$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft File: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft (raw, json) Hash identifier: 32MKiz9fubj8bxzDEpiXHn2KLjpMUpwIIElZpmDRIFM= Subject key identifier: 87:DE:42:C0:E6:8F:84:9D:1C:60:87:EF:64:54:48:A7:13:00:FA:60 Authority key identifier: E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 Certificate issuer: /CN=A91B7F47/serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Certificate serial: 0E56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft Manifest number: 0E33 Signing time: Tue 12 May 2026 17:51:35 +0000 Manifest this update: Tue 12 May 2026 17:51:34 +0000 Manifest next update: Tue 19 May 2026 17:51:34 +0000 Files and hashes: 1: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl (hash: j0zLMSkySGeWC15NeOHxsws95FRkFf+JDCNyLBUdcQ0=) 2: A791AF14CF8211F0AAF9A481C4F9AE02.roa (hash: qBZYKamMj/oDU4E6eK9pTMccppq/DCgF8vxu2spcuiw=) 3: 8B41351885EB11F0B665685EC4F9AE02.roa (hash: nJEq5dcjdbygkdzbWZ20NZb/kFcLm8+8wcWhp21gyU8=) 4: 3E174B92CF8311F0BE74A724C4F9AE02.roa (hash: GBvJaOYF1545b8b+gOGrGQUjqqr8+5hiMjlmvxSFrPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3670 (0xe56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7F47, serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Validity Not Before: May 12 17:51:34 2026 GMT Not After : May 19 17:51:34 2026 GMT Subject: CN=6a0368a6-0edb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:32:a7:a0:80:79:d7:31:ca:8d:fe:11:82:58: ed:22:83:b0:44:53:df:53:d6:65:e0:36:fe:6d:62: d0:f1:b3:d7:27:af:68:52:e9:3d:ef:9c:2a:85:4f: b8:c7:f6:51:a6:b4:f1:5c:84:61:fd:8d:6c:7f:fc: 8f:43:67:7f:b1:58:71:28:4d:86:d8:ae:84:10:ed: 4e:f6:65:ee:03:b3:85:b1:e9:7a:f8:49:c6:d4:39: 63:96:a8:90:ec:40:a2:dc:92:36:d4:a6:fe:d4:e3: 32:7d:9e:42:b6:92:84:19:89:26:9e:5d:fe:54:38: 9f:d3:4a:15:61:ef:d9:60:20:e8:7b:9c:e1:26:72: ae:23:e1:b0:65:10:f8:0e:2b:d7:cb:64:56:c3:40: 2b:77:cd:a0:0e:85:f3:4e:99:f7:73:96:3d:48:ae: 87:fa:a3:d9:5f:d7:a8:5a:28:cb:eb:68:34:88:f3: b1:f5:fd:90:58:0f:54:b0:3b:9c:cd:9c:87:ca:1c: 27:af:03:18:da:e1:64:01:25:12:b0:a0:43:5b:ee: da:d1:f5:b8:0a:dc:7f:dd:f5:78:7b:d6:de:3c:07: 53:12:fc:e7:70:d9:ed:de:01:b8:11:d8:fb:ab:c6: ba:37:b7:ba:a9:3b:fd:6e:cb:83:3c:a2:c4:24:3f: d9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DE:42:C0:E6:8F:84:9D:1C:60:87:EF:64:54:48:A7:13:00:FA:60 X509v3 Authority Key Identifier: