$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: S6G7NUOntvAD3Bm+eQj14yPtkpeZ5wt9PRGmq0RS9pw= Subject key identifier: 00:C6:F1:1C:DB:F0:56:FC:E9:D6:7C:DD:6E:F7:BD:70:2B:DD:C0:6B Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: A0 Signing time: Wed 13 May 2026 07:26:56 +0000 Manifest this update: Wed 13 May 2026 07:26:56 +0000 Manifest next update: Wed 20 May 2026 07:26:56 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: L7ZZ4ZTv1pL/iyQK4xSjPNGeFEhAkO8WbhYbGDRlucg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 07:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: May 13 07:26:56 2026 GMT Not After : May 20 07:26:56 2026 GMT Subject: CN=6a0427c0-9cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:dd:95:16:aa:fa:16:01:25:ae:91:5d:40:33: 46:e0:8f:a2:ab:37:ae:d6:de:dc:f8:b8:2f:f6:19: c1:56:c8:6f:20:a0:1c:9a:12:f0:00:77:64:3d:02: f9:a3:95:15:73:36:64:36:32:f1:44:f4:6f:c6:6c: a8:bd:e3:7d:10:bb:60:fb:4f:c3:da:28:69:de:ef: f8:d6:7e:56:ae:b2:10:26:e2:88:d9:5a:60:c7:cc: ee:e9:f8:71:01:6b:31:b8:40:3a:6f:6c:a0:38:9c: f4:dd:c4:d3:c3:ad:4e:9d:26:53:2c:0b:f4:02:88: 5a:3a:58:d8:ff:5e:d6:d3:07:fa:b5:75:a3:e1:a6: b1:50:72:cc:ec:5a:79:23:08:b7:4c:6e:9c:95:b4: c1:34:d8:a3:33:f2:e9:6c:4f:32:5f:b3:64:1a:50: 34:13:fd:e4:d7:de:c0:e3:b9:6f:80:5f:eb:92:f8: 29:02:f2:ef:f1:18:b8:60:09:1a:7d:29:30:f8:b6: 72:d3:53:ff:4e:f0:4d:4e:46:29:bb:44:3e:dd:07: 36:0e:01:44:6c:5d:db:b9:48:96:7c:ee:7c:33:1e: 9b:31:bb:6e:28:54:c0:89:3a:30:7b:71:ef:dd:19: 9c:cb:75:fa:59:bc:9c:a0:46:d9:f7:d5:b9:25:21: 00:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C6:F1:1C:DB:F0:56:FC:E9:D6:7C:DD:6E:F7:BD:70:2B:DD:C0:6B X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e3:b2:37:00:92:40:0c:4d:e3:46:2d:f5:6c:71:ad:40:c9: 6d:27:74:85:80:6c:84:bf:f4:ea:f5:8c:ac:1f:db:61:44:79: 0c:8c:6c:3c:35:5d:9b:85:5a:a4:d9:72:6d:1e:fa:0d:4d:5f: 48:be:cd:13:5f:41:d9:8b:1d:fc:22:97:46:a0:bd:2c:2f:37: ca:b7:38:f6:49:2b:b7:6d:de:c5:9a:4a:6a:4b:7f:02:22:59: f2:aa:d2:15:ee:2c:21:05:aa:8f:6d:84:22:dd:27:c9:43:86: 40:96:49:9f:03:24:53:4f:4b:7b:c7:c9:be:4d:b6:1d:3b:dc: ac:18:ad:8e:13:a1:fb:37:c8:e1:3e:02:e4:95:8a:99:ed:07: c0:bf:1c:42:86:d7:a5:28:49:23:18:11:ea:6d:d7:04:8c:d4: b9:be:4e:cb:3f:37:f3:35:52:9c:e0:92:c8:d7:b0:f4:a6:b9: 4c:0f:95:92:6e:24:2d:af:ba:4c:7c:b3:d4:b8:10:a7:cb:ab: 4a:ce:3d:7b:5a:3b:b5:04:92:00:d2:86:5a:09:c5:a3:83:91: 73:b3:6b:a3:3f:32:14:70:b9:4f:26:75:9f:9f:27:69:30:20: f1:6d:22:9b:21:cb:3e:fe:1e:33:58:f7:32:2c:26:2e:9d:f4: 2d:06:6b:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5QzUxMTAvBgNVBAUTKDg2RDk1RjQxRUQxOTgxRkE4RDBCNTkwOEQ2NDQ0NjUx MEU2RUFDN0QwHhcNMjYwNTEzMDcyNjU2WhcNMjYwNTIwMDcyNjU2WjAYMRYwFAYD VQQDEw02YTA0MjdjMC05Y2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3N2VFqr6FgElrpFdQDNG4I+iqzeu1t7c+Lgv9hnBVshvIKAcmhLwAHdkPQL5 o5UVczZkNjLxRPRvxmyoveN9ELtg+0/D2ihp3u/41n5WrrIQJuKI2Vpgx8zu6fhx AWsxuEA6b2ygOJz03cTTw61OnSZTLAv0AohaOljY/17W0wf6tXWj4aaxUHLM7Fp5 Iwi3TG6clbTBNNijM/LpbE8yX7NkGlA0E/3k197A47lvgF/rkvgpAvLv8Ri4YAka fSkw+LZy01P/TvBNTkYpu0Q+3Qc2DgFEbF3buUiWfO58Mx6bMbtuKFTAiTowe3Hv 3Rmcy3X6WbycoEbZ99W5JSEA1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFADG8Rzb 8Fb86dZ83W73vXAr3cBrMB8GA1UdIwQYMBaAFIbZX0HtGYH6jQtZCNZERlEObqx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTlDNS8wNjAzRTVCRTVE QkMxMUYwOUFBMTc4NTBDNEY5QUUwMi9odGxmUWUwWmdmcU5DMWtJMWtSR1VRNXVy SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTlDNS8wNjAzRTVCRTVEQkMxMUYwOUFBMTc4NTBDNEY5QUUwMi9odGxmUWUwWmdm cU5DMWtJMWtSR1VRNXVySDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALuOyNwCSQAxN40Yt9WxxrUDJbSd0hYBshL/06vWMrB/bYUR5DIxsPDVdm4Va pNlybR76DU1fSL7NE19B2Ysd/CKXRqC9LC83yrc49kkrt23exZpKakt/AiJZ8qrS Fe4sIQWqj22EIt0nyUOGQJZJnwMkU09Le8fJvk22HTvcrBitjhOh+zfI4T4C5JWK me0HwL8cQobXpShJIxgR6m3XBIzUub5Oyz838zVSnOCSyNew9Ka5TA+Vkm4kLa+6 THyz1LgQp8urSs49e1o7tQSSANKGWgnFo4ORc7Nroz8yFHC5TyZ1n58naTAg8W0i myHLPv4eM1j3MiwmLp30LQZr1g== -----END CERTIFICATE-----Generated at Wed May 13 14:23:11 2026 by rpki-client