$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: FCClPGtkgQbehKefLxi1I4BFfcASVku9BrrAql9LrWc= Subject key identifier: 01:2B:F5:8C:91:65:BB:7B:67:9D:50:F5:D6:6C:13:1B:DF:88:AA:D3 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3844 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 373F Signing time: Tue 12 May 2026 14:33:58 +0000 Manifest this update: Tue 12 May 2026 14:33:58 +0000 Manifest next update: Tue 19 May 2026 14:33:58 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: tD2vgUPbei2knjik8mQVf7yTLUSH7f9jBAoYBIfLJvY=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: Zntrf+XRFU/LUFPqt460t/df6T24vxpmkd5azGcAX5E=) 3: 15B06ACE01B211F1A8498BCA6C6F56BC.roa (hash: 5xNdDoLkpm/cKB7fxSHaoDjqTsi17ChXNYz70KIoKrA=) 4: 0F0E88A6192F11F183D9B1FC303D8C67.roa (hash: 5aKDuZwd3Wn+m9JFqN35rRMwxZf4PwI1YL49pBMgje4=) 5: F24EEED208C011F19DFF611F213D8C67.roa (hash: j8mZP70/+lxFmxKK+gaXtA4vlgcSiykk11UZrhv9x1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14404 (0x3844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: May 12 14:33:58 2026 GMT Not After : May 19 14:33:58 2026 GMT Subject: CN=6a033a56-72e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:af:ee:f9:67:06:a9:7c:18:38:0a:7a:7e:59: 74:6a:72:45:c1:05:cc:ff:29:b6:d2:97:d4:41:e9: c7:db:36:54:3c:18:82:5d:18:64:ad:56:86:c3:a8: fc:db:28:b4:16:6c:14:81:e1:1e:fd:e4:90:7a:ba: 65:96:00:46:b4:45:12:87:b4:1d:a8:47:db:64:cb: 3c:f1:90:3e:51:52:f6:8c:e2:aa:0e:b4:1f:52:81: c0:fa:14:3c:93:91:df:b8:fe:f7:ee:49:5a:de:7f: 2e:05:cc:7e:9a:f0:0c:5e:f5:d9:f4:da:2c:1c:49: ae:0b:92:2f:c3:03:01:4d:60:f5:9f:bd:0d:bb:ef: 6a:2f:d9:ea:9a:1b:0e:b9:96:70:87:85:2b:8c:97: 42:12:54:37:78:ec:ff:df:14:d2:ba:51:38:65:c0: 2b:8a:81:38:d6:81:c2:bf:7f:d0:64:9a:00:a4:93: c6:7a:3a:94:da:db:44:ba:da:43:71:bd:09:50:a6: 9e:e2:e3:1e:fa:6c:5a:2e:c9:12:7f:e6:44:68:03: 7b:d1:98:63:ad:13:19:31:1e:cd:a5:23:9f:61:01: 2d:0a:95:38:f6:73:66:c2:93:00:e8:86:57:eb:e8: ca:85:7a:42:d5:cd:56:a5:30:8c:cf:9f:19:6b:18: f5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2B:F5:8C:91:65:BB:7B:67:9D:50:F5:D6:6C:13:1B:DF:88:AA:D3 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:5a:73:9b:68:ba:35:75:51:05:39:98:bb:dd:1b:fb:0a:00: 06:ad:b1:9b:ea:b0:8a:d4:f1:78:87:79:bf:67:53:d6:b3:65: 40:70:6b:ae:6d:c2:79:a3:9c:a6:cc:1c:da:e4:33:83:fa:42: 70:6c:55:c4:f0:06:5a:dd:7e:36:ca:13:13:5f:84:55:8a:3d: 79:97:a4:5e:c3:89:5f:be:a9:6d:7f:65:fb:43:c8:a0:82:bc: 9c:44:1b:3c:f8:f7:ab:de:a4:6d:55:44:6b:bc:b7:19:0e:85: 85:4a:4f:f2:63:de:12:9f:9e:77:23:e0:d1:1c:57:50:b4:11: 1a:88:ee:64:7c:28:c4:ee:a1:f6:6a:ef:96:ca:7a:d8:f9:96: 3c:3e:30:50:eb:12:97:74:e2:cd:ae:a4:95:ed:c3:62:91:da: 20:49:65:b6:66:00:57:9b:21:f3:13:1d:7a:55:f1:0b:f7:27: ad:08:66:71:10:d0:34:bf:4d:4c:46:23:9c:92:4a:50:d1:39: 54:89:21:6f:ca:12:33:fd:00:1c:57:e4:a7:9c:16:8e:42:4f: 8f:cf:15:ca:ab:1a:c9:68:68:88:bd:93:22:e4:81:f8:c3:47: d7:82:8e:95:ea:07:28:7c:f8:7d:28:bf:c0:b1:dc:8e:61:69: f4:fa:14:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwNTEyMTQzMzU4WhcNMjYwNTE5MTQzMzU4WjAYMRYwFAYD VQQDEw02YTAzM2E1Ni03MmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAra/u+WcGqXwYOAp6fll0anJFwQXM/ym20pfUQenH2zZUPBiCXRhkrVaGw6j8 2yi0FmwUgeEe/eSQerpllgBGtEUSh7QdqEfbZMs88ZA+UVL2jOKqDrQfUoHA+hQ8 k5HfuP737kla3n8uBcx+mvAMXvXZ9NosHEmuC5IvwwMBTWD1n70Nu+9qL9nqmhsO uZZwh4UrjJdCElQ3eOz/3xTSulE4ZcArioE41oHCv3/QZJoApJPGejqU2ttEutpD cb0JUKae4uMe+mxaLskSf+ZEaAN70ZhjrRMZMR7NpSOfYQEtCpU49nNmwpMA6IZX 6+jKhXpC1c1WpTCMz58Zaxj1iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAEr9YyR Zbt7Z51Q9dZsExvfiKrTMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvVpzm2i6NXVRBTmYu90b+woABq2xm+qwitTxeId5v2dT1rNlQHBrrm3CeaOc pswc2uQzg/pCcGxVxPAGWt1+NsoTE1+EVYo9eZekXsOJX76pbX9l+0PIoIK8nEQb PPj3q96kbVVEa7y3GQ6FhUpP8mPeEp+edyPg0RxXULQRGojuZHwoxO6h9mrvlsp6 2PmWPD4wUOsSl3Tiza6kle3DYpHaIElltmYAV5sh8xMdelXxC/cnrQhmcRDQNL9N TEYjnJJKUNE5VIkhb8oSM/0AHFfkp5wWjkJPj88VyqsayWhoiL2TIuSB+MNH14KO leoHKHz4fSi/wLHcjmFp9PoUJw== -----END CERTIFICATE-----Generated at Wed May 13 04:14:17 2026 by rpki-client