keyid:E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:11:78:f8:29:2e:d5:80:2d:c3:f0:3a:f7:c9:1e:0c:a4:ce: 24:87:73:c5:53:8f:70:9f:70:0d:9c:e5:31:80:db:29:d4:6d: a5:d4:06:4a:d0:60:06:c6:ba:78:eb:ea:73:bf:82:1d:ae:fa: fd:fa:93:7d:53:3d:df:f6:47:ba:bc:2f:5f:a6:98:6a:15:55: fe:a1:87:71:6a:05:03:47:dd:dc:de:47:2e:c1:2c:cd:da:ca: f3:06:e3:a9:c3:ca:b5:3f:7c:dd:de:f0:49:45:fb:43:6e:83: 90:7f:cc:1b:45:5c:fc:77:39:3e:4d:a1:d7:81:d1:c2:e7:e3: b2:9a:a4:07:39:d2:bd:9c:d6:6c:d6:b9:1f:8d:6b:5c:dc:70: 8f:d4:73:9b:26:e9:54:b8:ab:95:36:95:74:fb:6d:1c:2a:7d: 29:68:c9:da:2e:ba:18:4f:e2:c4:6e:5f:20:e7:aa:e2:4b:a5: be:cb:3a:90:21:c5:cb:de:06:af:d7:49:f4:83:68:13:eb:a9: 64:e1:f0:06:e6:ca:4c:9d:a8:44:ca:e2:15:e4:10:b3:bd:bc: 6f:1d:6b:fe:c2:7e:68:37:6d:fb:91:76:e3:f8:59:76:89:26: 3b:b7:b0:ab:23:6e:82:93:e4:3b:cc:98:d3:c7:36:ca:ee:c8: dd:e1:93:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdGNDcxMTAvBgNVBAUTKEUzMEE0Q0RERjZDMjY5QUNCQTM5Q0E1OEFBOTU5MkQ4 OTg2NDAxRjQwHhcNMjYwNTEyMTc1MTM0WhcNMjYwNTE5MTc1MTM0WjAYMRYwFAYD VQQDEw02YTAzNjhhNi0wZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTKnoIB51zHKjf4RgljtIoOwRFPfU9Zl4Db+bWLQ8bPXJ69oUuk975wqhU+4 x/ZRprTxXIRh/Y1sf/yPQ2d/sVhxKE2G2K6EEO1O9mXuA7OFsel6+EnG1DljlqiQ 7ECi3JI21Kb+1OMyfZ5CtpKEGYkmnl3+VDif00oVYe/ZYCDoe5zhJnKuI+GwZRD4 DivXy2RWw0Ard82gDoXzTpn3c5Y9SK6H+qPZX9eoWijL62g0iPOx9f2QWA9UsDuc zZyHyhwnrwMY2uFkASUSsKBDW+7a0fW4Ctx/3fV4e9bePAdTEvzncNnt3gG4Edj7 q8a6N7e6qTv9bsuDPKLEJD/Z6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIfeQsDm j4SdHGCH72RUSKcTAPpgMB8GA1UdIwQYMBaAFOMKTN32wmmsujnKWKqVktiYZAH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0Y0Ny8zMzBBMDA4Q0NF NTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2FheTZPY3BZcXBXUzJKaGtB ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR3cE0zZmJDYWF5Nk9jcFlxcFdTMkpoa0FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0Y0Ny8zMzBBMDA4Q0NFNTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2Fh eTZPY3BZcXBXUzJKaGtBZlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOhF4+Cku1YAtw/A698keDKTOJIdzxVOPcJ9wDZzlMYDbKdRtpdQGStBgBsa6 eOvqc7+CHa76/fqTfVM93/ZHurwvX6aYahVV/qGHcWoFA0fd3N5HLsEszdrK8wbj qcPKtT983d7wSUX7Q26DkH/MG0Vc/Hc5Pk2h14HRwufjspqkBznSvZzWbNa5H41r XNxwj9RzmybpVLirlTaVdPttHCp9KWjJ2i66GE/ixG5fIOeq4kulvss6kCHFy94G r9dJ9INoE+upZOHwBubKTJ2oRMriFeQQs728bx1r/sJ+aDdt+5F24/hZdokmO7ew qyNugpPkO8yY08c2yu7I3eGT5Q== -----END CERTIFICATE-----Generated at Wed May 13 07:34:15 2026 by rpki-client