$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: ErwpXVVwNbqJqCYakARGotFOLjnOC/mj/vColwy5oyY= Subject key identifier: CF:B3:91:4C:49:73:C6:E5:79:2A:CF:19:79:4D:E4:D8:4E:BD:DD:7D Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 01DF Signing time: Wed 13 May 2026 03:35:18 +0000 Manifest this update: Wed 13 May 2026 03:35:18 +0000 Manifest next update: Wed 20 May 2026 03:35:18 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: SDuaiA8nRSPexRno14ropoAYue8FxwSHD02EXF+3JzY=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: vSlu+TQyxpav2ADnDaaL7eQcjqlvG5DFjhy5XTFprbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: May 13 03:35:18 2026 GMT Not After : May 20 03:35:18 2026 GMT Subject: CN=6a03f176-3875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:13:7b:84:fd:de:a2:50:7b:d3:81:6b:01:e2: f8:0b:b0:45:77:9a:93:e6:22:7b:73:7b:4b:dd:25: 17:ee:29:0e:85:f5:58:9f:66:16:8d:1d:78:35:24: fa:18:12:82:c4:7c:d3:e3:44:6a:6d:24:40:8c:c1: f2:98:fe:88:0d:54:8d:e8:2f:b1:6a:20:38:a9:8d: 5d:1f:28:46:e4:82:92:af:dd:15:5c:f9:06:c5:44: 55:42:40:25:6f:68:0b:f5:4c:a9:66:c2:48:52:7a: 35:d2:11:ea:d4:90:34:35:12:55:17:c4:13:a4:ec: e8:79:d7:e3:98:50:ce:cf:7c:d6:81:7b:bd:69:50: 8a:3b:b4:b0:ab:d6:8a:54:e8:39:30:23:ab:f6:a7: ba:d0:73:2d:3a:b0:3f:79:41:ff:97:07:a0:9c:45: fe:e4:53:6f:85:ad:83:ab:40:75:e0:af:23:a3:4c: 35:02:62:29:a0:df:38:00:40:da:e9:b5:bd:b6:5b: f9:b9:0a:45:b3:d3:80:25:dc:5a:4b:e0:65:1b:3a: 4a:37:8a:ba:37:48:d5:55:f9:c4:07:02:a8:25:03: a5:3c:1b:46:63:9d:be:8b:fe:4d:cf:1b:17:11:45: 74:78:8b:99:6d:cb:91:bb:53:89:d1:93:fb:7f:07: 70:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B3:91:4C:49:73:C6:E5:79:2A:CF:19:79:4D:E4:D8:4E:BD:DD:7D X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:df:6b:80:01:e8:f4:28:9e:f9:91:35:e4:c9:4d:74:e5:55: 2a:4c:e7:da:03:25:ba:2d:f6:7a:c6:46:b3:89:c4:74:8a:b8: fd:68:a3:4c:a9:cb:01:68:4d:46:2e:c9:7e:09:4c:ee:fd:26: 90:97:f8:66:f6:d3:fc:2f:e8:f4:23:fd:03:21:d4:83:e8:c3: d3:14:62:3e:cf:0c:2f:d3:e1:63:86:1d:48:7d:bd:36:2a:e0: 6b:46:ba:18:f1:22:c9:e4:bb:3e:da:8e:1e:6b:d3:40:c1:42: f0:90:ad:c2:0c:3a:fb:ac:6f:2b:ef:dd:a0:c4:8a:81:89:fd: 87:22:eb:2d:06:0b:8b:23:99:36:58:6c:51:ca:5b:79:87:9e: 89:61:f4:08:bd:60:2d:1f:8a:20:4d:a3:09:3f:7e:d1:d6:72: 5d:75:6e:8e:f5:13:19:ca:f1:15:6a:28:3f:e7:6c:53:7b:8b: ba:52:97:dd:ac:d2:59:f4:97:22:e1:ff:b4:44:50:90:a0:33: 08:47:41:2c:b3:0e:10:e6:e7:c8:ca:b1:8d:52:17:8b:48:33: c6:20:54:0f:3b:a0:4a:74:b6:e0:e9:b7:48:94:68:75:cf:3e: d8:ea:ff:1f:ce:10:12:14:9e:8e:28:29:91:5e:e6:fd:61:73: 2c:11:a6:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjYwNTEzMDMzNTE4WhcNMjYwNTIwMDMzNTE4WjAYMRYwFAYD VQQDEw02YTAzZjE3Ni0zODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhN7hP3eolB704FrAeL4C7BFd5qT5iJ7c3tL3SUX7ikOhfVYn2YWjR14NST6 GBKCxHzT40RqbSRAjMHymP6IDVSN6C+xaiA4qY1dHyhG5IKSr90VXPkGxURVQkAl b2gL9UypZsJIUno10hHq1JA0NRJVF8QTpOzoedfjmFDOz3zWgXu9aVCKO7Swq9aK VOg5MCOr9qe60HMtOrA/eUH/lwegnEX+5FNvha2Dq0B14K8jo0w1AmIpoN84AEDa 6bW9tlv5uQpFs9OAJdxaS+BlGzpKN4q6N0jVVfnEBwKoJQOlPBtGY52+i/5NzxsX EUV0eIuZbcuRu1OJ0ZP7fwdwwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM+zkUxJ c8bleSrPGXlN5NhOvd19MB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAId9rgAHo9Cie+ZE15MlNdOVVKkzn2gMlui32esZGs4nEdIq4/WijTKnLAWhN Ri7JfglM7v0mkJf4ZvbT/C/o9CP9AyHUg+jD0xRiPs8ML9PhY4YdSH29Nirga0a6 GPEiyeS7PtqOHmvTQMFC8JCtwgw6+6xvK+/doMSKgYn9hyLrLQYLiyOZNlhsUcpb eYeeiWH0CL1gLR+KIE2jCT9+0dZyXXVujvUTGcrxFWooP+dsU3uLulKX3azSWfSX IuH/tERQkKAzCEdBLLMOEObnyMqxjVIXi0gzxiBUDzugSnS24Om3SJRodc8+2Or/ H84QEhSejigpkV7m/WFzLBGm9w== -----END CERTIFICATE-----Generated at Wed May 13 08:22:19 2026 by rpki-client