$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: gn9oiee35ALIq1iQlo39W5I0bD+3FosWlxKy+x9O5Sk= Subject key identifier: B3:28:DE:E7:07:77:E0:F5:BF:E7:EA:CA:11:63:51:50:CB:56:BC:23 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 01A3 Signing time: Mon 11 May 2026 04:17:58 +0000 Manifest this update: Mon 11 May 2026 04:17:58 +0000 Manifest next update: Mon 18 May 2026 04:17:58 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: w96uwkNypICMGUK9iz8av+ZyfFnBE++Nxyeqxftr53A=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: 0NfBu2S0L2LiONscA+UzeiHvhaHpbiMUQODdfSCnq2U=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: SUXRmhIXH8GLfkIYFwKpvo+4haFqHO9/Ck3RW/sxHWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: May 11 04:17:58 2026 GMT Not After : May 18 04:17:58 2026 GMT Subject: CN=6a015876-c97d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b7:5e:fd:b4:58:e0:d8:2e:c8:62:ab:88:c7: d0:c5:66:a6:c4:8e:c0:e3:bb:95:94:23:3c:b6:ed: 06:17:41:78:8b:2d:d1:fb:70:13:f7:b0:51:91:b3: c9:fb:d5:dc:fa:61:0e:24:0f:00:f0:63:65:a8:11: 85:80:96:72:56:db:89:58:09:be:be:7b:d5:98:09: ca:b5:4e:4e:c6:f7:38:35:2d:0b:76:52:9a:f2:0f: e7:4a:89:41:4b:25:99:dd:3a:15:df:6a:64:5b:4e: a2:b7:f6:c1:10:1a:a4:aa:32:36:40:e7:35:ad:18: 62:78:14:90:8d:1d:fe:ef:28:06:8a:1d:c8:a8:f3: 95:80:40:d1:aa:97:df:dc:10:e1:98:08:36:9b:4b: e2:f2:e7:a9:13:ba:8a:8b:69:4b:44:d5:65:c0:23: 10:2d:72:8b:b7:5b:67:07:f0:c7:27:a3:f7:0e:de: 05:72:99:5c:a3:68:8f:d9:7b:66:d5:05:e5:03:f4: 45:09:b9:e5:7f:bf:c8:27:2f:cc:e8:b3:a6:22:30: ba:d2:17:58:8d:02:b4:c8:f4:4a:2c:f5:6f:1b:1f: 84:51:1f:f9:d7:2f:23:c3:57:48:7b:51:62:0d:41: 68:e7:af:7e:8d:f4:d6:62:dc:b5:82:d7:c7:b2:3e: 75:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:28:DE:E7:07:77:E0:F5:BF:E7:EA:CA:11:63:51:50:CB:56:BC:23 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:c4:57:46:5b:1a:9a:a3:6f:e0:a9:a1:84:db:2d:90:5d:0d: 71:cd:0b:c8:c9:ef:0c:66:4c:02:d6:a0:fd:49:0d:f2:d2:b5: 33:66:61:7b:a4:bb:75:c5:cb:28:91:ea:ac:5a:ff:a4:5e:fb: 5f:28:de:af:aa:73:90:9e:b8:e6:ef:46:53:1b:31:92:4a:a9: 9f:f7:87:1f:9f:eb:d5:29:ff:b4:a8:f4:97:51:d1:81:d7:d0: bd:ed:b4:1e:60:d0:1c:f6:e2:b5:5e:bf:f2:50:d1:23:da:dc: e2:c1:c9:47:be:a6:9a:f5:5d:c9:a1:5c:6f:f4:2c:a3:c0:ee: 7a:0a:fb:03:9e:3a:24:d4:9f:29:ed:9c:72:e0:8a:b2:aa:f2: 13:a4:1e:f4:b4:cb:11:9c:63:9e:db:cd:29:09:6d:d9:13:bc: 68:06:87:60:cb:6c:77:a0:b2:9b:45:df:35:6e:22:31:fa:42: eb:c2:a2:c1:81:a3:5a:3c:af:dc:85:0d:39:00:93:79:a4:80: 9f:6a:60:33:0f:73:57:32:8e:48:b1:70:ae:d3:9d:fa:d7:42: 30:95:ef:75:aa:52:f4:e7:e7:62:5a:d9:65:36:47:a7:f2:d6: 52:ca:9b:2e:0b:02:67:82:cd:95:a8:4e:d7:41:4b:66:2c:65: 80:bb:ed:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjYwNTExMDQxNzU4WhcNMjYwNTE4MDQxNzU4WjAYMRYwFAYD VQQDEw02YTAxNTg3Ni1jOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbde/bRY4NguyGKriMfQxWamxI7A47uVlCM8tu0GF0F4iy3R+3AT97BRkbPJ +9Xc+mEOJA8A8GNlqBGFgJZyVtuJWAm+vnvVmAnKtU5Oxvc4NS0LdlKa8g/nSolB SyWZ3ToV32pkW06it/bBEBqkqjI2QOc1rRhieBSQjR3+7ygGih3IqPOVgEDRqpff 3BDhmAg2m0vi8uepE7qKi2lLRNVlwCMQLXKLt1tnB/DHJ6P3Dt4Fcplco2iP2Xtm 1QXlA/RFCbnlf7/IJy/M6LOmIjC60hdYjQK0yPRKLPVvGx+EUR/51y8jw1dIe1Fi DUFo569+jfTWYty1gtfHsj51TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMo3ucH d+D1v+fqyhFjUVDLVrwjMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARMRXRlsamqNv4KmhhNstkF0Ncc0LyMnvDGZMAtag/UkN8tK1M2Zhe6S7dcXL KJHqrFr/pF77Xyjer6pzkJ645u9GUxsxkkqpn/eHH5/r1Sn/tKj0l1HRgdfQve20 HmDQHPbitV6/8lDRI9rc4sHJR76mmvVdyaFcb/Qso8Duegr7A546JNSfKe2ccuCK sqryE6Qe9LTLEZxjntvNKQlt2RO8aAaHYMtsd6Cym0XfNW4iMfpC68KiwYGjWjyv 3IUNOQCTeaSAn2pgMw9zVzKOSLFwrtOd+tdCMJXvdapS9OfnYlrZZTZHp/LWUsqb LgsCZ4LNlahO10FLZixlgLvtOg== -----END CERTIFICATE-----Generated at Wed May 13 04:36:32 2026 by rpki-client