$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: O0VLdGwlhAaGO4iMMqTDCx8wj7ar182MEsKV000XLwQ= Subject key identifier: 1A:30:9F:60:75:7D:4C:5A:64:3B:91:5A:40:08:AF:14:33:D8:96:C2 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 86 Signing time: Mon 11 May 2026 07:49:34 +0000 Manifest this update: Mon 11 May 2026 07:49:34 +0000 Manifest next update: Mon 18 May 2026 07:49:34 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: zpzHRt/so6uhPLvLgweOMkpfQ28vlpHmXvViKhBvrsI=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: hmo0JZjqsUcXR1CeyKb5AUyvewOo9tGw1tDFanCmkiU=) 3: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Rt4TGbr/K+WJ5nQlhD3lcCPl9EyJK1zP7OfMfktiw14=) 4: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: ZTYnYrXftu4EMVac2jtmasDDa1311QW4YkSq9Et/mjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: May 11 07:49:34 2026 GMT Not After : May 18 07:49:34 2026 GMT Subject: CN=6a018a0e-8e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ed:fd:99:db:0d:39:fc:4e:ec:ec:e1:d5:76: 78:f2:0e:f0:d7:ac:db:13:19:9e:37:a5:ed:fc:24: 9c:fc:c7:8d:d5:94:bf:50:b8:0a:2f:5a:81:c6:06: 3d:56:19:aa:e1:5d:1d:92:95:34:14:4b:29:1e:8a: 5e:43:0e:c2:d4:1e:76:ea:95:a2:42:cc:e8:99:ec: 3c:34:6e:6c:2a:d1:f0:52:1f:27:20:c2:f2:a0:79: 76:77:1a:6a:ef:aa:53:18:b6:cc:b6:b4:44:7a:31: c7:01:a1:c9:b4:57:06:c8:f7:e5:63:4a:a3:da:92: c4:1b:1b:4c:e7:7c:00:eb:e1:a6:d7:d3:bc:46:23: 20:23:5c:5a:30:2a:bf:ff:3e:b6:f1:81:6d:fc:f5: a7:f5:90:82:9a:69:d1:34:a0:24:f9:7b:80:1e:95: 97:67:a0:04:97:c5:0e:d2:95:77:71:ab:6c:79:ce: d3:e5:f2:dc:13:d7:a2:48:ae:fc:75:ec:5b:48:35: 7a:3e:e2:cb:f5:f3:21:b4:39:c4:f7:ea:ab:66:b8: b8:0e:d1:ed:d2:51:6a:05:9d:ae:a6:51:f0:18:02: 11:67:6b:57:31:5c:e5:43:b0:5a:89:15:42:bf:2c: 3e:34:a5:88:1e:5a:59:d3:f0:16:35:47:1f:39:1f: 58:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:30:9F:60:75:7D:4C:5A:64:3B:91:5A:40:08:AF:14:33:D8:96:C2 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:0f:c4:f7:79:1e:65:58:f8:23:d2:fc:2f:be:2b:d3:32:70: c4:6a:14:49:93:d7:48:dc:0b:71:ce:77:3d:57:20:5d:0b:84: 4e:dd:75:ff:02:10:a6:4c:6e:cd:5d:63:1c:89:78:c2:1a:cf: d3:5f:32:e0:0b:a7:f7:22:90:5b:68:27:47:dc:b9:7c:56:77: 8c:aa:0d:e3:d2:26:94:7c:9e:43:af:9b:bd:ab:9a:1c:35:d0: 25:a5:c7:6e:87:24:7d:61:37:7e:9f:f4:df:17:9d:d9:86:0e: a4:8f:0f:9b:d3:7d:43:1e:31:f7:d9:28:9f:9e:0c:62:11:e7: 29:5b:be:ed:c0:7f:4d:8f:4d:04:94:ea:da:9a:ea:60:70:a8: 5a:89:69:50:da:84:9d:eb:a8:d3:30:2b:e9:c9:70:c2:73:93: 2a:24:d0:b9:7b:b9:42:a5:a2:38:d5:5d:65:a4:6e:b0:31:5e: b2:9b:88:e1:82:56:19:15:a2:14:29:1e:a3:b9:2b:1b:f5:31: 6b:af:04:01:9a:b5:6c:9f:e5:0a:a0:dc:f3:e2:99:6a:d3:c0: 59:ac:54:f8:1b:b9:08:f8:3d:33:40:a9:22:ab:fd:c0:d8:ab: bc:79:6b:97:84:85:47:b0:92:bb:7c:b6:6a:1a:d7:45:c2:d3: 7f:62:aa:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwODcxMTAvBgNVBAUTKDg1MTAwRTVBMUZCQUU1RkUxQTY1Q0JGMTU3MzQxMzBB OEU1NDFCQjIwHhcNMjYwNTExMDc0OTM0WhcNMjYwNTE4MDc0OTM0WjAYMRYwFAYD VQQDEw02YTAxOGEwZS04ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwO39mdsNOfxO7Ozh1XZ48g7w16zbExmeN6Xt/CSc/MeN1ZS/ULgKL1qBxgY9 Vhmq4V0dkpU0FEspHopeQw7C1B526pWiQszomew8NG5sKtHwUh8nIMLyoHl2dxpq 76pTGLbMtrREejHHAaHJtFcGyPflY0qj2pLEGxtM53wA6+Gm19O8RiMgI1xaMCq/ /z628YFt/PWn9ZCCmmnRNKAk+XuAHpWXZ6AEl8UO0pV3catsec7T5fLcE9eiSK78 dexbSDV6PuLL9fMhtDnE9+qrZri4DtHt0lFqBZ2uplHwGAIRZ2tXMVzlQ7BaiRVC vyw+NKWIHlpZ0/AWNUcfOR9YtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBown2B1 fUxaZDuRWkAIrxQz2JbCMB8GA1UdIwQYMBaAFIUQDlofuuX+GmXL8Vc0EwqOVBuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA4Ny80ODg4MzEzMjhF QUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVmNGFaY3Z4VnpRVENvNVVH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA4Ny80ODg4MzEzMjhFQUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVm NGFaY3Z4VnpRVENvNVVHN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsQ/E93keZVj4I9L8L74r0zJwxGoUSZPXSNwLcc53PVcgXQuETt11/wIQpkxu zV1jHIl4whrP018y4Aun9yKQW2gnR9y5fFZ3jKoN49ImlHyeQ6+bvauaHDXQJaXH bockfWE3fp/03xed2YYOpI8Pm9N9Qx4x99kon54MYhHnKVu+7cB/TY9NBJTq2prq YHCoWolpUNqEneuo0zAr6clwwnOTKiTQuXu5QqWiONVdZaRusDFespuI4YJWGRWi FCkeo7krG/Uxa68EAZq1bJ/lCqDc8+KZatPAWaxU+Bu5CPg9M0CpIqv9wNirvHlr l4SFR7CSu3y2ahrXRcLTf2KqMw== -----END CERTIFICATE-----Generated at Wed May 13 06:44:50 2026 by rpki-client