$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: NqCv8DNXTyYH2HSoqh9Rn175qMKe1pOn7pjRxtLKcks= Subject key identifier: CD:E2:88:59:5B:4E:98:56:0E:84:DE:A7:A3:96:EE:1A:75:97:2D:50 Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0D60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0D27 Signing time: Tue 12 May 2026 18:13:12 +0000 Manifest this update: Tue 12 May 2026 18:13:11 +0000 Manifest next update: Tue 19 May 2026 18:13:11 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: XZTZWV+7Etocx7QD5RcnN+eMUwDUOwAscsVHZ5iFbiE=) 2: 5B47C2265D8411F0BBB04858C4F9AE02.roa (hash: 5Gz1em/PdO/Bv/3TCy3czbXrmcPfmWaq1s4vYyqJQmE=) 3: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: i9uCa/jnhktxFdjqViYAybuthNUR7oD6rAf8exjN1kI=) 4: 4DC07014161411F1B995070A2E3D8C67.roa (hash: H0Jb9txtazlliAU6uAWUSrabDYFIpiBg6C2fr7jj4yU=) 5: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: rZrIOdq3ol6lcEAYXeq2DsJFaFbmt+O1xVdoQjKA9Ic=) 6: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +v702T+ecCOjmmS56vuMtDJ6RGqPmaswdGe/Ps9k7F8=) 7: 5DB19F74332511F19B77F41AB8833773.roa (hash: eS81eZ4BRnB1S8RBeTEIim17x0/NA9jClADK3JWCczs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3424 (0xd60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: May 12 18:13:11 2026 GMT Not After : May 19 18:13:11 2026 GMT Subject: CN=6a036db7-1a2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9b:0c:3b:e7:61:fb:0c:97:8f:ce:6d:12:de: 5a:92:bc:7f:58:50:a5:0a:75:f9:a6:40:7b:f0:38: 39:a3:7f:34:48:90:18:fe:70:c6:8c:2f:26:96:25: 57:75:23:d5:0f:7d:79:d0:14:5d:2f:7a:fb:4b:eb: 2f:64:d7:4e:66:a0:78:a8:6a:d0:ba:1c:67:42:74: 65:32:34:75:ef:c0:4c:8a:7b:af:48:0d:be:a1:71: ff:30:1d:60:68:2e:ff:3e:e3:95:62:ad:c5:1d:f7: 9b:a2:e9:63:8d:7d:ad:bc:a1:b1:ea:42:2f:0b:69: ae:9f:3f:2a:01:50:3b:6e:46:5e:2b:f4:f8:43:98: f0:09:57:c2:27:90:bc:c4:13:38:07:4b:fe:76:4a: 29:d6:db:97:7f:5d:3c:10:ba:39:41:b5:36:33:ba: 48:83:e2:8d:7a:af:c2:f5:46:20:32:1f:c1:e6:ff: d3:20:9c:7e:bb:b8:82:f6:bc:c4:98:25:db:35:6d: d7:2a:14:d3:60:bb:54:0c:d8:2e:5c:31:36:46:af: e1:72:78:03:f8:a6:93:6c:54:76:a5:e6:37:c5:43: 24:24:d0:82:41:80:76:b8:70:4e:c6:0f:b2:84:af: 33:c5:e9:43:60:01:6e:68:77:5e:13:eb:8e:a6:23: f5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E2:88:59:5B:4E:98:56:0E:84:DE:A7:A3:96:EE:1A:75:97:2D:50 X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:f3:8f:7c:2a:fe:0c:84:63:16:3c:a0:0d:12:6e:a9:fb:ed: 0d:e0:9d:80:bf:90:30:17:e6:94:fe:45:49:04:c3:ef:a6:1e: 5c:c5:24:80:e3:1d:9d:c9:e7:77:27:3d:bd:3b:86:8d:77:95: e4:86:7d:0c:a6:06:11:67:28:6c:26:73:01:c6:a5:86:c9:98: 29:46:98:a1:7c:9e:8f:60:b0:5f:34:b6:a2:03:6e:22:f7:fd: d4:e6:53:f4:1a:9e:92:4c:2f:b8:f2:2e:fe:1c:20:e6:af:08: 6d:b3:69:e0:e4:f4:92:14:97:29:51:8e:a9:f6:be:70:f2:5f: 6c:a2:a2:b1:01:cc:54:e9:d2:6e:fd:8e:42:10:58:e8:05:25: 3f:fc:71:64:83:70:b7:76:d3:1a:d5:60:51:68:12:73:f9:96: 99:c1:dd:c8:2a:97:54:94:8d:61:7b:36:01:a3:ad:7d:1e:79: 6f:5b:d8:4b:17:fb:a4:c4:c3:ff:19:75:a2:e6:c6:81:04:58: 0b:e1:27:ae:b0:72:90:3a:42:d8:99:ae:a5:f5:a4:95:6a:80: f2:ea:11:7d:e8:43:5b:9f:06:cc:dc:61:01:a4:6b:1e:d1:fe: 89:f5:b6:c2:fa:dc:ce:fd:72:bf:32:0d:81:96:ab:5d:1f:bc: 1c:17:ee:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjYwNTEyMTgxMzExWhcNMjYwNTE5MTgxMzExWjAYMRYwFAYD VQQDEw02YTAzNmRiNy0xYTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJsMO+dh+wyXj85tEt5akrx/WFClCnX5pkB78Dg5o380SJAY/nDGjC8mliVX dSPVD3150BRdL3r7S+svZNdOZqB4qGrQuhxnQnRlMjR178BMinuvSA2+oXH/MB1g aC7/PuOVYq3FHfebouljjX2tvKGx6kIvC2munz8qAVA7bkZeK/T4Q5jwCVfCJ5C8 xBM4B0v+dkop1tuXf108ELo5QbU2M7pIg+KNeq/C9UYgMh/B5v/TIJx+u7iC9rzE mCXbNW3XKhTTYLtUDNguXDE2Rq/hcngD+KaTbFR2peY3xUMkJNCCQYB2uHBOxg+y hK8zxelDYAFuaHdeE+uOpiP1bQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3iiFlb TphWDoTep6OW7hp1ly1QMB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiPOPfCr+DIRjFjygDRJuqfvtDeCdgL+QMBfmlP5FSQTD76YeXMUkgOMdncnn dyc9vTuGjXeV5IZ9DKYGEWcobCZzAcalhsmYKUaYoXyej2CwXzS2ogNuIvf91OZT 9BqekkwvuPIu/hwg5q8IbbNp4OT0khSXKVGOqfa+cPJfbKKisQHMVOnSbv2OQhBY 6AUlP/xxZINwt3bTGtVgUWgSc/mWmcHdyCqXVJSNYXs2AaOtfR55b1vYSxf7pMTD /xl1oubGgQRYC+EnrrBykDpC2JmupfWklWqA8uoRfehDW58GzNxhAaRrHtH+ifW2 wvrczv1yvzINgZarXR+8HBfu0w== -----END CERTIFICATE-----Generated at Wed May 13 11:23:32 2026 by rpki-client