$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: m4jFqsIW5/Kkj7ZnSG1XfNTey4FUK9uBoWvh9QnvNJU= Subject key identifier: 5E:F1:35:C1:75:B7:1C:B6:E1:92:31:58:49:97:65:30:45:E9:5B:2E Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0290 Signing time: Wed 13 May 2026 01:53:01 +0000 Manifest this update: Wed 13 May 2026 01:53:01 +0000 Manifest next update: Wed 20 May 2026 01:53:01 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: PXv+XKHuVv5ZcNMlkXpgNr8CV5tiMyQHC9xXyKtQ0xM=) 2: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: niAe7uFd21HH6WERU7iTs3hEOi8m5PmAvBhzB5K4rB0=) 3: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: P6xx3LV0yIZz7Bt3wASwzM1QkFL56uH39jrYrM1xsJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: May 13 01:53:01 2026 GMT Not After : May 20 01:53:01 2026 GMT Subject: CN=6a03d97d-66d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cd:66:d3:23:3f:93:1e:74:1e:00:12:aa:f0: 99:23:51:85:09:6b:d9:60:1c:5a:de:ae:d1:38:3e: 42:5f:ab:df:0a:95:02:54:55:bc:9c:ea:82:49:e6: d2:db:9d:7b:ce:ac:9c:9b:04:54:79:b0:2f:a4:75: 08:51:df:1c:2e:cc:6b:28:63:a0:99:8e:a3:d8:45: 56:db:c2:11:27:26:0e:3b:1a:42:30:75:3e:ef:dd: b8:5e:77:69:ce:1d:81:ad:4d:c8:57:5c:87:d3:b5: 8b:f3:22:91:82:89:47:95:2c:bf:ec:9f:e2:4c:79: 6e:fe:85:cc:4b:87:16:c8:14:3f:43:1f:bd:3d:32: ce:31:71:f2:ed:f2:12:c3:c5:a3:a5:b7:05:26:e2: 1d:cb:37:d1:a3:e6:5c:8f:ef:7f:7c:b1:b8:79:af: 81:78:8c:c5:26:81:8a:1d:45:f4:77:da:38:e8:e8: 4a:5f:ce:aa:38:9d:82:21:7d:81:64:d6:74:eb:a5: 0e:e2:f3:19:93:f7:bb:0a:8b:84:67:c9:40:98:36: 45:22:18:28:90:d8:12:27:19:70:71:15:8c:d2:66: 0d:55:d8:8a:c0:19:b7:3f:bb:02:03:3b:6f:93:e0: 54:92:a7:d9:1d:97:91:9a:0e:51:a8:1c:3e:92:02: df:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F1:35:C1:75:B7:1C:B6:E1:92:31:58:49:97:65:30:45:E9:5B:2E X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:a7:ea:50:b6:59:ca:b0:53:c1:15:89:20:a9:dc:b2:cb:a1: 7c:91:b2:57:cf:14:ce:af:9f:0b:50:aa:dd:fa:a5:f0:45:bf: 05:5e:71:8c:12:e7:33:40:d1:d5:93:d8:ef:bf:a7:c3:c9:18: d5:5e:8f:0b:a4:f4:11:6f:cc:0d:da:65:67:f4:d9:57:37:c8: 83:b2:66:b0:23:7c:47:9b:e0:0f:03:5f:0e:d0:0f:54:3d:58: 55:25:9f:93:a7:0c:1f:c8:c0:22:4e:ed:77:38:70:6b:53:17: 8e:e1:55:df:eb:bd:c7:33:02:4f:6d:ab:58:e0:aa:19:2f:88: 94:a3:0b:4c:f0:77:0b:d6:bd:6a:81:48:a6:fd:b9:f8:ca:02: 5f:3f:91:5a:d1:85:9b:55:53:ff:e7:93:44:47:26:d6:24:24: 6e:83:66:6d:f4:1c:65:16:7a:57:19:43:d2:24:96:2a:d9:0c: e4:22:a5:df:8e:3e:28:ec:2d:0c:cd:e2:c3:7f:7f:c5:2b:5b: cf:db:f4:1d:f1:eb:7e:79:8d:f1:ea:3f:47:2c:2f:8a:0a:35: ea:69:36:af:03:09:6c:fc:5e:2b:db:30:7e:bf:88:9f:c9:5f: 11:bc:26:09:d7:71:89:af:12:a7:e6:14:de:e5:53:1d:fd:88: f9:0c:51:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjYwNTEzMDE1MzAxWhcNMjYwNTIwMDE1MzAxWjAYMRYwFAYD VQQDEw02YTAzZDk3ZC02NmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAos1m0yM/kx50HgASqvCZI1GFCWvZYBxa3q7ROD5CX6vfCpUCVFW8nOqCSebS 2517zqycmwRUebAvpHUIUd8cLsxrKGOgmY6j2EVW28IRJyYOOxpCMHU+7924Xndp zh2BrU3IV1yH07WL8yKRgolHlSy/7J/iTHlu/oXMS4cWyBQ/Qx+9PTLOMXHy7fIS w8WjpbcFJuIdyzfRo+Zcj+9/fLG4ea+BeIzFJoGKHUX0d9o46OhKX86qOJ2CIX2B ZNZ066UO4vMZk/e7CouEZ8lAmDZFIhgokNgSJxlwcRWM0mYNVdiKwBm3P7sCAztv k+BUkqfZHZeRmg5RqBw+kgLfRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF7xNcF1 txy24ZIxWEmXZTBF6VsuMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVqfqULZZyrBTwRWJIKncssuhfJGyV88Uzq+fC1Cq3fql8EW/BV5xjBLnM0DR 1ZPY77+nw8kY1V6PC6T0EW/MDdplZ/TZVzfIg7JmsCN8R5vgDwNfDtAPVD1YVSWf k6cMH8jAIk7tdzhwa1MXjuFV3+u9xzMCT22rWOCqGS+IlKMLTPB3C9a9aoFIpv25 +MoCXz+RWtGFm1VT/+eTREcm1iQkboNmbfQcZRZ6VxlD0iSWKtkM5CKl344+KOwt DM3iw39/xStbz9v0HfHrfnmN8eo/Rywvigo16mk2rwMJbPxeK9swfr+In8lfEbwm Cddxia8Sp+YU3uVTHf2I+QxRLw== -----END CERTIFICATE-----Generated at Wed May 13 13:13:13 2026 by rpki-client