$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: zNjolTbQKtOEsJOz4b8vKLeLl5DqzToDdINWaMpUOS4= Subject key identifier: 47:8B:76:55:46:60:B0:44:FC:4D:1B:F9:3F:CA:CB:84:74:25:41:C2 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 101A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0FDD Signing time: Tue 12 May 2026 17:33:15 +0000 Manifest this update: Tue 12 May 2026 17:33:14 +0000 Manifest next update: Tue 19 May 2026 17:33:14 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: p13Q1qY8ZJZMnbd9cbntjARM4qPxejtHHgbdJMwlJ/A=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: thWs/wjgTce2OH8uRbqin2U/9yRfT0t37bg0yz1umNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4122 (0x101a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: May 12 17:33:14 2026 GMT Not After : May 19 17:33:14 2026 GMT Subject: CN=6a03645b-dee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:b1:71:5b:41:8f:c3:72:f7:72:26:c6:c1: c3:ed:e8:62:bb:96:20:fd:2d:fe:a9:f2:86:02:11: 07:1c:68:b7:a6:08:7d:23:37:a3:df:0f:68:ac:d6: 97:4a:0c:69:9a:6e:9d:b3:4d:c1:eb:4e:dd:ce:f3: 77:e7:39:f4:ee:c8:a7:1a:10:ef:21:7b:b8:1e:20: cd:fc:8a:13:33:91:16:73:bf:9b:30:4a:ea:c8:43: 66:08:e6:90:e9:30:dc:2b:51:f0:ea:ab:0d:9b:e4: c0:46:7d:8e:55:1f:08:62:55:ca:1d:75:08:f9:5a: f9:7e:b2:51:d8:1c:2a:0e:ad:ea:9a:61:fd:f7:6d: ce:64:10:47:dc:6d:41:6c:8e:27:e4:44:00:58:f4: be:2f:4d:9d:5e:98:0e:85:e0:d4:71:16:d4:e7:a6: 3f:af:d5:48:5c:9e:b9:6d:5e:2f:26:59:fb:31:e7: 85:8d:90:d0:47:dc:2c:7a:02:5a:0c:3e:85:19:5d: 8b:4b:32:cc:e5:ae:12:62:cd:96:b0:0c:9a:bb:33: 02:ea:4e:d3:5e:c6:d4:3b:92:d2:23:d3:a8:9e:5f: 86:50:5c:80:5d:b5:20:a9:57:b8:c8:d7:e7:62:5c: 9b:1f:e9:94:ef:36:03:fe:2f:f1:da:81:f0:b6:32: 60:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:8B:76:55:46:60:B0:44:FC:4D:1B:F9:3F:CA:CB:84:74:25:41:C2 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:49:4d:a3:21:04:49:07:a8:ea:58:60:f4:fd:85:a4:bd:e1: 49:ee:14:66:ff:41:a2:f8:22:85:99:3f:8f:09:48:7f:de:20: b5:fe:66:f8:0e:3f:8c:61:7d:8f:36:cd:f7:90:f1:e8:76:71: 96:3e:2f:bc:e4:a9:24:b2:c5:31:3d:b1:da:b3:f7:81:93:45: e8:a5:b2:f6:78:b7:1d:8f:c1:6c:02:3d:c6:7b:0a:b1:9e:18: 21:c5:1e:f9:df:b3:e6:f8:e5:b7:6b:ca:17:79:ea:14:cb:c3: 59:7a:62:ec:30:e3:73:7c:2e:5b:28:7e:00:36:7f:75:97:73: fd:c2:b1:d0:a0:8c:f2:a6:2b:03:1b:d6:fa:b8:3d:d4:77:8b: 05:f4:dc:7a:5f:1c:36:07:49:44:dd:7a:92:59:1c:41:3f:16: ce:34:0f:33:94:cf:5f:40:d3:1c:74:98:34:12:59:fa:de:74: d3:f4:32:aa:77:01:c0:dd:af:17:75:fb:06:83:51:96:cf:54: b9:1e:bc:12:c1:a9:58:53:bb:39:7d:ce:f0:d6:22:f4:8b:97: a6:42:85:e7:c1:61:68:05:9d:15:e4:bd:c0:30:ef:bf:fa:b7: 30:89:c5:25:47:fd:3b:b8:83:c9:f8:82:14:7b:cc:68:e3:65: d7:ce:24:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjYwNTEyMTczMzE0WhcNMjYwNTE5MTczMzE0WjAYMRYwFAYD VQQDEw02YTAzNjQ1Yi1kZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VSxcVtBj8Ny93ImxsHD7ehiu5Yg/S3+qfKGAhEHHGi3pgh9Izej3w9orNaX Sgxpmm6ds03B607dzvN35zn07sinGhDvIXu4HiDN/IoTM5EWc7+bMErqyENmCOaQ 6TDcK1Hw6qsNm+TARn2OVR8IYlXKHXUI+Vr5frJR2BwqDq3qmmH9923OZBBH3G1B bI4n5EQAWPS+L02dXpgOheDUcRbU56Y/r9VIXJ65bV4vJln7MeeFjZDQR9wsegJa DD6FGV2LSzLM5a4SYs2WsAyauzMC6k7TXsbUO5LSI9Oonl+GUFyAXbUgqVe4yNfn YlybH+mU7zYD/i/x2oHwtjJgOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEeLdlVG YLBE/E0b+T/Ky4R0JUHCMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhUlNoyEESQeo6lhg9P2FpL3hSe4UZv9BovgihZk/jwlIf94gtf5m+A4/jGF9 jzbN95Dx6HZxlj4vvOSpJLLFMT2x2rP3gZNF6KWy9ni3HY/BbAI9xnsKsZ4YIcUe +d+z5vjlt2vKF3nqFMvDWXpi7DDjc3wuWyh+ADZ/dZdz/cKx0KCM8qYrAxvW+rg9 1HeLBfTcel8cNgdJRN16klkcQT8WzjQPM5TPX0DTHHSYNBJZ+t500/QyqncBwN2v F3X7BoNRls9UuR68EsGpWFO7OX3O8NYi9IuXpkKF58FhaAWdFeS9wDDvv/q3MInF JUf9O7iDyfiCFHvMaONl184kvQ== -----END CERTIFICATE-----Generated at Wed May 13 11:32:01 2026 by rpki-client