$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: nzPTeUl8L7vWP+zo9oP7I7SHpqcpC4oE/RvHXGymu60= Subject key identifier: 55:6F:A2:4C:EB:81:49:19:C5:D3:E3:81:B9:49:BE:40:52:E1:FE:01 Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 01B9 Signing time: Wed 13 May 2026 04:00:14 +0000 Manifest this update: Wed 13 May 2026 04:00:13 +0000 Manifest next update: Wed 20 May 2026 04:00:13 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: v4RlNOAgT1l7VKofFkvh0xm1n1Je4q8QuTHXqQzKwak=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: oYkxtXccfNzhupGam+/pGKaAabTu5hknTCz4hIdu2D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 04:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: May 13 04:00:13 2026 GMT Not After : May 20 04:00:13 2026 GMT Subject: CN=6a03f74e-bc1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:62:6b:f0:2e:26:90:97:f0:d9:62:c5:00:23: 45:49:14:ca:b2:bc:8c:45:da:fe:8c:88:1d:05:b2: 8f:3c:37:13:58:e5:bd:b5:8b:f4:b5:b3:21:51:40: cf:20:a8:78:ec:91:68:50:8a:a4:63:68:19:53:52: 20:00:2f:35:b8:66:d3:78:14:9d:c3:6b:20:c5:ff: a7:f1:50:db:cd:9c:55:79:8c:07:82:77:89:36:ae: b0:47:28:06:fa:c4:98:17:f1:1f:bf:25:0d:38:cd: 56:d9:f8:34:51:c8:ef:af:e5:4f:15:c7:e3:b1:43: 92:0b:6e:bb:d5:67:51:6f:48:bd:ca:e0:53:5f:1e: c2:12:40:2b:9c:92:43:69:aa:07:fc:b3:20:08:d7: aa:f7:c3:99:38:22:f6:a2:15:78:7f:52:cf:e6:52: 35:e7:aa:f1:46:46:53:07:fa:ee:60:d2:94:09:a3: 25:87:85:e7:4d:da:43:56:e8:d9:ee:19:c0:03:ff: 7a:1e:f7:8d:73:c1:b7:60:64:63:1d:8c:4c:ff:0a: 85:1b:a3:9f:12:ad:ae:fc:86:93:32:dc:e5:f3:1c: 79:55:84:4d:14:f3:09:1c:12:4b:43:c2:b6:b4:e5: e9:fe:23:46:b7:4c:1a:d1:d1:fc:bc:6a:66:88:be: 8a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:6F:A2:4C:EB:81:49:19:C5:D3:E3:81:B9:49:BE:40:52:E1:FE:01 X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:9f:04:5f:02:ef:bd:ae:49:17:8d:ae:2f:5c:b5:4f:cb:1e: 81:f9:02:c5:b3:d7:3e:da:e2:37:ef:63:d3:64:59:c0:ff:e1: d2:5b:79:3f:c3:fc:0b:41:e4:fc:05:a6:ea:25:0b:c1:cb:80: 46:98:1e:fe:05:53:63:fb:a8:62:81:49:bc:a1:3b:f0:ba:f4: d9:8d:69:d1:33:c3:e3:d7:9d:e4:b6:09:95:0f:a3:9d:ba:97: 21:3c:4d:6d:2f:59:ad:3a:ae:46:66:c0:6c:f6:bf:dc:ec:1d: 55:95:ef:7d:6e:8d:03:72:2e:9e:bd:43:eb:ef:eb:fb:f2:39: 76:f7:b0:fc:23:14:af:cb:9e:11:23:c4:8b:4a:b2:b8:ec:1d: c0:f7:72:9b:f4:52:9f:e6:96:73:8f:88:c2:5b:31:6f:ab:ab: f2:85:8c:d9:b0:ac:5b:29:9f:d4:7a:30:47:2d:b7:f4:43:f2: 5d:ce:81:14:1a:22:93:b5:66:84:5c:cd:75:08:f1:5d:af:ff: c3:3a:7e:b9:cc:32:3b:a3:0d:61:84:ef:98:18:97:2f:af:ae: 85:5d:7e:b7:45:7d:6a:a2:22:cd:50:32:4f:d0:a1:b9:e8:74: dd:81:13:30:2c:a0:57:42:e5:cc:65:68:53:85:84:4f:63:7c: cd:25:34:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjYwNTEzMDQwMDEzWhcNMjYwNTIwMDQwMDEzWjAYMRYwFAYD VQQDEw02YTAzZjc0ZS1iYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2Jr8C4mkJfw2WLFACNFSRTKsryMRdr+jIgdBbKPPDcTWOW9tYv0tbMhUUDP IKh47JFoUIqkY2gZU1IgAC81uGbTeBSdw2sgxf+n8VDbzZxVeYwHgneJNq6wRygG +sSYF/EfvyUNOM1W2fg0Ucjvr+VPFcfjsUOSC2671WdRb0i9yuBTXx7CEkArnJJD aaoH/LMgCNeq98OZOCL2ohV4f1LP5lI156rxRkZTB/ruYNKUCaMlh4XnTdpDVujZ 7hnAA/96HveNc8G3YGRjHYxM/wqFG6OfEq2u/IaTMtzl8xx5VYRNFPMJHBJLQ8K2 tOXp/iNGt0wa0dH8vGpmiL6KkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFVvokzr gUkZxdPjgblJvkBS4f4BMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGp8EXwLvva5JF42uL1y1T8segfkCxbPXPtriN+9j02RZwP/h0lt5P8P8C0Hk /AWm6iULwcuARpge/gVTY/uoYoFJvKE78Lr02Y1p0TPD49ed5LYJlQ+jnbqXITxN bS9ZrTquRmbAbPa/3OwdVZXvfW6NA3Iunr1D6+/r+/I5dvew/CMUr8ueESPEi0qy uOwdwPdym/RSn+aWc4+Iwlsxb6ur8oWM2bCsWymf1HowRy239EPyXc6BFBoik7Vm hFzNdQjxXa//wzp+ucwyO6MNYYTvmBiXL6+uhV1+t0V9aqIizVAyT9Chueh03YET MCygV0LlzGVoU4WET2N8zSU0dg== -----END CERTIFICATE-----Generated at Wed May 13 10:37:16 2026 by rpki-client