$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json) Hash identifier: zo4mQ4mzwdGA+2ha6aI+vbJ/cI0wRWGo+jU6JJczg8c= Subject key identifier: 2D:FB:50:84:DF:81:0E:53:70:7B:D8:09:61:D0:B7:86:EC:F4:6F:42 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft Manifest number: 0C9D Signing time: Tue 12 May 2026 18:57:46 +0000 Manifest this update: Tue 12 May 2026 18:57:45 +0000 Manifest next update: Tue 19 May 2026 18:57:45 +0000 Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: d/vo9kA1FS79V0ncaa+4FlEF1hkbK0YIJ2f/zMalR70=) 2: 1DB49770BDD511F0BF83ED5AC4F9AE02.roa (hash: 6JLMteJnja7+tiZnKdI5bf0UkqKb/Uh5AX2ANHa//84=) 3: 8B5ED70E821611F0B778F47DC4F9AE02.roa (hash: aEhA9+ssD2dfx+1WtFOaw2FrI9zywwb1i6+vFoIN8fo=) 4: 1D231FDEBDD511F0BAEEED5AC4F9AE02.roa (hash: bq9TzRhG0YcuxnkwLOhAfWs5GL/Qvk3+Q63cN6+9Ro4=) 5: 6ACD5ACC227711F1A91DCF18A4833773.roa (hash: TJMnHoqNrDu0s7s8nY8tdFhEqoWxtnw6hx5yIb/HoEo=) 6: F3B9AEC4740A11F09DAF2A29C4F9AE02.roa (hash: X5kHDpuuQNfIGRpaueB+R7zUfzuivixJGb6q6/nzsAU=) 7: C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa (hash: A4zYqw73DHHyadBQLcyhIlD6IDAEqxDy3foGsjv4EZ8=) 8: F894F5B0E09411F0B3B2B389426F56BC.roa (hash: eIqw5FSoMcNJIJtxxYXZdVSI3tsH8xExWy7FIlXkyb0=) 9: 5164F13EDBD811F0A0A88CE756641951.roa (hash: S+wwMGadgYhMS5OREKeaPh6PDBaoFk4/7hdgf2PBnsw=) 10: 234D0D6C500611F08771CE55C4F9AE02.roa (hash: tLlrYfQgXxnaToikebv9ZSOJv+09BIPvjOuMTXnI+m0=) 11: E3903588DA3311F082FD85DA8AD3641D.roa (hash: MfOj3lbGuO/G5TuCaMkDAViR5jscnY+4WI5jIiqpGsA=) 12: 76BF01E88EF511F0BA815369C4F9AE02.roa (hash: rfIVMs6AUfnF9P9/mHach4AIencfTT3AboN2vIjJlGQ=) 13: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (hash: rx1Mf7ylLJlz5TrZQMaxu72qnNGJnnaZIoeFSJobN+E=) 14: 8BEC7D66E54911F091014A6A756F56BC.roa (hash: gHvNsWly8Kw30Typ48MzQXoDCYERYi0RW34Z6gmffVg=) 15: 43DCAEE0BBE811F092C97714C4F9AE02.roa (hash: s+8+Ay/MDWEzNmYQjEi8P9yXENJTqx4r4dR7RY92skY=) 16: 622E19EEDA1811F0A393A6F584D3641D.roa (hash: RcYolDaRAN1Hi//EmOTv5sFW3I9hLGGajXq2gFlI3o8=) 17: E58488D0BB7A11F09DC5801DC4F9AE02.roa (hash: lZKpR1VVIPheOf685hGoxyJuXh0TJ+bcZ5UNcYowwXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: May 12 18:57:45 2026 GMT Not After : May 19 18:57:45 2026 GMT Subject: CN=6a03782a-d5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:68:9d:6a:09:a3:11:1d:0e:1f:d5:45:35:91: 39:8d:5f:8f:d3:50:7c:cf:0d:7a:e2:36:b4:8e:16: 53:d2:0e:dd:85:cf:f2:69:40:94:7c:a0:e6:d1:53: b2:43:21:a8:fd:19:87:9b:26:fa:2f:5d:76:cd:15: 37:c3:5b:95:a7:d0:db:a7:c7:a1:88:be:9f:ce:8d: 04:ad:c6:18:6c:3f:5d:14:f8:6b:d0:a8:58:4b:d5: 