$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: HP7FJo3FvLwECZXmX3NrXyjKqv5tO5qULR7fW/qmEQw= Subject key identifier: AB:69:02:5B:86:54:D9:AE:D7:25:DC:5A:31:25:91:B9:E3:F3:CA:1B Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0200 Signing time: Wed 13 May 2026 03:14:19 +0000 Manifest this update: Wed 13 May 2026 03:14:19 +0000 Manifest next update: Wed 20 May 2026 03:14:19 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: ZK9CTVDiTVeYoJSRdnE91BILso5iXatNVGdCfsvUDk8=) 2: 10A3333E3BAC11F1B91923E195833773.roa (hash: qv+5geqvZuNiYk7aYI5fXtMxpLW2mBJm6HRn38gC5D4=) 3: A99E5658488011EE8113A766C4F9AE02.roa (hash: PrGqSAcgp1HdiIpn0vqqOgThVUF4Ys8AxQ1iGGW7VmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: May 13 03:14:19 2026 GMT Not After : May 20 03:14:19 2026 GMT Subject: CN=6a03ec8b-136e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:7c:80:f2:e4:23:02:7e:7f:3a:e2:d1:44: e1:05:1f:6a:bd:8d:4d:0a:2d:b7:58:a7:24:d7:11: f5:25:a6:ba:e9:d6:0e:60:2f:b9:30:b9:fc:d1:54: 7f:21:2d:05:0d:95:80:6d:fe:21:ab:a0:90:2c:f5: 18:b8:98:56:b5:09:dd:64:5c:13:6b:ce:c9:fa:ce: e5:cc:0e:55:3a:f9:f5:10:5e:09:2e:27:8d:5f:f9: 01:09:41:a2:b3:89:4f:bb:20:cb:7c:3e:c1:f3:a8: ee:ce:07:bf:1c:40:91:7e:0e:1d:4e:03:66:14:1e: 46:18:4c:af:10:0b:48:96:f2:30:77:8c:c5:5b:3a: c7:5a:df:94:d7:7a:92:d7:cc:07:cd:cb:e6:84:18: 88:7f:b6:b9:a3:b9:bd:29:51:0a:5e:5a:58:5e:4f: 5a:40:98:0c:46:15:f3:90:d4:52:fc:2a:58:26:db: e7:59:89:ed:37:9b:be:fa:4d:b7:21:b0:61:3b:de: c7:71:46:cd:86:6f:e7:78:02:e2:0f:8a:f5:53:3c: 56:7d:cf:f0:56:6d:7e:19:b5:f1:cb:62:a3:53:dd: 6c:fa:36:96:0e:0c:ab:dd:99:da:5d:e9:b6:5d:2c: 07:d4:42:28:34:5c:71:1c:7c:1d:15:3d:f6:bc:32: 84:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:69:02:5B:86:54:D9:AE:D7:25:DC:5A:31:25:91:B9:E3:F3:CA:1B X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fc:2c:13:77:d9:a9:47:3a:fe:c6:62:4b:3e:e8:7c:dc:e3: 56:6c:3f:df:d1:6a:33:17:80:88:18:01:b1:f9:00:61:f5:f1: 81:a0:79:2a:9b:58:d8:57:5d:d5:43:0e:51:f7:4d:cd:ab:c4: 1e:50:a0:f1:1d:c4:62:01:34:ba:7b:c6:bd:1f:ff:d4:8b:3a: 3d:2a:51:1c:b3:9e:3c:ad:f5:36:8e:52:7f:dc:e8:a0:b8:31: bc:7e:0d:3d:09:e4:27:eb:b7:41:58:dc:20:70:2e:61:5d:c7: aa:17:b8:4e:58:d1:19:e4:3d:ce:f3:49:9f:57:ee:92:2d:c4: e3:a6:71:ad:42:fb:00:ba:d5:37:9c:d9:5e:39:5d:37:6e:b9: 4d:db:d4:8a:5f:78:68:ff:c9:8f:fb:61:90:ce:fd:11:c4:b0: 9d:25:70:92:ed:80:d3:f1:4c:4b:d4:cc:21:b5:f9:9b:80:0e: 11:7b:47:da:b5:ec:54:2d:87:97:7e:69:44:c0:c2:90:e1:58: ed:c2:bc:1b:04:97:5d:58:77:77:90:2c:f2:63:ba:7d:69:c2: 11:a0:e6:61:c5:bf:15:99:08:a2:c0:1d:cc:40:77:35:02:e8: 78:2c:63:d3:2d:da:78:bc:44:35:b6:a2:15:80:30:33:6e:80: 53:5f:ed:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjYwNTEzMDMxNDE5WhcNMjYwNTIwMDMxNDE5WjAYMRYwFAYD VQQDEw02YTAzZWM4Yi0xMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5R8gPLkIwJ+fzri0UThBR9qvY1NCi23WKck1xH1Jaa66dYOYC+5MLn80VR/ IS0FDZWAbf4hq6CQLPUYuJhWtQndZFwTa87J+s7lzA5VOvn1EF4JLieNX/kBCUGi s4lPuyDLfD7B86juzge/HECRfg4dTgNmFB5GGEyvEAtIlvIwd4zFWzrHWt+U13qS 18wHzcvmhBiIf7a5o7m9KVEKXlpYXk9aQJgMRhXzkNRS/CpYJtvnWYntN5u++k23 IbBhO97HcUbNhm/neALiD4r1UzxWfc/wVm1+GbXxy2KjU91s+jaWDgyr3ZnaXem2 XSwH1EIoNFxxHHwdFT32vDKE5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKtpAluG VNmu1yXcWjElkbnj88obMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWvwsE3fZqUc6/sZiSz7ofNzjVmw/39FqMxeAiBgBsfkAYfXxgaB5KptY2Fdd 1UMOUfdNzavEHlCg8R3EYgE0unvGvR//1Is6PSpRHLOePK31No5Sf9zooLgxvH4N PQnkJ+u3QVjcIHAuYV3Hqhe4TljRGeQ9zvNJn1fuki3E46ZxrUL7ALrVN5zZXjld N265TdvUil94aP/Jj/thkM79EcSwnSVwku2A0/FMS9TMIbX5m4AOEXtH2rXsVC2H l35pRMDCkOFY7cK8GwSXXVh3d5As8mO6fWnCEaDmYcW/FZkIosAdzEB3NQLoeCxj 0y3aeLxENbaiFYAwM26AU1/toA== -----END CERTIFICATE-----Generated at Wed May 13 10:57:57 2026 by rpki-client