$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: Z211d/WkfZWu1d7wFrDWyEF0P7kiGYGjQdEn61wp7Cg= Subject key identifier: 0D:15:99:75:67:99:79:66:78:C1:20:1B:51:26:25:A1:D0:2E:97:D0 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0CD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0CC4 Signing time: Tue 12 May 2026 18:30:13 +0000 Manifest this update: Tue 12 May 2026 18:30:13 +0000 Manifest next update: Tue 19 May 2026 18:30:13 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: NuoqU5KRCKfKYD+EQbPCtUf2N3gDxLPzPB5DV3icul4=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: P3cA4Ey/V8rl3zAePZZSJQ01VWq57x0zCe1ptcZIm4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: May 12 18:30:13 2026 GMT Not After : May 19 18:30:13 2026 GMT Subject: CN=6a0371b5-05bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:49:46:87:ba:ee:c4:39:21:6f:4e:a7:cc:a3: 56:b3:88:32:02:35:04:8c:7f:bc:c2:54:54:47:c5: d3:08:46:69:77:e0:e4:e9:58:6a:2c:8e:e7:d1:87: ad:8b:5e:f8:3a:1c:51:f2:ff:d0:3c:73:42:cb:7b: 81:a9:b2:7f:ab:e9:7e:f2:28:1e:f4:c6:86:55:f2: 87:27:b2:f9:68:bd:9b:bb:d0:3e:08:33:44:c1:64: 09:15:ca:f9:84:95:63:aa:7e:48:fe:7b:f2:03:2f: 81:4e:b1:99:01:9b:84:47:9e:5d:1d:70:4b:39:7d: 0a:c8:4b:ed:f5:6b:fd:26:a0:a8:60:dd:dd:cc:f7: 23:00:8e:97:4b:31:12:62:9f:bc:65:d4:1d:c5:7f: a5:72:fb:fc:60:30:ef:6d:4e:5f:48:dd:c0:2c:2b: 1d:b3:81:b0:06:60:0c:79:b5:89:4a:fd:a6:8f:c5: fa:65:14:4c:88:2e:25:fb:1b:bb:b8:ce:17:bb:b3: f9:e9:9b:73:d0:69:4c:46:5c:6f:ae:08:bd:e9:61: 78:38:91:c0:ac:1b:fc:cf:6b:8a:c6:07:5a:01:d7: 77:85:38:05:27:af:80:4a:21:44:42:ab:48:a6:c4: be:4c:99:72:47:70:77:85:81:84:84:ef:06:2b:21: 23:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:15:99:75:67:99:79:66:78:C1:20:1B:51:26:25:A1:D0:2E:97:D0 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:0f:2d:79:95:cc:5c:66:11:3a:99:bd:ee:d5:9f:f4:93:01: 15:c1:0c:48:7a:be:d6:c8:51:31:b7:de:e2:db:78:3d:1d:06: 02:2a:ee:3e:f1:74:08:50:89:65:de:87:0c:81:96:66:4f:f5: 8b:66:3e:57:2f:07:de:57:f2:fe:af:ce:0c:21:b3:fd:17:f6: 46:14:e5:fc:b8:72:63:13:34:1f:16:70:f9:2c:94:b5:81:fd: 7f:d5:bb:24:f9:4e:2c:92:86:6c:80:c8:58:ac:9f:8e:c5:1c: 20:1d:96:49:fd:96:28:c9:5c:b5:46:90:9c:2d:cc:25:19:81: e0:0f:21:9c:4e:d6:b2:26:1f:e8:87:97:8f:0d:25:b6:49:48: bf:12:14:4c:cf:3f:dc:e3:8d:a6:0d:95:f0:20:c2:87:1f:66: 0f:4d:c2:e3:16:00:82:ac:b5:0f:6c:49:ad:4f:e9:65:b3:ac: e8:c5:ea:a2:c3:8c:18:90:3f:58:83:96:f6:76:91:02:81:62: a1:e5:b4:6f:95:91:76:5a:be:b2:01:37:4c:1f:16:82:4a:16: 0d:66:52:e3:ce:49:06:4e:1a:80:85:10:59:e7:e3:f2:5f:65: f0:57:ba:0f:ed:8f:e7:88:03:82:db:c6:82:fc:23:35:f0:0d: 25:18:79:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjYwNTEyMTgzMDEzWhcNMjYwNTE5MTgzMDEzWjAYMRYwFAYD VQQDEw02YTAzNzFiNS0wNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmklGh7ruxDkhb06nzKNWs4gyAjUEjH+8wlRUR8XTCEZpd+Dk6VhqLI7n0Yet i174OhxR8v/QPHNCy3uBqbJ/q+l+8ige9MaGVfKHJ7L5aL2bu9A+CDNEwWQJFcr5 hJVjqn5I/nvyAy+BTrGZAZuER55dHXBLOX0KyEvt9Wv9JqCoYN3dzPcjAI6XSzES Yp+8ZdQdxX+lcvv8YDDvbU5fSN3ALCsds4GwBmAMebWJSv2mj8X6ZRRMiC4l+xu7 uM4Xu7P56Ztz0GlMRlxvrgi96WF4OJHArBv8z2uKxgdaAdd3hTgFJ6+ASiFEQqtI psS+TJlyR3B3hYGEhO8GKyEj5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA0VmXVn mXlmeMEgG1EmJaHQLpfQMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtg8teZXMXGYROpm97tWf9JMBFcEMSHq+1shRMbfe4tt4PR0GAiruPvF0CFCJ Zd6HDIGWZk/1i2Y+Vy8H3lfy/q/ODCGz/Rf2RhTl/LhyYxM0HxZw+SyUtYH9f9W7 JPlOLJKGbIDIWKyfjsUcIB2WSf2WKMlctUaQnC3MJRmB4A8hnE7WsiYf6IeXjw0l tklIvxIUTM8/3OONpg2V8CDChx9mD03C4xYAgqy1D2xJrU/pZbOs6MXqosOMGJA/ WIOW9naRAoFioeW0b5WRdlq+sgE3TB8WgkoWDWZS485JBk4agIUQWefj8l9l8Fe6 D+2P54gDgtvGgvwjNfANJRh5nA== -----END CERTIFICATE-----Generated at Tue May 12 23:19:19 2026 by rpki-client