$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: cCBy4WnCsJk8+VO4cWTkSAPRA3XCbsZKGQs161coiVs= Subject key identifier: A1:9A:84:16:2C:EF:51:D8:5F:BE:D2:E9:C1:6C:7F:A3:1E:25:99:6D Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 02AB Signing time: Wed 13 May 2026 01:34:38 +0000 Manifest this update: Wed 13 May 2026 01:34:37 +0000 Manifest next update: Wed 20 May 2026 01:34:37 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: R6OoyTrmc289iXEMigcwLPuIi7I0ty6dXZGcWgOe4AA=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: /OmusQFGUMLnSfPvaQeL+Y1Ye83OM/m03GrlGqmFNO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: May 13 01:34:37 2026 GMT Not After : May 20 01:34:37 2026 GMT Subject: CN=6a03d52e-7841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1e:be:8f:ea:e3:1a:8a:78:c0:26:37:9b:a0: 5c:3d:35:6b:33:d6:87:07:66:e2:37:05:e6:f4:04: 86:a6:b8:cc:67:9e:bc:45:0d:85:dd:07:47:7c:18: 26:66:2a:4e:09:47:5b:61:51:ce:f7:93:e9:d0:67: 3c:6c:9f:96:d2:e2:8f:70:12:38:3c:0a:84:9b:ec: ea:43:65:2a:db:eb:e7:4c:85:c4:e2:a5:23:9a:d8: 56:bf:1f:34:c9:eb:4e:ca:f6:c2:fb:21:3b:eb:33: d2:8e:21:99:90:83:a4:64:ff:bb:e3:1e:c0:5b:03: 16:cb:43:81:c4:4e:3c:8d:a9:41:15:eb:29:86:f7: 02:04:6d:4d:d6:05:31:fe:6e:33:d7:e3:a5:2c:d0: 8d:56:1e:91:2e:ca:47:a4:a0:ea:19:e0:7a:c4:2e: 1b:64:68:b9:d0:a2:9f:30:27:55:f8:91:fa:13:9f: 85:df:e5:bb:ca:99:7e:05:db:ac:38:44:99:53:43: 72:2d:87:7a:8e:29:c9:89:29:04:0e:52:4a:e1:f2: e6:70:ce:b9:5e:1e:7e:3f:d2:f3:7d:a6:13:ba:4c: bb:57:dc:48:df:3e:9a:48:dc:80:23:da:c8:09:6f: 26:49:f2:b8:d6:6f:83:40:57:08:cf:7c:63:34:d2: df:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9A:84:16:2C:EF:51:D8:5F:BE:D2:E9:C1:6C:7F:A3:1E:25:99:6D X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:78:3d:d2:9d:d7:0d:a0:e4:9a:09:d3:61:6e:2b:de:ce:d2: 73:0c:d3:1b:21:47:1b:be:39:d0:c0:aa:fc:01:f0:20:e0:6c: 71:99:5d:ed:7d:79:50:d7:c1:d5:3e:4c:4b:81:d6:e6:4d:40: 8e:5e:89:4b:2e:42:73:7d:ca:f0:f2:4b:dd:57:08:8f:4e:00: 59:7f:f1:a1:32:9e:de:8b:8e:e8:e3:6a:09:74:b4:db:72:70: 0b:3a:89:4a:88:eb:e1:c1:a2:46:33:d6:ef:b6:96:39:88:e2: ce:64:1c:41:50:3e:d3:f9:b4:e9:42:dc:b2:8f:39:c3:1c:7e: 35:08:4e:91:af:c6:5f:cb:03:c4:fd:4e:80:81:2d:f0:0e:e2: 8d:cc:3a:39:d4:e1:a9:bc:01:24:17:19:38:a7:dd:7c:bb:b0: 3c:91:f4:6f:4d:55:4f:9e:b0:11:91:52:7e:77:7e:31:6f:ad: 55:77:94:2a:1a:0c:9a:0d:62:0e:6d:6d:ca:dc:e8:ae:13:7e: 04:12:bb:7c:70:a1:22:2b:d8:21:7c:63:c2:d5:0f:49:73:78: ff:68:30:fa:ca:e5:ca:97:16:a1:77:65:16:27:3f:88:ba:0c: 04:4e:16:1d:20:42:67:82:de:c9:cf:88:9f:4d:55:cb:bb:85: 1d:45:9d:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjYwNTEzMDEzNDM3WhcNMjYwNTIwMDEzNDM3WjAYMRYwFAYD VQQDEw02YTAzZDUyZS03ODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8h6+j+rjGop4wCY3m6BcPTVrM9aHB2biNwXm9ASGprjMZ568RQ2F3QdHfBgm ZipOCUdbYVHO95Pp0Gc8bJ+W0uKPcBI4PAqEm+zqQ2Uq2+vnTIXE4qUjmthWvx80 yetOyvbC+yE76zPSjiGZkIOkZP+74x7AWwMWy0OBxE48jalBFesphvcCBG1N1gUx /m4z1+OlLNCNVh6RLspHpKDqGeB6xC4bZGi50KKfMCdV+JH6E5+F3+W7ypl+Bdus OESZU0NyLYd6jinJiSkEDlJK4fLmcM65Xh5+P9LzfaYTuky7V9xI3z6aSNyAI9rI CW8mSfK41m+DQFcIz3xjNNLfHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKGahBYs 71HYX77S6cFsf6MeJZltMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARng90p3XDaDkmgnTYW4r3s7ScwzTGyFHG7450MCq/AHwIOBscZld7X15UNfB 1T5MS4HW5k1Ajl6JSy5Cc33K8PJL3VcIj04AWX/xoTKe3ouO6ONqCXS023JwCzqJ Sojr4cGiRjPW77aWOYjizmQcQVA+0/m06ULcso85wxx+NQhOka/GX8sDxP1OgIEt 8A7ijcw6OdThqbwBJBcZOKfdfLuwPJH0b01VT56wEZFSfnd+MW+tVXeUKhoMmg1i Dm1tytzorhN+BBK7fHChIivYIXxjwtUPSXN4/2gw+srlypcWoXdlFic/iLoMBE4W HSBCZ4Leyc+In01Vy7uFHUWdLA== -----END CERTIFICATE-----Generated at Wed May 13 11:06:55 2026 by rpki-client