$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: OI97+qMw3xF1fL40SHiYEJSiMvmREkmErQrLiEoZqx0= Subject key identifier: 66:1C:99:F3:05:4B:07:7C:0B:0B:0F:AC:FB:DB:4E:46:82:2F:C7:B7 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: C2 Signing time: Mon 11 May 2026 07:03:28 +0000 Manifest this update: Mon 11 May 2026 07:03:27 +0000 Manifest next update: Mon 18 May 2026 07:03:27 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: zrlNxIEDHSiwaCIyFzMsoRX+kF5J1Juv7ZFQ0QZJuew=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: May 11 07:03:27 2026 GMT Not After : May 18 07:03:27 2026 GMT Subject: CN=6a017f40-fef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:3b:00:9c:28:54:c8:d8:d8:c4:b6:ab:bd: f7:97:75:1a:94:5f:01:ff:59:35:42:c3:95:4b:ec: fb:ec:cd:4c:14:fb:a5:1a:4e:c8:02:1f:1c:23:46: ff:e3:bc:a0:54:6e:ef:0a:0b:0e:ce:7a:ec:55:3b: c3:98:f8:d5:50:59:9d:79:60:b2:bc:6b:40:bc:66: cf:49:7b:22:72:a3:09:59:9e:ca:41:ff:19:89:06: f8:23:4a:a9:7f:43:76:75:52:fd:28:0f:50:5f:3d: 5c:6a:1e:34:00:bb:24:f7:c2:e9:4e:90:c1:ab:ed: 06:d0:b6:09:96:bc:ff:b5:39:3c:2d:42:a5:58:b4: dd:fa:cc:8d:6b:54:4d:ee:54:30:4f:4c:13:cb:94: e4:6f:a5:93:46:26:06:83:f7:38:3a:3e:73:48:8c: b6:a0:26:c8:a9:02:24:a9:94:c5:a8:04:ae:35:91: ea:e9:89:68:81:2b:13:8b:aa:16:3e:79:d6:9a:a7: 94:c5:1b:65:8d:42:5c:43:e2:09:13:eb:26:81:ae: 34:66:7c:75:0c:72:4d:dc:21:1f:92:ad:9d:f0:c8: 29:dc:48:5b:90:39:b4:05:26:d1:24:67:39:ee:dc: ed:2f:e5:5b:3b:75:a2:16:8a:ec:92:73:7e:1d:df: fb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1C:99:F3:05:4B:07:7C:0B:0B:0F:AC:FB:DB:4E:46:82:2F:C7:B7 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:ae:66:a1:ba:55:2b:55:70:53:a1:9b:45:98:f7:32:ed:0e: cf:f3:09:c0:84:37:35:10:8f:c4:62:17:e4:90:19:27:22:c0: 38:30:41:58:31:fc:70:fc:cc:92:ec:21:3c:9d:f0:e3:63:a1: 2f:65:02:50:e5:0e:e0:42:85:aa:ac:8b:61:72:73:af:b2:43: 0c:73:0c:15:19:b5:3f:b5:00:78:9b:9e:33:f8:04:46:40:b2: 31:f4:7c:46:d5:a8:c5:16:d2:68:eb:2e:84:b2:a9:77:a2:68: c6:19:34:bb:ee:03:7f:89:91:67:7e:47:ee:48:71:ff:30:7c: 0f:aa:e2:0c:9d:8e:12:87:6a:1c:cb:cf:dd:6a:69:d7:fd:86: 15:40:8f:5f:47:5c:ca:3d:2d:40:3e:73:2c:b3:68:c7:1b:45: e3:c1:2b:c8:d1:f9:26:80:3d:01:66:b9:51:e2:0a:a0:35:a4: d8:81:59:b4:d8:94:a1:51:84:2d:b1:0d:d6:50:6d:8e:c6:f9: 0a:b9:c7:4d:7d:b3:2e:e0:d3:83:1f:57:cb:fd:d3:fb:cb:19: f5:7f:2c:65:e7:80:db:79:bb:f9:df:08:25:e1:88:47:b6:b0: b4:a5:ff:33:67:8f:6e:86:77:d8:64:b2:cc:06:91:dd:57:8d: 3d:8c:77:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwNTExMDcwMzI3WhcNMjYwNTE4MDcwMzI3WjAYMRYwFAYD VQQDEw02YTAxN2Y0MC1mZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOs7AJwoVMjY2MS2q733l3UalF8B/1k1QsOVS+z77M1MFPulGk7IAh8cI0b/ 47ygVG7vCgsOznrsVTvDmPjVUFmdeWCyvGtAvGbPSXsicqMJWZ7KQf8ZiQb4I0qp f0N2dVL9KA9QXz1cah40ALsk98LpTpDBq+0G0LYJlrz/tTk8LUKlWLTd+syNa1RN 7lQwT0wTy5Tkb6WTRiYGg/c4Oj5zSIy2oCbIqQIkqZTFqASuNZHq6YlogSsTi6oW PnnWmqeUxRtljUJcQ+IJE+smga40Znx1DHJN3CEfkq2d8Mgp3EhbkDm0BSbRJGc5 7tztL+VbO3WiForsknN+Hd/77QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYcmfMF Swd8CwsPrPvbTkaCL8e3MB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAla5mobpVK1VwU6GbRZj3Mu0Oz/MJwIQ3NRCPxGIX5JAZJyLAODBBWDH8cPzM kuwhPJ3w42OhL2UCUOUO4EKFqqyLYXJzr7JDDHMMFRm1P7UAeJueM/gERkCyMfR8 RtWoxRbSaOsuhLKpd6Joxhk0u+4Df4mRZ35H7khx/zB8D6riDJ2OEodqHMvP3Wpp 1/2GFUCPX0dcyj0tQD5zLLNoxxtF48EryNH5JoA9AWa5UeIKoDWk2IFZtNiUoVGE LbEN1lBtjsb5CrnHTX2zLuDTgx9Xy/3T+8sZ9X8sZeeA23m7+d8IJeGIR7awtKX/ M2ePboZ32GSyzAaR3VeNPYx37g== -----END CERTIFICATE-----Generated at Wed May 13 04:29:48 2026 by rpki-client