhKa4I80MVTiW34LcrDT4ItLFGKiV9MVRor4qe6MtaUe 3qi6M+Wbn/m5D74oAq7kMZ2Vgx9/89MGfuna8a9WHQdi850p7UFpj7Lqz60xVr4x gtvuHqDZpUH0KnSzCQyKhJlW52WHgWevPyLtJ61uHu0yx3gMvUzcom1nsc1FI6AX QFzt2o77KKTtH7wJtwkaLITS4z27fwk4oqjvWXOs7gwCDpBpDMiCHTHZ3v0GfdSc pfJwnyboN/wRJ3HLToNJSMwErKCXagvqVo59SOLH0Uv8922LPB1X2OZAGgoZ8FQ0 i7IsMkdcCY92nj3FetkfPrRWJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA/Bt+hI akuEQadAYoW1renMjIzVMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo9yfg561Q5QG/lD3TGxHNSRRyzK4ooS5Bm55hsdihXyEu3si/XiJnej1HnIp vrfnKoz56ZSGGNdZx4XyQLd2cKCJCfgnBrg/aGZUy9/uI6E7yNCBg41zZ9H12Qc4 /ybSH1RUTdjCjP6mkM6J+GC0UyfBz5A7dhrFc426mWv3w9d91GACKdv74EARuRUJ l221WLaHKR1PAyJeaZ7pFNWNt1VeYRuQQ9UinQaflFr3s16IpOtGLGTX1RbNMZTZ GjTGIW7TLbLXi1tj7LzDmHARUEAnqXHWnmJSe89eNywrM/iLlSxH85x8WWhEZhOT iFmr9D81AjH9Q941xDqe6J21Gg== -----END CERTIFICATE-----Generated at Tue May 12 21:59:04 2026 by rpki-client