$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: vDDz22AOAu3yVU79iY21Q3Dh3WQ+dSWmbtxIFaYyY/0= Subject key identifier: 29:54:83:44:8F:C5:37:74:16:37:93:20:B7:81:04:3D:C9:BD:97:5B Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 0410 Signing time: Wed 13 May 2026 00:31:24 +0000 Manifest this update: Wed 13 May 2026 00:31:23 +0000 Manifest next update: Wed 20 May 2026 00:31:23 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: fDVHW2cVQ1jsfaq3rSCbxp4pvv+tPz8m1Fale50tKEE=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: E0te7z7859at34MRFLNavnFyL+a8lv5dig7hn7bo8Ag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: May 13 00:31:23 2026 GMT Not After : May 20 00:31:23 2026 GMT Subject: CN=6a03c65b-e934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b2:aa:9b:74:09:cb:55:e2:bc:00:50:ac:18: d2:76:c6:5c:20:03:d4:b0:16:f0:cb:de:44:3d:b1: 75:e2:9d:ce:44:c4:c4:7f:6f:cf:4c:de:ee:42:a5: 14:a2:96:90:f6:ae:b7:8c:1c:aa:5c:f2:0a:12:f7: a0:62:36:05:87:87:ba:96:89:c3:9e:da:69:22:d4: 0a:d9:2f:95:be:8a:87:dd:72:c4:8a:3c:37:b4:db: af:63:29:a6:8c:d0:0d:60:e0:35:4c:6b:22:88:b8: 5b:b0:c7:60:79:5a:43:27:0d:4f:65:ef:28:d6:6c: c9:da:a6:14:4d:6d:ff:35:6b:c4:3c:a0:19:c4:3f: ee:37:bf:8c:8b:53:ed:65:0d:ef:5f:f0:86:d8:df: e7:7e:2f:bf:1d:cf:93:fb:0f:d3:a5:90:f7:98:d1: a4:c3:29:63:2c:4b:df:1f:05:0e:2b:ea:29:bd:37: d1:7b:77:a0:09:90:c5:71:0c:63:d0:8e:89:32:c8: ad:ab:17:85:37:c9:7e:de:fa:ed:f1:ea:27:36:30: 78:43:6a:86:35:e6:03:f4:ae:e5:ac:8f:7b:ad:c1: 85:c7:7f:07:94:11:93:04:fa:dc:8e:6d:16:d6:77: 06:17:1d:85:5f:d8:dc:6b:ab:f6:30:cd:1b:d5:35: 72:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:54:83:44:8F:C5:37:74:16:37:93:20:B7:81:04:3D:C9:BD:97:5B X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:52:3e:21:5d:83:ac:cc:83:c7:df:cb:45:f0:94:90:6a:bb: 87:fb:57:d4:aa:68:d5:9e:6e:50:c0:44:74:46:d6:e0:40:ad: 90:2a:32:c6:32:44:8c:f3:e9:fe:99:a2:f7:bd:75:dd:c9:16: 73:d7:5e:46:b4:08:78:3c:c5:ad:45:ca:ac:11:34:ab:c0:36: 05:76:ab:9c:8c:f9:a1:28:c9:44:a8:77:25:dd:88:e6:a8:3f: a3:9f:69:cc:27:b7:97:36:df:d2:9e:09:87:06:c8:ae:2a:9d: 7c:c8:43:a4:ed:df:14:6a:f9:25:dc:6c:97:1c:92:a6:ea:5f: 37:ce:60:53:59:5c:e4:80:8c:dd:a4:96:95:b2:41:e5:e7:10: f9:f7:66:62:a3:6a:0e:c8:7d:d1:0b:ea:82:d2:b4:95:da:22: 53:d8:e9:20:8f:54:91:5e:b7:e1:13:3a:4c:95:0a:ee:58:28: 1d:52:17:a1:0e:eb:3d:7c:44:2e:0a:e9:c4:a9:35:34:59:56: 18:eb:9e:40:08:f3:90:7c:cc:55:ec:1e:12:66:ef:89:d3:f0: 65:ed:b3:4a:b6:c1:35:55:82:ab:6a:9e:7d:d0:39:79:5b:1e: e5:e8:c6:ce:04:e9:53:5a:9b:8e:6f:7e:89:84:92:2e:b8:30: 4b:74:a7:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjYwNTEzMDAzMTIzWhcNMjYwNTIwMDAzMTIzWjAYMRYwFAYD VQQDEw02YTAzYzY1Yi1lOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbKqm3QJy1XivABQrBjSdsZcIAPUsBbwy95EPbF14p3ORMTEf2/PTN7uQqUU opaQ9q63jByqXPIKEvegYjYFh4e6lonDntppItQK2S+VvoqH3XLEijw3tNuvYymm jNANYOA1TGsiiLhbsMdgeVpDJw1PZe8o1mzJ2qYUTW3/NWvEPKAZxD/uN7+Mi1Pt ZQ3vX/CG2N/nfi+/Hc+T+w/TpZD3mNGkwyljLEvfHwUOK+opvTfRe3egCZDFcQxj 0I6JMsitqxeFN8l+3vrt8eonNjB4Q2qGNeYD9K7lrI97rcGFx38HlBGTBPrcjm0W 1ncGFx2FX9jca6v2MM0b1TVyqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFClUg0SP xTd0FjeTILeBBD3JvZdbMB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACFI+IV2DrMyDx9/LRfCUkGq7h/tX1Kpo1Z5uUMBEdEbW4ECtkCoyxjJEjPPp /pmi97113ckWc9deRrQIeDzFrUXKrBE0q8A2BXarnIz5oSjJRKh3Jd2I5qg/o59p zCe3lzbf0p4JhwbIriqdfMhDpO3fFGr5JdxslxySpupfN85gU1lc5ICM3aSWlbJB 5ecQ+fdmYqNqDsh90QvqgtK0ldoiU9jpII9UkV634RM6TJUK7lgoHVIXoQ7rPXxE LgrpxKk1NFlWGOueQAjzkHzMVeweEmbvidPwZe2zSrbBNVWCq2qefdA5eVse5ejG zgTpU1qbjm9+iYSSLrgwS3SnJA== -----END CERTIFICATE-----Generated at Wed May 13 11:13:40 2026 by rpki-client