32:85:db:7f:d5:45:ff:67:9a:5d:4c:db:c5:34:43: a3:b3:7c:9c:62:29:30:f4:43:34:1b:08:99:88:79: 08:ba:3c:c0:19:30:6d:3a:00:76:19:23:a5:4a:db: b0:59:d4:48:56:7c:6a:cd:f4:4c:7a:63:ce:2c:2c: 81:aa:e6:b7:d1:22:73:99:d1:5b:a2:0b:b7:7a:aa: 04:d7:e0:23:f0:03:7b:ae:c1:33:26:a1:1c:fb:85: d0:63:1f:a3:b4:00:ab:73:95:52:25:c9:69:eb:16: 23:94:9e:e4:c5:ce:f6:ff:3c:45:74:44:88:0c:12: 43:e0:e6:ac:a0:6e:9d:88:90:06:6b:f1:cd:81:85: 48:45:76:70:39:26:d5:58:d4:46:65:d3:34:bd:66: 87:c9:e4:ff:25:e7:d4:a1:4c:d6:ae:82:64:3d:2b: 13:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FB:50:84:DF:81:0E:53:70:7B:D8:09:61:D0:B7:86:EC:F4:6F:42 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:a0:69:8c:aa:e9:d1:4f:b3:02:13:1f:86:79:ca:80:0d:00: a8:32:55:fe:a7:c1:94:9a:55:73:58:6f:98:5c:ef:4e:50:e2: 7c:59:86:0f:e3:7d:5c:f9:4c:21:ec:f3:64:8a:fb:d6:dc:77: 79:eb:57:85:0a:5b:d5:a4:c0:53:a8:92:87:db:3b:4a:a1:f8: 19:b2:5c:90:ff:f8:d1:66:96:73:c8:51:77:71:ef:fc:15:38: c3:29:fb:ec:07:09:4f:5a:73:a4:1f:b4:22:2a:cf:ff:cd:24: 3a:ac:23:82:4a:c5:82:29:af:1c:42:41:00:66:16:e9:c7:20: e5:f8:e1:5f:a4:e5:2b:c5:43:7d:21:c2:67:e5:e7:64:7a:9e: 99:d6:ee:35:b7:62:1c:82:7a:0d:c4:8f:58:e4:aa:82:97:18: 7f:44:30:21:fc:7f:a9:e8:ae:28:16:2f:f3:0c:40:07:05:ad: 62:10:3c:f9:4c:78:a2:9c:7b:e8:44:74:1e:2a:e6:06:da:47: 61:e7:e1:96:e3:04:7a:2f:1c:7e:e4:33:45:b0:f6:8c:d8:21: 36:d0:33:25:f9:96:dc:5d:b3:26:c1:8e:1f:a8:9c:89:5d:f4: 1c:c8:40:1a:81:5e:de:1f:ab:fc:b1:c8:2b:87:98:6d:45:b6: 24:00:80:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwNTEyMTg1NzQ1WhcNMjYwNTE5MTg1NzQ1WjAYMRYwFAYD VQQDEw02YTAzNzgyYS1kNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGidagmjER0OH9VFNZE5jV+P01B8zw164ja0jhZT0g7dhc/yaUCUfKDm0VOy QyGo/RmHmyb6L112zRU3w1uVp9Dbp8ehiL6fzo0ErcYYbD9dFPhr0KhYS9Uyhdt/ 1UX/Z5pdTNvFNEOjs3ycYikw9EM0GwiZiHkIujzAGTBtOgB2GSOlStuwWdRIVnxq zfRMemPOLCyBqua30SJzmdFbogu3eqoE1+Aj8AN7rsEzJqEc+4XQYx+jtACrc5VS Jclp6xYjlJ7kxc72/zxFdESIDBJD4OasoG6diJAGa/HNgYVIRXZwOSbVWNRGZdM0 vWaHyeT/JefUoUzWroJkPSsTLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC37UITf gQ5TcHvYCWHQt4bs9G9CMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiaBpjKrp0U+zAhMfhnnKgA0AqDJV/qfBlJpVc1hvmFzvTlDifFmGD+N9XPlM IezzZIr71tx3eetXhQpb1aTAU6iSh9s7SqH4GbJckP/40WaWc8hRd3Hv/BU4wyn7 7AcJT1pzpB+0IirP/80kOqwjgkrFgimvHEJBAGYW6ccg5fjhX6TlK8VDfSHCZ+Xn ZHqemdbuNbdiHIJ6DcSPWOSqgpcYf0QwIfx/qeiuKBYv8wxABwWtYhA8+Ux4opx7 6ER0HirmBtpHYefhluMEei8cfuQzRbD2jNghNtAzJfmW3F2zJsGOH6iciV30HMhA GoFe3h+r/LHIK4eYbUW2JACAFg== -----END CERTIFICATE-----Generated at Wed May 13 05:41:09 2026 by rpki-client