$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: BaKWvtwNAZRcAFaarKNdcdeSRbo/Z8hSXtuxZFW/+cI= Subject key identifier: 6B:CD:34:19:C9:BD:E0:BF:26:D9:7E:F7:16:E6:2B:AD:9E:1F:84:FB Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: D6 Signing time: Mon 11 May 2026 06:52:08 +0000 Manifest this update: Mon 11 May 2026 06:52:08 +0000 Manifest next update: Mon 18 May 2026 06:52:08 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: F+VMe6sjjHI0F8ppeujHdL/h9Ld9eJiSU2QWsLVVOs4=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: jRuHimWgQS+tjLR9bDCVnhmy0GeAXCUN8m6ZV5rJabM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: May 11 06:52:08 2026 GMT Not After : May 18 06:52:08 2026 GMT Subject: CN=6a017c98-84cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:99:2a:e7:33:4b:b4:c7:5f:58:06:5e:87: 69:35:91:92:92:ec:36:b5:66:15:84:d8:2c:42:d7: 1d:5d:61:31:d8:a1:18:d7:19:6b:10:83:c1:f9:e5: 95:8c:24:1e:c6:93:55:99:e9:6f:c8:84:d0:22:6a: 20:a9:c2:ef:a3:4f:b5:bb:d5:53:fd:56:fc:26:cd: 7a:8a:a4:c9:95:c1:00:47:ec:12:04:dc:5b:45:29: 7a:8d:ca:fa:14:6f:fe:f2:4b:76:ec:3c:98:d5:1c: 53:d1:4c:e3:e4:a1:03:a5:26:8f:8d:b4:c1:72:a2: ac:f1:c6:fd:c0:ef:25:e7:f8:e2:14:e4:58:f7:72: 83:a9:eb:a5:d4:99:8c:f2:63:76:5e:1d:38:a7:15: 20:bd:a8:fb:b5:5d:c4:d9:93:bd:09:59:ae:1b:6c: c2:81:25:7f:98:9e:7b:09:29:b2:fc:ba:d5:30:0e: 43:ec:4e:bc:e8:45:b1:dc:75:b6:19:10:3c:18:14: 10:a9:19:a3:6b:5a:b9:08:5a:9d:f9:62:9a:e1:4f: 5d:69:7d:42:f3:7b:67:db:d4:58:93:6c:9d:73:98: a7:b0:d5:53:79:b7:3a:50:34:33:24:49:68:6d:13: 57:50:a6:a0:98:c6:47:9f:49:28:b9:c7:c0:17:39: cb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CD:34:19:C9:BD:E0:BF:26:D9:7E:F7:16:E6:2B:AD:9E:1F:84:FB X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:9b:d7:7c:2c:ab:c4:6e:73:3a:9f:77:72:ed:46:44:c9:b0: 61:34:f2:2f:2a:a8:fc:46:6f:ba:fa:4f:89:ae:c7:e7:9b:56: d6:c9:0d:0e:24:3c:5c:9d:07:6b:79:2d:43:a9:43:8a:94:7d: 0a:05:97:b3:9a:be:6d:f7:84:1f:b5:4a:0f:44:84:7d:ce:da: 86:12:84:3c:f2:fc:62:d8:57:d6:20:5e:c1:47:1e:18:10:26: d0:fc:b9:c9:56:14:1e:00:5c:a4:1b:ae:8c:e5:2e:c1:bc:b9: 9e:5a:0e:a5:cb:63:6c:21:7e:ed:3a:2a:15:95:4a:41:22:bd: ba:72:48:86:75:ad:1b:5d:41:64:09:75:ff:22:5d:d2:60:af: e6:c9:72:f6:c1:09:67:9d:3d:a6:f9:df:41:5d:9d:b4:16:a5: 6c:b1:b5:ea:a9:13:59:19:46:ec:87:80:c5:87:b3:56:74:33: 4f:c0:fa:6b:32:72:a4:b9:fe:e6:52:ce:53:e2:3a:38:0d:4b: 42:d5:f9:71:92:44:4e:11:7e:e6:32:a0:d2:10:74:9e:03:a5: b9:32:57:f7:7e:bb:2d:b4:5a:13:54:40:4f:a6:3a:21:d9:19: 42:58:95:25:17:1e:07:49:7a:55:ec:a0:0b:3a:0d:c6:23:3a: 37:90:2b:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjYwNTExMDY1MjA4WhcNMjYwNTE4MDY1MjA4WjAYMRYwFAYD VQQDEw02YTAxN2M5OC04NGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw16ZKuczS7THX1gGXodpNZGSkuw2tWYVhNgsQtcdXWEx2KEY1xlrEIPB+eWV jCQexpNVmelvyITQImogqcLvo0+1u9VT/Vb8Js16iqTJlcEAR+wSBNxbRSl6jcr6 FG/+8kt27DyY1RxT0Uzj5KEDpSaPjbTBcqKs8cb9wO8l5/jiFORY93KDqeul1JmM 8mN2Xh04pxUgvaj7tV3E2ZO9CVmuG2zCgSV/mJ57CSmy/LrVMA5D7E686EWx3HW2 GRA8GBQQqRmja1q5CFqd+WKa4U9daX1C83tn29RYk2ydc5insNVTebc6UDQzJElo bRNXUKagmMZHn0koucfAFznLTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGvNNBnJ veC/Jtl+9xbmK62eH4T7MB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIpvXfCyrxG5zOp93cu1GRMmwYTTyLyqo/EZvuvpPia7H55tW1skNDiQ8XJ0H a3ktQ6lDipR9CgWXs5q+bfeEH7VKD0SEfc7ahhKEPPL8YthX1iBewUceGBAm0Py5 yVYUHgBcpBuujOUuwby5nloOpctjbCF+7ToqFZVKQSK9unJIhnWtG11BZAl1/yJd 0mCv5sly9sEJZ509pvnfQV2dtBalbLG16qkTWRlG7IeAxYezVnQzT8D6azJypLn+ 5lLOU+I6OA1LQtX5cZJEThF+5jKg0hB0ngOluTJX9367LbRaE1RAT6Y6IdkZQliV JRceB0l6VeygCzoNxiM6N5Ar2A== -----END CERTIFICATE-----Generated at Wed May 13 04:18:36 2026 by rpki-client