$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: sZhb9RNzRwMlzabqyS98w0BeQoM8UNmkgi3YX0SjcsY= Subject key identifier: 9F:12:BE:BE:16:F1:C4:0C:DC:D1:BC:81:29:DA:91:CF:5D:B8:7A:98 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0A48 Signing time: Tue 12 May 2026 19:47:15 +0000 Manifest this update: Tue 12 May 2026 19:47:15 +0000 Manifest next update: Tue 19 May 2026 19:47:15 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: 6y69r/vMHU6USR2DNTN8joQEdJfDBXhAm0LiQ7h0m28=) 2: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 72DcOTbzZF7+TCywcpXepZonikbAwf9INnwgkXqBzAU=) 3: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: WPLajparplJU8xXoLqj3sJQqQv2qTK7SmIP3Bri0gcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: May 12 19:47:15 2026 GMT Not After : May 19 19:47:15 2026 GMT Subject: CN=6a0383c3-3583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:14:3a:51:0e:09:c8:8d:7a:09:fc:0c:7c: 37:c2:87:92:cd:82:56:6c:22:40:19:d2:1a:03:e5: 2a:d8:d6:b5:b2:cc:c9:af:0d:d8:86:a7:43:ff:6b: 8b:cf:1b:bd:b2:e4:1a:63:32:c8:fd:d7:29:80:37: 2a:0e:ee:3d:d9:1a:4f:1a:79:07:51:d6:80:64:1c: ab:f5:d9:65:d9:3c:15:62:76:36:c6:57:be:12:32: bc:28:67:f5:e2:4d:38:b6:dc:db:de:c8:f3:b8:8e: 41:4c:9f:15:17:fe:8f:16:c6:ec:ef:50:80:53:c1: 5c:fe:04:cc:bd:ab:06:cd:1f:ad:94:43:11:12:21: 20:18:62:a4:37:04:21:57:05:82:fa:93:30:2f:f4: cd:83:b3:73:f1:ac:42:c5:76:32:20:96:e1:77:7c: 68:8f:51:52:07:18:ba:e5:54:2b:93:50:1f:96:dd: a5:e6:d4:5e:a7:f4:70:e1:78:02:d5:b6:7d:11:3e: fd:be:af:49:8c:72:73:54:8c:ba:f5:6c:6b:ab:63: fe:77:62:cf:35:36:90:8f:38:4c:1e:69:dc:9a:45: 1d:0e:2f:c8:3e:56:97:8e:9a:e9:2f:26:e7:59:f8: 5a:68:be:47:24:8d:33:82:ea:fe:0a:24:55:0e:fa: 92:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:12:BE:BE:16:F1:C4:0C:DC:D1:BC:81:29:DA:91:CF:5D:B8:7A:98 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:00:da:00:b7:69:9d:43:68:03:b8:55:dd:15:da:6a:ec:31: 64:0e:d7:b8:25:cf:09:4b:db:23:96:d3:94:33:82:52:82:f0: 95:f4:16:f6:01:55:36:55:3b:b3:01:dc:5e:08:91:03:bf:a1: 29:c5:2f:94:a6:de:98:50:77:54:83:ab:9f:55:69:cd:a7:95: 5f:df:10:36:29:a1:b9:cc:9c:49:86:32:10:fa:6e:b0:db:a2: 15:18:59:98:29:6f:30:ac:e8:cf:47:cb:bb:24:45:58:20:0c: 87:f3:c7:f5:1a:ec:69:13:72:da:99:0f:b2:ef:02:8a:01:83: 9e:c0:72:2d:62:65:ab:db:80:bb:db:d5:02:1d:8f:86:60:6e: ef:ee:58:1d:38:00:a6:a1:d0:fd:a3:e1:83:4a:ec:11:44:19: 99:13:4a:c3:36:11:d4:5e:14:e3:6e:0e:d0:1b:b8:be:87:10: f6:0d:d9:22:5f:d0:4d:7c:88:55:31:63:81:24:e4:a7:c9:05: 79:06:8e:98:35:21:21:99:6e:b9:86:76:94:cb:84:f6:54:68: c6:9b:58:4b:4c:7d:e6:76:e0:b3:e5:c5:5b:1b:99:f4:f3:a4: 95:aa:c9:f7:f0:db:d7:c8:82:ca:f5:b4:01:5c:76:44:53:71: b6:da:d8:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjYwNTEyMTk0NzE1WhcNMjYwNTE5MTk0NzE1WjAYMRYwFAYD VQQDEw02YTAzODNjMy0zNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHMUOlEOCciNegn8DHw3woeSzYJWbCJAGdIaA+Uq2Na1sszJrw3YhqdD/2uL zxu9suQaYzLI/dcpgDcqDu492RpPGnkHUdaAZByr9dll2TwVYnY2xle+EjK8KGf1 4k04ttzb3sjzuI5BTJ8VF/6PFsbs71CAU8Fc/gTMvasGzR+tlEMREiEgGGKkNwQh VwWC+pMwL/TNg7Nz8axCxXYyIJbhd3xoj1FSBxi65VQrk1Aflt2l5tRep/Rw4XgC 1bZ9ET79vq9JjHJzVIy69Wxrq2P+d2LPNTaQjzhMHmncmkUdDi/IPlaXjprpLybn WfhaaL5HJI0zgur+CiRVDvqS4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ8Svr4W 8cQM3NG8gSnakc9duHqYMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsQDaALdpnUNoA7hV3RXaauwxZA7XuCXPCUvbI5bTlDOCUoLwlfQW9gFVNlU7 swHcXgiRA7+hKcUvlKbemFB3VIOrn1VpzaeVX98QNimhucycSYYyEPpusNuiFRhZ mClvMKzoz0fLuyRFWCAMh/PH9RrsaRNy2pkPsu8CigGDnsByLWJlq9uAu9vVAh2P hmBu7+5YHTgApqHQ/aPhg0rsEUQZmRNKwzYR1F4U424O0Bu4vocQ9g3ZIl/QTXyI VTFjgSTkp8kFeQaOmDUhIZluuYZ2lMuE9lRoxptYS0x95nbgs+XFWxuZ9POklarJ 9/Db18iCyvW0AVx2RFNxttrYxg== -----END CERTIFICATE-----Generated at Wed May 13 13:52:10 2026 by rpki-client