$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: MrdDCL5zBRL4R+Glg7IiG9fMyuBB7pzSnmjDwi6gVWE= Subject key identifier: F1:3F:7C:1F:4C:D4:54:3B:7C:48:68:45:FD:84:8C:CD:23:74:C6:18 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 09B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 09AE Signing time: Tue 12 May 2026 20:00:42 +0000 Manifest this update: Tue 12 May 2026 20:00:41 +0000 Manifest next update: Tue 19 May 2026 20:00:41 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: b99skeS3dPvElX1JV+JM57xlM/LOhadzeScHy/4lyzk=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: +2jTblD+/4omeCEhDlwqOghx+nNjjgIJKr1/zmP67Lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2488 (0x9b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: May 12 20:00:41 2026 GMT Not After : May 19 20:00:41 2026 GMT Subject: CN=6a0386ea-18e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:a1:ca:14:e8:df:99:e1:41:c3:5c:14:8b: 07:80:3c:9c:3b:9d:e3:f7:fd:08:3b:28:c2:a8:6b: 00:b8:20:e4:94:70:9e:cb:bf:31:d7:a6:42:30:51: 97:96:ee:92:7d:45:07:0f:28:10:d0:19:63:7d:ff: 23:a2:92:dc:ea:60:ab:89:25:79:48:3c:c6:1a:1f: ce:98:23:59:ce:18:d6:74:7c:ea:2b:6e:aa:e6:3d: 0f:ca:58:2b:aa:e0:c1:e0:3b:94:d1:ec:05:d6:f9: 77:4b:b1:e6:61:51:25:ab:f6:a2:a6:b8:c5:d9:0f: a6:42:c0:38:c7:89:67:89:84:eb:ac:9f:0b:e2:69: 6c:a8:88:3f:b5:f9:0e:5f:63:17:36:d8:e5:1f:bc: 5a:69:60:55:75:90:81:e2:ca:dc:d4:15:85:49:ce: af:c2:a0:48:13:d7:42:43:c5:18:e5:fa:40:55:55: 90:b4:c4:4c:8b:31:7f:e4:50:bc:f1:71:6e:4c:9b: 6f:df:a7:c6:11:c2:40:e1:b6:f2:55:5d:73:6d:03: ea:8c:61:b6:d5:1c:ad:e6:a3:07:55:f5:5c:63:93: 56:e4:e1:57:3b:dd:1c:15:f9:e7:72:24:73:db:6a: 65:9c:7d:85:fc:d1:f8:d0:3c:a0:7b:21:f0:e5:0e: 82:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3F:7C:1F:4C:D4:54:3B:7C:48:68:45:FD:84:8C:CD:23:74:C6:18 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:be:8e:ed:b1:fe:c5:10:0a:05:b2:2a:ae:c5:e9:45:78:d8: bd:a0:7d:8f:6a:ea:7f:0c:37:12:24:bf:20:2e:e3:d7:36:9a: 38:cf:7e:e3:85:26:15:59:d7:49:a8:2e:f5:58:ce:dd:26:50: be:db:ce:ba:78:79:2e:f1:11:da:66:ac:ba:e3:d7:ad:67:2a: 37:6e:09:01:5e:e3:d0:08:73:a5:d3:9f:10:3f:c3:43:20:21: 14:82:d9:9a:77:98:ec:b1:46:6f:9e:62:61:c5:f6:0e:46:bf: f6:88:42:5e:12:b3:bd:5b:58:33:72:a0:f4:61:39:c9:d2:35: 6b:28:cf:a5:a8:1c:17:14:2b:2a:13:d3:ea:1b:dc:be:e7:d4: 9d:63:da:51:86:ff:5d:47:84:ac:d3:0e:c7:af:e7:2f:13:e5: 5d:d5:a5:b0:8d:80:77:42:b2:1b:d1:cd:ab:c7:a0:b7:6d:b6: 30:01:bf:90:24:16:6a:d7:26:8c:94:41:3f:55:c2:0e:b7:9a: 3e:d6:a6:09:29:e9:67:b9:be:a7:18:80:d4:c8:18:73:b9:c9: 15:13:30:03:90:0a:ac:19:3b:cf:eb:1d:fa:9f:17:51:70:7a: 09:39:6b:0c:fd:4b:03:71:2c:40:f0:1d:30:8c:3d:45:9e:c1: 12:a9:2a:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjYwNTEyMjAwMDQxWhcNMjYwNTE5MjAwMDQxWjAYMRYwFAYD VQQDEw02YTAzODZlYS0xOGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01ChyhTo35nhQcNcFIsHgDycO53j9/0IOyjCqGsAuCDklHCey78x16ZCMFGX lu6SfUUHDygQ0Bljff8jopLc6mCriSV5SDzGGh/OmCNZzhjWdHzqK26q5j0Pylgr quDB4DuU0ewF1vl3S7HmYVElq/aiprjF2Q+mQsA4x4lniYTrrJ8L4mlsqIg/tfkO X2MXNtjlH7xaaWBVdZCB4src1BWFSc6vwqBIE9dCQ8UY5fpAVVWQtMRMizF/5FC8 8XFuTJtv36fGEcJA4bbyVV1zbQPqjGG21Ryt5qMHVfVcY5NW5OFXO90cFfnnciRz 22plnH2F/NH40DygeyHw5Q6CJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPE/fB9M 1FQ7fEhoRf2EjM0jdMYYMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcb6O7bH+xRAKBbIqrsXpRXjYvaB9j2rqfww3EiS/IC7j1zaaOM9+44UmFVnX Sagu9VjO3SZQvtvOunh5LvER2masuuPXrWcqN24JAV7j0AhzpdOfED/DQyAhFILZ mneY7LFGb55iYcX2Dka/9ohCXhKzvVtYM3Kg9GE5ydI1ayjPpagcFxQrKhPT6hvc vufUnWPaUYb/XUeErNMOx6/nLxPlXdWlsI2Ad0KyG9HNq8egt222MAG/kCQWatcm jJRBP1XCDreaPtamCSnpZ7m+pxiA1MgYc7nJFRMwA5AKrBk7z+sd+p8XUXB6CTlr DP1LA3EsQPAdMIw9RZ7BEqkq8w== -----END CERTIFICATE-----Generated at Wed May 13 08:47:52 2026 by rpki-client