$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: AAxfckInw1+Mgg4CrS3NvMpSbYW4auETV0NkRHj49H0= Subject key identifier: 7E:DB:ED:70:E0:F6:7E:E8:49:B3:96:66:13:5C:E4:3E:2B:1B:E9:55 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 0291 Signing time: Mon 11 May 2026 01:44:51 +0000 Manifest this update: Mon 11 May 2026 01:44:51 +0000 Manifest next update: Mon 18 May 2026 01:44:51 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: 5ldnzLqy0hFoHvhelwr5f9aaf++zRb7c0G1lXmY9z7g=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: WcWgzJGh0m7kjX3X0vlH0++NcJ8zb8A6kxhRMuoMb8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 01:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: May 11 01:44:51 2026 GMT Not After : May 18 01:44:51 2026 GMT Subject: CN=6a013493-430f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:73:12:da:47:9e:9e:7f:92:68:0e:44:04: 9e:42:0f:e6:ed:ce:30:a7:ac:81:db:e4:1f:51:d1: f4:2b:c0:32:35:ce:40:ae:6b:a4:21:30:de:60:f3: 26:52:11:68:8a:fe:1f:b7:7e:41:7a:74:34:ae:f0: 75:d3:e9:a2:92:48:c4:35:43:45:4f:f3:ab:86:5d: 05:de:7f:53:c6:59:4c:9e:61:40:c3:6b:e1:27:36: 0d:46:9f:05:5f:03:82:da:17:b1:42:13:bf:bb:f0: 40:50:21:1c:fb:4a:50:a4:35:c0:7f:50:53:ba:a3: d4:17:7a:d3:5a:97:4b:2d:7e:a0:df:70:35:f3:10: b1:bb:76:bc:99:1d:fc:b2:ae:97:32:7a:4f:42:20: 8f:1b:01:e2:fe:8a:d3:19:b7:8d:c0:eb:a5:be:96: a6:ee:db:11:01:b3:41:f5:21:85:55:33:73:80:66: a2:3e:34:b9:40:f8:6f:f9:22:d8:2c:2c:52:99:86: 01:b6:38:d2:a2:d2:28:be:af:2b:3b:d3:2f:78:79: 06:d4:b0:df:f5:12:71:42:ab:91:50:ef:52:66:61: e6:97:b3:14:19:68:37:cf:33:5e:0f:c3:31:38:6a: ca:3e:82:f0:ee:40:ee:8d:77:93:81:a0:2a:5b:93: 26:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DB:ED:70:E0:F6:7E:E8:49:B3:96:66:13:5C:E4:3E:2B:1B:E9:55 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:37:da:56:04:fc:e0:e9:d5:80:b4:5b:d9:be:69:45:e8:53: d1:6d:83:fc:a5:c4:71:9d:f3:2c:fa:5d:b9:f4:30:de:10:cb: d8:c7:5d:4e:01:f5:9b:d8:4a:5d:c6:09:9b:b4:05:07:f4:d0: d2:93:b2:51:eb:9e:e3:a7:1b:1c:97:f5:a8:df:a6:23:69:12: 57:f3:bb:2d:fa:b1:bb:fd:3a:75:49:34:4c:11:93:67:9c:58: 46:ee:55:ca:46:b4:7a:bb:78:f7:2c:87:f9:ab:74:50:89:a2: 77:8d:29:e9:cb:9a:b7:35:53:7b:43:bc:c9:b5:b2:f1:80:a4: 79:9f:7d:a6:81:6b:f1:00:d8:1c:0a:c8:0b:ae:85:a3:95:6f: bf:f7:9e:b6:bb:f3:b9:34:8b:0a:ee:b2:f6:8d:d3:54:78:9f: dd:65:0d:b7:a2:2a:5e:01:b8:c6:d9:99:a1:14:3c:ac:55:9b: 1c:fb:77:8f:fc:c8:43:59:49:13:db:0f:b3:0f:f0:ed:50:ab: 6b:f2:e7:15:8b:79:29:98:96:78:a7:19:bd:73:5e:1d:52:ac: 6a:1c:a7:12:b1:5e:0e:6e:ee:66:7f:d2:eb:c5:0f:ad:4b:14: f5:54:23:66:72:6d:42:a4:d5:1d:a1:82:ac:35:f6:96:0a:96: 86:24:38:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwNTExMDE0NDUxWhcNMjYwNTE4MDE0NDUxWjAYMRYwFAYD VQQDEw02YTAxMzQ5My00MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJpzEtpHnp5/kmgORASeQg/m7c4wp6yB2+QfUdH0K8AyNc5ArmukITDeYPMm UhFoiv4ft35BenQ0rvB10+mikkjENUNFT/Orhl0F3n9TxllMnmFAw2vhJzYNRp8F XwOC2hexQhO/u/BAUCEc+0pQpDXAf1BTuqPUF3rTWpdLLX6g33A18xCxu3a8mR38 sq6XMnpPQiCPGwHi/orTGbeNwOulvpam7tsRAbNB9SGFVTNzgGaiPjS5QPhv+SLY LCxSmYYBtjjSotIovq8rO9MveHkG1LDf9RJxQquRUO9SZmHml7MUGWg3zzNeD8Mx OGrKPoLw7kDujXeTgaAqW5MmNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH7b7XDg 9n7oSbOWZhNc5D4rG+lVMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAszfaVgT84OnVgLRb2b5pRehT0W2D/KXEcZ3zLPpdufQw3hDL2MddTgH1m9hK XcYJm7QFB/TQ0pOyUeue46cbHJf1qN+mI2kSV/O7Lfqxu/06dUk0TBGTZ5xYRu5V yka0ert49yyH+at0UImid40p6cuatzVTe0O8ybWy8YCkeZ99poFr8QDYHArIC66F o5Vvv/eetrvzuTSLCu6y9o3TVHif3WUNt6IqXgG4xtmZoRQ8rFWbHPt3j/zIQ1lJ E9sPsw/w7VCra/LnFYt5KZiWeKcZvXNeHVKsahynErFeDm7uZn/S68UPrUsU9VQj ZnJtQqTVHaGCrDX2lgqWhiQ4dw== -----END CERTIFICATE-----Generated at Wed May 13 01:00:01 2026 by rpki-client