$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: NkSfi5nnErdwqxTGE5bjte/a30JLc10wWfK85Iqb7EU= Subject key identifier: EC:FB:3E:A6:32:F0:EC:6B:34:7C:6F:FF:66:E2:33:0C:0E:B3:E7:34 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 06A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 0681 Signing time: Tue 12 May 2026 22:41:05 +0000 Manifest this update: Tue 12 May 2026 22:41:05 +0000 Manifest next update: Tue 19 May 2026 22:41:05 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: WWErkgdyYfv6m6UCG5JnLQxL53gPizPq4mqrtBNnBIM=) 2: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: pdws3t0lZJ1KRtlaVi7T3cqSeY6vMdRKeuikmdwYWhg=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: AcX/Q7kCXs6/lVr70u8Z/hkgVWbgvWKfVvGr/7kslLM=) 4: 4FF7919CA3AE11F08498344CC4F9AE02.roa (hash: vr8P+P39aT/1jKl6iJb1sUFbpi5nliJVWaBLeOW46aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: May 12 22:41:05 2026 GMT Not After : May 19 22:41:05 2026 GMT Subject: CN=6a03ac81-739a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:03:82:20:57:86:6d:de:2a:6b:7c:cf:23:50: d4:8e:86:a7:2f:18:11:eb:63:f4:b9:40:40:a6:50: 9d:09:30:3c:9c:1f:bb:33:e7:19:5f:c3:30:e0:6d: 7a:f0:ba:a9:23:90:28:1f:0c:fb:39:6f:fd:47:7a: 2e:b2:c4:37:59:a8:99:95:56:71:6a:e1:45:15:be: 3a:03:34:3f:c4:14:69:a9:7b:de:de:2c:e0:d6:81: f3:a1:d0:0e:73:4a:8c:b0:fc:21:11:94:30:dd:fa: 74:19:3f:66:df:1f:8e:de:14:2b:8c:76:f6:4a:39: 61:cd:4e:dd:fd:a7:87:e0:96:48:de:e9:ed:73:66: 2b:42:01:33:a3:4b:e3:42:08:5d:2d:fd:57:25:51: 34:66:3a:54:e7:e4:3a:39:59:5f:44:ba:c5:5c:1e: 68:e0:80:a5:f1:78:f2:5b:ec:d6:49:1f:aa:4a:41: 40:90:37:b0:0c:6e:b3:16:8a:ca:1e:04:e3:13:7b: 66:cd:86:90:3a:d9:40:50:c3:da:d4:bb:0a:d8:cc: d1:8a:76:35:a9:bd:ae:26:74:26:7f:bb:57:62:74: 52:4f:4f:3d:b7:73:33:e9:50:3c:a6:39:42:0a:29: 5d:f6:85:31:26:47:c3:3d:f0:fc:50:d9:e9:38:7b: 02:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FB:3E:A6:32:F0:EC:6B:34:7C:6F:FF:66:E2:33:0C:0E:B3:E7:34 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:cc:30:9a:81:38:a6:43:a2:00:e3:96:eb:84:4f:6b:eb:12: f0:c4:bb:30:67:ae:ff:b0:a3:c4:ef:f4:22:6a:49:ab:4d:0a: f8:ff:e2:90:88:ee:f8:13:a2:8a:f3:64:61:f6:43:62:e3:32: a0:54:1a:53:b7:c8:f0:63:18:05:3b:3c:5a:66:40:29:49:ec: 19:32:84:25:3e:55:11:5c:4d:a0:3e:76:1e:3c:47:67:d9:64: 0e:94:8c:01:63:a2:9c:af:09:2c:96:4f:a9:cf:4d:b6:1d:de: bc:5c:ce:a1:02:14:c8:1b:58:2d:f7:e1:a0:f9:14:6a:72:76: b0:23:19:14:a5:cf:48:1b:d4:e7:41:8b:ec:95:c8:b3:d6:2c: a4:30:41:0e:b2:58:f3:14:47:17:63:f1:74:6c:24:13:14:17: 40:4e:b2:be:bf:71:bc:5b:a9:36:e9:28:bc:ec:e9:e7:62:33: 45:1e:98:ec:7c:51:49:29:b1:14:5e:4b:38:74:74:6b:3f:5f: 58:d8:9d:aa:31:1d:e4:a5:c2:83:4c:65:94:30:4c:de:e6:c1: 12:a2:72:f9:64:32:13:89:95:08:4d:e1:f8:21:b0:82:01:b8: 21:84:12:f6:08:68:f1:ca:ce:34:d8:00:55:e9:47:c1:42:89: f6:82:f9:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjYwNTEyMjI0MTA1WhcNMjYwNTE5MjI0MTA1WjAYMRYwFAYD VQQDEw02YTAzYWM4MS03MzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQOCIFeGbd4qa3zPI1DUjoanLxgR62P0uUBAplCdCTA8nB+7M+cZX8Mw4G16 8LqpI5AoHwz7OW/9R3oussQ3WaiZlVZxauFFFb46AzQ/xBRpqXve3izg1oHzodAO c0qMsPwhEZQw3fp0GT9m3x+O3hQrjHb2SjlhzU7d/aeH4JZI3untc2YrQgEzo0vj QghdLf1XJVE0ZjpU5+Q6OVlfRLrFXB5o4ICl8XjyW+zWSR+qSkFAkDewDG6zForK HgTjE3tmzYaQOtlAUMPa1LsK2MzRinY1qb2uJnQmf7tXYnRST089t3Mz6VA8pjlC Cild9oUxJkfDPfD8UNnpOHsC4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOz7PqYy 8OxrNHxv/2biMwwOs+c0MB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR8wwmoE4pkOiAOOW64RPa+sS8MS7MGeu/7CjxO/0ImpJq00K+P/ikIju+BOi ivNkYfZDYuMyoFQaU7fI8GMYBTs8WmZAKUnsGTKEJT5VEVxNoD52HjxHZ9lkDpSM AWOinK8JLJZPqc9Nth3evFzOoQIUyBtYLffhoPkUanJ2sCMZFKXPSBvU50GL7JXI s9YspDBBDrJY8xRHF2PxdGwkExQXQE6yvr9xvFupNukovOzp52IzRR6Y7HxRSSmx FF5LOHR0az9fWNidqjEd5KXCg0xllDBM3ubBEqJy+WQyE4mVCE3h+CGwggG4IYQS 9gho8crONNgAVelHwUKJ9oL5Tg== -----END CERTIFICATE-----Generated at Wed May 13 05:06:49 2026 by rpki-client