$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: 7feWM8VjiS9AA2fJn/qD7GuELTxuqhNVjYmIFYkmboM= Subject key identifier: 01:66:AD:A6:64:A2:24:97:08:48:FB:E0:9D:47:FD:10:29:11:96:A1 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 106E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 1043 Signing time: Tue 12 May 2026 17:26:44 +0000 Manifest this update: Tue 12 May 2026 17:26:43 +0000 Manifest next update: Tue 19 May 2026 17:26:43 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: wlByYFdlqIBqzGuJ1i1yYjgrnhyyteM7A9szFy3UbH4=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: URL1ReTticLSrWgLn6MiNA2clbnttkHn48DN8d9RREQ=) 3: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: v5H4fJJFXDpxvnkvndLnuywB0eTLMDeUHDuPRNGLC1o=) 4: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: lEGaA4sdvdJB9ZdOckx6GXw78zY9nH89g3CEg6GczLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4206 (0x106e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: May 12 17:26:43 2026 GMT Not After : May 19 17:26:43 2026 GMT Subject: CN=6a0362d4-7da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d5:f1:97:b6:52:90:85:4e:da:ea:84:fa:e8: b0:2a:e9:2b:a4:65:68:87:37:41:3e:b5:09:79:32: 14:c9:fe:56:88:ac:50:a9:73:55:ec:a3:7f:a2:d2: f7:10:31:27:5e:a2:e0:3d:5a:ba:eb:18:b0:96:97: 8b:39:e6:85:dd:f7:53:0b:12:74:83:92:4c:34:1c: 61:fe:d0:5e:5c:e6:59:d0:7e:7d:bc:fe:1c:91:f4: 57:3f:5a:b8:d7:94:fb:1b:81:e0:d7:4b:57:51:53: e2:74:56:da:1a:6a:99:0f:29:4e:78:23:21:af:fc: b6:90:5f:f3:75:bf:25:1d:2f:4f:3a:ee:5b:5f:14: 6d:f2:87:a8:71:78:47:b4:9e:a9:80:2e:5f:75:21: 8c:84:d6:42:24:44:29:7d:ed:c0:a1:66:ed:1f:91: 9f:40:b4:93:60:71:31:f4:8c:73:33:e1:d5:c4:77: 72:48:81:75:43:54:8a:3c:05:ad:27:9f:3b:8a:75: 19:ab:5b:38:aa:41:90:4c:f1:11:33:e0:ae:8a:2c: ac:90:57:73:47:0f:58:37:22:1f:cc:8f:95:90:78: a4:66:cd:a7:ad:96:5a:14:d8:b0:b5:e2:d5:74:47: 8a:02:fc:72:81:94:2f:cf:20:84:1c:eb:81:b1:9b: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:66:AD:A6:64:A2:24:97:08:48:FB:E0:9D:47:FD:10:29:11:96:A1 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:24:e3:d5:12:c4:60:3c:e3:59:f7:51:7b:e4:f2:71:75:dc: da:5c:7b:63:98:50:91:d0:12:98:f8:36:99:e6:ae:ad:f5:c3: 9e:8d:41:1d:3e:a8:3c:a6:cb:05:55:72:07:15:44:98:54:60: b8:b2:71:25:30:a7:c2:2d:72:32:51:4a:bf:21:c2:72:6e:cb: ae:14:3c:0c:95:6c:c6:19:a7:76:af:5b:02:52:24:57:79:c2: e7:ea:81:5f:d0:85:0a:34:56:c4:96:a6:97:7a:4e:38:a2:09: 3f:87:9a:42:81:79:e4:0d:c1:6c:f1:e1:ec:3b:5f:da:f9:41: 79:cd:ed:3c:c7:63:e8:9f:65:62:83:3c:d0:76:c8:1b:f2:82: 2b:3b:95:37:5c:32:ae:7e:d2:35:37:0c:4e:c4:98:27:85:c8: df:fe:4e:2a:0a:39:8d:6c:17:ec:44:4e:52:9f:87:7e:02:e6: d3:d9:fb:b1:6d:42:d3:55:de:6f:5e:52:80:58:b9:9a:fa:6a: d6:9a:9e:2c:f1:db:b5:44:24:e0:dd:0f:bc:a5:8d:9a:e7:cf: 08:08:85:bc:df:f4:9a:1c:13:e6:25:42:fd:3e:67:8f:be:4d: cf:63:0b:2d:ca:4b:03:0c:06:f7:bb:ad:c2:9d:cd:e3:84:2d: f5:61:00:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjYwNTEyMTcyNjQzWhcNMjYwNTE5MTcyNjQzWjAYMRYwFAYD VQQDEw02YTAzNjJkNC03ZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdXxl7ZSkIVO2uqE+uiwKukrpGVohzdBPrUJeTIUyf5WiKxQqXNV7KN/otL3 EDEnXqLgPVq66xiwlpeLOeaF3fdTCxJ0g5JMNBxh/tBeXOZZ0H59vP4ckfRXP1q4 15T7G4Hg10tXUVPidFbaGmqZDylOeCMhr/y2kF/zdb8lHS9POu5bXxRt8oeocXhH tJ6pgC5fdSGMhNZCJEQpfe3AoWbtH5GfQLSTYHEx9IxzM+HVxHdySIF1Q1SKPAWt J587inUZq1s4qkGQTPERM+CuiiyskFdzRw9YNyIfzI+VkHikZs2nrZZaFNiwteLV dEeKAvxygZQvzyCEHOuBsZsWwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAFmraZk oiSXCEj74J1H/RApEZahMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYCTj1RLEYDzjWfdRe+TycXXc2lx7Y5hQkdASmPg2meaurfXDno1BHT6oPKbL BVVyBxVEmFRguLJxJTCnwi1yMlFKvyHCcm7LrhQ8DJVsxhmndq9bAlIkV3nC5+qB X9CFCjRWxJaml3pOOKIJP4eaQoF55A3BbPHh7Dtf2vlBec3tPMdj6J9lYoM80HbI G/KCKzuVN1wyrn7SNTcMTsSYJ4XI3/5OKgo5jWwX7EROUp+HfgLm09n7sW1C01Xe b15SgFi5mvpq1pqeLPHbtUQk4N0PvKWNmufPCAiFvN/0mhwT5iVC/T5nj75Nz2ML LcpLAwwG97utwp3N44Qt9WEA5w== -----END CERTIFICATE-----Generated at Wed May 13 03:09:42 2026 by rpki-client