$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: VhahBEyXBhil9Eae+LCisheforD7CYFsR8lDrCyP0ss= Subject key identifier: 43:EB:51:74:C1:A1:37:FD:70:5B:4E:CA:70:35:6B:3E:83:A4:DE:C2 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 091A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08FA Signing time: Tue 12 May 2026 20:25:55 +0000 Manifest this update: Tue 12 May 2026 20:25:54 +0000 Manifest next update: Tue 19 May 2026 20:25:54 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: fanqRMji0l8lYCnBDE9a4hyDsQddreDzwbhgdKnrADE=) 2: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: 30DNpUpUJwy2It5xAnDm6pl6G00ZZjWgrPOcvF+5H9w=) 3: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: gl38JCfINuQj5r+ArpGOl2htLCM9Mgwqo9xw/lh130Q=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Vl3ljhabWGTlG6GqBHRNZlqYXeuSFP4BoWLikf0UCmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2330 (0x91a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 12 20:25:54 2026 GMT Not After : May 19 20:25:54 2026 GMT Subject: CN=6a038cd2-ad31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f2:ba:53:a7:0a:f1:33:e8:74:40:31:9a:f8: 6b:07:a9:99:71:23:f7:69:92:e0:ec:c5:1a:a1:dd: f5:c5:49:73:f4:2d:3f:ea:88:85:4c:a7:50:f1:72: 4e:70:68:fe:5e:c6:75:c5:42:9f:04:25:9f:a5:77: 2f:2b:b6:c8:ec:73:cc:94:09:3e:10:77:f2:f4:92: 9d:ea:37:03:07:f3:e8:70:0f:89:12:4b:c6:17:4c: 50:9b:b5:9b:f2:6a:a4:ab:22:a7:d6:02:ac:a6:2d: c4:68:a4:49:59:8e:fd:de:7d:31:e5:95:91:f3:b7: f4:0e:83:32:3e:58:55:42:f2:8f:57:14:46:74:ac: d7:72:f1:0c:bc:38:3a:6a:08:ff:e8:b3:dc:d6:1c: f7:04:c4:69:5e:9e:12:b1:4e:e0:47:c6:e5:ad:76: 3f:1c:1c:61:e0:cb:a2:13:4f:b1:6c:76:a0:9b:ef: 45:25:2a:5e:b9:03:3c:e3:ac:a0:1c:bd:e2:77:c7: f2:2d:52:09:5a:72:35:8f:73:70:c0:3c:0e:63:24: 8d:7f:69:3e:0c:5d:64:1a:84:44:25:58:3e:ab:10: 6e:13:a3:11:9e:2a:31:ac:7a:b3:32:d4:a3:2c:0d: 76:6f:f8:c3:88:18:c2:24:49:ca:16:63:31:83:54: 0b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:EB:51:74:C1:A1:37:FD:70:5B:4E:CA:70:35:6B:3E:83:A4:DE:C2 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:48:de:2c:c9:d6:9b:dc:ed:8e:55:86:3f:dc:fd:c5:6b:d4: 5b:db:02:99:78:ed:40:c1:a5:18:87:24:8f:88:93:8c:46:20: 1a:2c:e9:8b:46:4c:49:db:c8:9b:0f:b3:d0:1e:de:d8:18:fa: eb:e1:74:fd:45:23:f9:8a:94:30:9d:11:fe:db:c8:20:51:e8: 7e:41:6a:f6:f1:95:1b:a7:48:13:9c:85:af:81:0d:5d:5c:74: 72:22:73:37:37:be:19:a1:4b:78:fa:bf:2b:85:fb:67:74:39: 2c:66:6b:41:8b:51:31:05:bd:50:f1:ca:03:9b:c6:3f:9c:1e: 1c:94:11:1d:02:7f:fd:79:6b:7d:24:bb:d2:a6:71:a1:84:fe: 5e:55:1e:f8:ea:e6:d6:01:33:bf:43:04:72:56:bb:a0:b0:b6: 13:ec:ec:1a:c9:f4:5c:0c:0f:01:cd:4b:4b:97:04:c8:f3:9f: 7c:d1:11:44:57:10:cf:25:dc:eb:c2:98:96:b0:09:aa:1c:af: 6b:49:c7:e4:12:b2:90:27:a2:a3:b1:9c:db:14:cc:f0:85:4f: 0b:9d:05:16:56:91:9a:ae:47:e9:a0:80:93:93:62:f2:bd:65: ef:af:d4:8f:0c:ab:d9:c2:3e:59:d9:ea:8f:90:0c:87:c7:11: 6d:7a:54:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwNTEyMjAyNTU0WhcNMjYwNTE5MjAyNTU0WjAYMRYwFAYD VQQDEw02YTAzOGNkMi1hZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfK6U6cK8TPodEAxmvhrB6mZcSP3aZLg7MUaod31xUlz9C0/6oiFTKdQ8XJO cGj+XsZ1xUKfBCWfpXcvK7bI7HPMlAk+EHfy9JKd6jcDB/PocA+JEkvGF0xQm7Wb 8mqkqyKn1gKspi3EaKRJWY793n0x5ZWR87f0DoMyPlhVQvKPVxRGdKzXcvEMvDg6 agj/6LPc1hz3BMRpXp4SsU7gR8blrXY/HBxh4MuiE0+xbHagm+9FJSpeuQM846yg HL3id8fyLVIJWnI1j3NwwDwOYySNf2k+DF1kGoREJVg+qxBuE6MRnioxrHqzMtSj LA12b/jDiBjCJEnKFmMxg1QLPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPrUXTB oTf9cFtOynA1az6DpN7CMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd0jeLMnWm9ztjlWGP9z9xWvUW9sCmXjtQMGlGIckj4iTjEYgGizpi0ZMSdvI mw+z0B7e2Bj66+F0/UUj+YqUMJ0R/tvIIFHofkFq9vGVG6dIE5yFr4ENXVx0ciJz Nze+GaFLePq/K4X7Z3Q5LGZrQYtRMQW9UPHKA5vGP5weHJQRHQJ//XlrfSS70qZx oYT+XlUe+Orm1gEzv0MEcla7oLC2E+zsGsn0XAwPAc1LS5cEyPOffNERRFcQzyXc 68KYlrAJqhyva0nH5BKykCeio7Gc2xTM8IVPC50FFlaRmq5H6aCAk5Ni8r1l76/U jwyr2cI+Wdnqj5AMh8cRbXpUpw== -----END CERTIFICATE-----Generated at Wed May 13 04:10:19 2026 by rpki-client