$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: gD/jdey+SYnoB8ZXzqMHYqKE1PsqIoV+nrZ0P651BnM= Subject key identifier: 5B:FD:74:95:25:C9:8F:B7:4E:89:18:5A:A4:4C:AC:C2:9F:80:18:FA Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 025D Signing time: Wed 13 May 2026 02:46:23 +0000 Manifest this update: Wed 13 May 2026 02:46:23 +0000 Manifest next update: Wed 20 May 2026 02:46:23 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: 0/uc5njkOF7F0X2eE6r7C81xbgioDQG+C58GUYZIp9Q=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: j7L99bx7Ey41ZLd+2+aMZ4wqjEnPklq5VL7HIrKdyHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2, serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: May 13 02:46:23 2026 GMT Not After : May 20 02:46:23 2026 GMT Subject: CN=6a03e5ff-96f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:15:aa:b5:3f:3c:b2:4a:cc:6f:fc:13:9b:41: ae:73:23:13:fe:a3:0a:7b:9a:d1:14:02:7a:f9:5f: 90:70:a3:5c:66:a6:1d:dd:d1:67:29:b2:a0:10:02: 20:1c:82:ef:0e:4b:29:83:ef:bb:1b:54:26:0b:51: cd:57:55:3b:32:07:09:f4:cc:47:ae:24:5b:c3:c4: a0:b1:8f:c2:64:98:74:7d:0f:4a:c8:8a:0d:41:5c: 3f:2f:d4:c6:b3:90:ee:ce:ef:31:13:77:09:27:cd: ed:55:8c:27:a1:01:b1:0d:90:90:93:29:4b:6d:44: e0:69:3f:3d:28:fe:08:56:74:d5:b9:b2:38:56:5c: ec:85:e1:e9:38:0b:ef:3a:d9:76:04:13:ad:de:8b: 74:f5:cb:88:86:1a:ef:f6:64:49:cf:b9:e1:63:6d: a6:29:1e:24:52:72:c7:ed:74:7f:95:e0:2c:ad:44: cb:0d:0b:b7:0d:36:c0:88:b2:1f:85:4f:5b:12:2e: 8a:84:a0:e2:13:68:b1:dc:a9:5c:dd:2b:bb:2c:83: 33:bd:c0:70:b9:8e:c7:b3:34:46:ef:8f:ea:a0:7e: 3f:93:c2:e6:61:82:2c:08:41:6e:6f:15:67:2b:a9: 13:c0:b9:32:4e:55:dd:6f:e4:91:fc:30:a6:46:a7: e2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FD:74:95:25:C9:8F:B7:4E:89:18:5A:A4:4C:AC:C2:9F:80:18:FA X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:02:c0:8a:4f:cc:c7:f8:b5:16:c0:18:50:e9:b1:b7:1b:ab: ca:ce:5c:bf:ff:69:77:be:e0:62:3a:83:d2:92:21:6d:f4:f8: 4e:b9:ee:ce:34:0a:ed:f1:85:5d:cc:a4:a5:d5:df:a9:1c:ac: 9d:56:1a:ac:f3:c3:c6:b7:2a:30:dd:b9:21:73:c3:09:19:3a: 18:7d:90:87:b1:3e:6f:8e:94:d5:1e:10:ba:6d:b9:e2:76:ef: 2a:32:9d:56:84:b9:17:ce:09:cd:df:91:a5:c8:4b:db:db:42: 54:bb:b9:a9:24:a1:7d:68:8f:66:42:02:01:d7:75:0b:8b:8a: 8c:c4:c4:bc:c7:1e:1c:40:fa:93:b4:ef:78:ca:8f:bd:12:eb: 1a:c6:5b:93:42:ce:cf:50:d5:13:48:c4:f8:53:1e:de:51:87: 01:f6:38:35:62:71:3f:6f:bc:fc:19:6d:02:2c:6e:cb:d3:00: 6a:3a:af:d4:4c:52:f5:bd:2e:bd:c9:a4:e0:8b:de:22:03:5e: 2a:a9:e4:3e:1e:79:62:d6:70:2b:78:a2:91:f9:24:ec:ac:72: b8:f2:66:8d:d0:06:eb:2a:ef:3e:bd:81:a8:d3:46:19:4c:48: 93:2d:69:e4:a8:02:c6:be:0f:bb:bf:3f:8c:4c:47:56:1c:fe: 11:d6:92:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjYwNTEzMDI0NjIzWhcNMjYwNTIwMDI0NjIzWjAYMRYwFAYD VQQDEw02YTAzZTVmZi05NmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAihWqtT88skrMb/wTm0GucyMT/qMKe5rRFAJ6+V+QcKNcZqYd3dFnKbKgEAIg HILvDkspg++7G1QmC1HNV1U7MgcJ9MxHriRbw8SgsY/CZJh0fQ9KyIoNQVw/L9TG s5Duzu8xE3cJJ83tVYwnoQGxDZCQkylLbUTgaT89KP4IVnTVubI4VlzsheHpOAvv Otl2BBOt3ot09cuIhhrv9mRJz7nhY22mKR4kUnLH7XR/leAsrUTLDQu3DTbAiLIf hU9bEi6KhKDiE2ix3Klc3Su7LIMzvcBwuY7HszRG74/qoH4/k8LmYYIsCEFubxVn K6kTwLkyTlXdb+SR/DCmRqfi5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFv9dJUl yY+3TokYWqRMrMKfgBj6MB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlQLAik/Mx/i1FsAYUOmxtxurys5cv/9pd77gYjqD0pIhbfT4TrnuzjQK7fGF XcykpdXfqRysnVYarPPDxrcqMN25IXPDCRk6GH2Qh7E+b46U1R4Qum254nbvKjKd VoS5F84Jzd+RpchL29tCVLu5qSShfWiPZkICAdd1C4uKjMTEvMceHED6k7TveMqP vRLrGsZbk0LOz1DVE0jE+FMe3lGHAfY4NWJxP2+8/BltAixuy9MAajqv1ExS9b0u vcmk4IveIgNeKqnkPh55YtZwK3iikfkk7KxyuPJmjdAG6yrvPr2BqNNGGUxIky1p 5KgCxr4Pu78/jExHVhz+EdaSEA== -----END CERTIFICATE-----Generated at Wed May 13 15:22:57 2026 by rpki-client