$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: 47it0glqagqt5XOyu9/dF+fxMEhOyF8MQ1yPg57F/2c= Subject key identifier: 4E:4B:67:2E:4F:BA:13:DD:97:C1:9C:D9:8A:64:05:79:6C:34:DA:B9 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0E1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DEA Signing time: Tue 12 May 2026 17:55:38 +0000 Manifest this update: Tue 12 May 2026 17:55:38 +0000 Manifest next update: Tue 19 May 2026 17:55:38 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: UV35qCW65aGT2r51YmS8NJ3PlGBeinL6YqdnsK36Kic=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: meOmGfY3r0GblklalG+4OMMAMZcdYPQdKS2Ett97RO8=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: T5GAbC0yTN338KtcDTUO9gQz4ASEYtGI5aC6qczg2W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: May 12 17:55:38 2026 GMT Not After : May 19 17:55:38 2026 GMT Subject: CN=6a03699a-ae35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:85:85:11:26:8d:9f:92:42:c0:68:09:93:b2: 4e:38:46:75:c4:88:67:6e:39:82:5d:d6:ad:f6:b4: 86:91:06:34:6c:2f:7e:29:b0:42:d8:96:16:5d:c5: e1:2a:04:cb:b1:8a:6e:22:4c:44:b0:a1:fb:47:cd: 49:f1:2a:ab:fa:90:3c:7f:c7:37:1c:6d:b4:a5:75: b2:55:05:d0:bb:09:27:05:fd:e5:d9:20:30:e8:84: cd:b9:b9:9d:e6:49:72:d8:58:7c:82:c3:88:2d:2d: a8:0d:1d:22:60:b8:aa:c8:ae:cd:a6:bd:27:54:71: 2c:40:8c:9e:06:57:f3:08:61:ce:66:1d:b7:8d:ca: 3d:5a:2b:23:33:c7:a2:4b:9d:10:8e:c0:ec:4e:ed: a1:7e:c7:59:ff:5e:b0:f8:39:02:6b:86:af:48:ca: ed:a4:66:d9:31:a7:11:db:dd:60:0a:28:8e:9a:ed: 4e:e2:59:86:12:45:4c:e7:97:92:c8:73:03:cc:53: f4:62:97:70:ad:35:e4:dd:ad:23:db:8e:85:06:21: 15:1e:aa:5e:77:e2:2d:5c:2d:18:fe:f5:b0:a1:62: 5f:36:12:ab:bf:05:bc:cc:9d:0b:46:8c:5a:55:dc: be:8b:f8:63:ea:22:7f:51:38:a7:e5:71:27:e7:0c: e9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4B:67:2E:4F:BA:13:DD:97:C1:9C:D9:8A:64:05:79:6C:34:DA:B9 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:16:a9:5c:1a:41:39:5f:fc:d4:5b:95:de:5e:28:36:2b:5a: b1:e8:42:e8:b2:e5:a2:62:21:5f:63:17:dd:c8:0f:8b:84:d4: ac:de:84:a6:a2:14:fe:d8:6d:29:04:c9:88:fe:6a:65:9b:6e: 92:99:ae:d3:bb:c7:f1:ba:69:c9:88:2b:88:30:a3:01:5b:b9: 19:56:d7:a4:62:6f:25:51:1c:15:6e:64:69:f4:ee:b3:dc:aa: a7:d8:bf:21:f7:ea:b2:14:43:f5:02:14:0f:14:84:39:2f:52: 2b:ad:fc:b5:6a:b2:2d:05:32:c3:16:41:38:c2:c8:23:01:ca: f2:a6:39:0e:33:64:e3:1c:35:da:ea:8c:c4:7c:7d:e1:f2:b3: 74:e4:c2:27:42:91:c8:2b:95:af:b5:81:89:39:c1:ec:a5:84: 08:79:67:cc:db:03:14:e1:53:c6:24:f6:d1:e2:66:af:36:cb: b4:53:9f:60:c7:7e:9e:4f:e9:d0:4d:c7:f1:4e:a1:23:3f:b4: ae:15:fe:19:d4:87:5d:9e:35:dd:f4:ea:04:9c:de:db:f8:f1: d9:82:1e:e2:86:93:16:00:51:ee:35:11:db:54:7b:8d:26:b2: 74:b8:6c:a6:01:00:43:f3:a7:ce:ec:94:65:b9:71:43:ef:61: 71:28:92:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwNTEyMTc1NTM4WhcNMjYwNTE5MTc1NTM4WjAYMRYwFAYD VQQDEw02YTAzNjk5YS1hZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoWFESaNn5JCwGgJk7JOOEZ1xIhnbjmCXdat9rSGkQY0bC9+KbBC2JYWXcXh KgTLsYpuIkxEsKH7R81J8Sqr+pA8f8c3HG20pXWyVQXQuwknBf3l2SAw6ITNubmd 5kly2Fh8gsOILS2oDR0iYLiqyK7Npr0nVHEsQIyeBlfzCGHOZh23jco9WisjM8ei S50QjsDsTu2hfsdZ/16w+DkCa4avSMrtpGbZMacR291gCiiOmu1O4lmGEkVM55eS yHMDzFP0YpdwrTXk3a0j246FBiEVHqped+ItXC0Y/vWwoWJfNhKrvwW8zJ0LRoxa Vdy+i/hj6iJ/UTin5XEn5wzp0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE5LZy5P uhPdl8Gc2YpkBXlsNNq5MB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOhapXBpBOV/81FuV3l4oNitasehC6LLlomIhX2MX3cgPi4TUrN6EpqIU/tht KQTJiP5qZZtukpmu07vH8bppyYgriDCjAVu5GVbXpGJvJVEcFW5kafTus9yqp9i/ IffqshRD9QIUDxSEOS9SK638tWqyLQUywxZBOMLIIwHK8qY5DjNk4xw12uqMxHx9 4fKzdOTCJ0KRyCuVr7WBiTnB7KWECHlnzNsDFOFTxiT20eJmrzbLtFOfYMd+nk/p 0E3H8U6hIz+0rhX+GdSHXZ413fTqBJze2/jx2YIe4oaTFgBR7jUR21R7jSaydLhs pgEAQ/OnzuyUZblxQ+9hcSiSbw== -----END CERTIFICATE-----Generated at Wed May 13 15:53:39 2026 by rpki-client