$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: uBcCNEyrRObP6JO/JFRo41RKrptcCmluvCLzmjeDboA= Subject key identifier: 3D:AB:53:58:B9:EB:36:9A:0C:4F:7A:E5:43:CE:D1:CF:23:E8:D6:EF Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 1302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 12E5 Signing time: Tue 12 May 2026 17:03:42 +0000 Manifest this update: Tue 12 May 2026 17:03:41 +0000 Manifest next update: Tue 19 May 2026 17:03:41 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: 0wHqZP0t69ojJLOnI9ZIQvPIweoRH3k/sRxlZia4um0=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: ENmiPhNmvPrhbRyvAeBKsSY9zQmQ1uUazbQzc4bFAXc=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: h19/MR9hkMVPGpl7f/+5Vxrt7msI3muNoOIhYt+wOkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4866 (0x1302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: May 12 17:03:41 2026 GMT Not After : May 19 17:03:41 2026 GMT Subject: CN=6a035d6e-e122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:ca:db:14:cc:51:60:be:1c:35:7b:32:c9: 53:51:88:1e:50:71:8e:db:cd:e9:f0:30:a8:29:6d: 6d:59:d3:9e:6b:fd:16:2b:78:16:a6:c5:51:60:c9: 21:76:25:de:7c:0b:10:70:5f:5b:25:97:7d:e0:6a: fc:7a:d7:94:98:56:07:29:e8:59:7e:e4:ba:9e:ff: 63:76:df:d0:9e:5e:1e:68:b5:e9:66:aa:b6:2c:96: 56:30:fe:bb:39:ee:a8:de:aa:83:8d:45:5e:db:60: 4e:04:73:30:0b:de:7b:a0:86:24:62:78:f2:24:c4: ae:8f:77:0d:36:8b:a0:4d:95:72:77:0b:3b:a1:be: 3c:00:5c:bf:bc:02:da:3d:60:b5:0d:89:78:b4:31: 63:f2:37:3b:f9:0c:5d:db:ed:c4:7c:a6:2d:0d:32: 50:88:f3:b3:09:c8:99:9f:9a:1e:47:f2:aa:a7:4c: 9d:63:90:9d:ae:e3:69:12:ea:59:e4:ec:b0:9c:53: 22:c5:ce:a2:b7:6f:71:46:32:17:5e:7c:aa:44:c8: ac:4c:8f:3c:19:aa:e9:f9:fc:c0:f7:94:c8:89:e2: d9:29:4d:f9:c5:49:12:55:cf:94:ce:0b:07:ae:f4: 63:4e:91:86:33:31:ab:92:0d:86:e8:4c:5b:55:cc: c6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:AB:53:58:B9:EB:36:9A:0C:4F:7A:E5:43:CE:D1:CF:23:E8:D6:EF X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3f:91:6e:ef:26:ee:ea:5e:11:af:7c:64:d1:71:4d:69:c5: 7c:92:7b:7d:5b:97:3b:4c:5c:15:a0:a1:cd:30:ee:ee:b9:c9: 89:e5:03:e6:52:87:9c:1c:8c:c3:4e:6b:6f:ae:fc:a9:5a:5d: 6d:96:3a:16:64:f8:0c:19:b8:a1:52:65:fd:9b:c6:4f:f9:35: d9:cd:73:e8:a1:86:a8:e4:20:4e:5b:66:94:60:f0:8f:dd:99: 53:23:15:5e:22:1f:0b:82:59:fa:41:34:b9:6d:eb:df:ee:8d: 34:dd:8e:66:30:aa:12:e8:df:ef:1d:c6:77:af:ad:a0:4c:0b: ee:63:15:bf:9f:d1:9f:7c:7c:46:c9:09:9b:6a:9e:ca:f3:3f: 07:d4:75:11:89:4f:2b:9d:bc:99:bb:26:ab:21:cc:56:f4:2d: 47:93:8d:2a:7e:79:d2:8c:dc:fe:da:31:e9:a1:bf:b4:e1:b0: 37:81:fb:c8:9e:e7:a8:05:26:0b:f6:0e:b9:b3:3b:70:a7:c9: f2:b1:e0:a5:a8:d3:ea:bb:4d:8e:41:57:1b:81:a6:2f:8b:78: 52:36:2f:e0:9e:f8:c0:22:82:8c:ab:5f:2d:c2:db:0d:b5:72: 26:12:d0:71:68:a6:86:7f:e4:dc:43:e3:d4:d1:26:ae:d7:16: fe:c6:3a:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjYwNTEyMTcwMzQxWhcNMjYwNTE5MTcwMzQxWjAYMRYwFAYD VQQDEw02YTAzNWQ2ZS1lMTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0bK2xTMUWC+HDV7MslTUYgeUHGO283p8DCoKW1tWdOea/0WK3gWpsVRYMkh diXefAsQcF9bJZd94Gr8eteUmFYHKehZfuS6nv9jdt/Qnl4eaLXpZqq2LJZWMP67 Oe6o3qqDjUVe22BOBHMwC957oIYkYnjyJMSuj3cNNougTZVydws7ob48AFy/vALa PWC1DYl4tDFj8jc7+Qxd2+3EfKYtDTJQiPOzCciZn5oeR/Kqp0ydY5CdruNpEupZ 5OywnFMixc6it29xRjIXXnyqRMisTI88Garp+fzA95TIieLZKU35xUkSVc+UzgsH rvRjTpGGMzGrkg2G6ExbVczGzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD2rU1i5 6zaaDE965UPO0c8j6NbvMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmT+Rbu8m7upeEa98ZNFxTWnFfJJ7fVuXO0xcFaChzTDu7rnJieUD5lKHnByM w05rb678qVpdbZY6FmT4DBm4oVJl/ZvGT/k12c1z6KGGqOQgTltmlGDwj92ZUyMV XiIfC4JZ+kE0uW3r3+6NNN2OZjCqEujf7x3Gd6+toEwL7mMVv5/Rn3x8RskJm2qe yvM/B9R1EYlPK528mbsmqyHMVvQtR5ONKn550ozc/tox6aG/tOGwN4H7yJ7nqAUm C/YOubM7cKfJ8rHgpajT6rtNjkFXG4GmL4t4UjYv4J74wCKCjKtfLcLbDbVyJhLQ cWimhn/k3EPj1NEmrtcW/sY6Pw== -----END CERTIFICATE-----Generated at Wed May 13 04:14:59 2026 by rpki-client