$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft File: 8Cl9DkUxodYqla9dLyLvJAja0pw.mft (raw, json) Hash identifier: 13oDjA/RjP9WrT+r3eVKb3lZ7iINRFyh8Ks7uWVhyWc= Subject key identifier: 30:F1:C4:BA:72:92:B9:2C:0F:1D:AE:7A:36:38:1A:FD:A2:65:17:AC Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 0863 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft Manifest number: 084B Signing time: Tue 12 May 2026 20:57:42 +0000 Manifest this update: Tue 12 May 2026 20:57:42 +0000 Manifest next update: Tue 19 May 2026 20:57:42 +0000 Files and hashes: 1: 8Cl9DkUxodYqla9dLyLvJAja0pw.crl (hash: Tz716QBOHbik9npGuIMvDz6G7CBAo4+oFUpvma3vLB0=) 2: 23AF26C40C2B11EBAD607865C4F9AE02.roa (hash: gt1Thn5b17IX5hac63qpkPqnhAnjtdM7GC00RfgXDCA=) 3: 5ECF5AFE37CC11F0AE950A5FC4F9AE02.roa (hash: VGnt6v4dXILkocn8GEwn5t+Gd/2jbgIZ2L5lp88nLxY=) 4: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (hash: Gj36dWubgKABqlkFIW8O6/4ONoiv/qzcPv5+4kWBHuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: May 12 20:57:42 2026 GMT Not After : May 19 20:57:42 2026 GMT Subject: CN=6a039446-3b82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:41:c6:1a:4b:6e:fd:bd:80:bf:40:14:2b:de: 84:60:0a:29:9f:38:9b:24:60:01:02:a0:96:cb:9a: 31:3d:58:54:cf:d5:18:76:d2:88:65:29:39:9e:af: 85:48:ba:7b:66:89:ce:0b:25:15:36:0a:cf:a9:ee: 28:ac:9a:91:60:82:6a:08:be:63:40:d5:a2:ed:29: eb:7c:03:5d:df:d0:d1:e0:81:25:56:f8:fa:17:d9: e4:28:d6:21:0a:bd:7b:71:2e:8e:5f:5f:8f:94:fb: 8d:c4:3f:f3:a2:81:70:e0:da:29:5f:e3:c3:cb:1a: 8a:f5:34:db:f7:f2:40:a5:0f:83:29:33:59:4b:2b: a6:c9:02:13:43:cc:23:13:3d:0b:9b:72:aa:be:2e: 51:49:a8:e2:50:ff:16:8a:c1:a3:a7:d9:fc:0f:9b: 14:85:68:2f:33:15:7a:3d:59:00:68:68:36:0f:79: de:0e:92:02:b4:ee:63:39:d2:91:43:f8:75:a6:1d: 09:12:7a:be:79:6a:97:59:63:36:f8:46:f9:1e:da: df:18:bc:b1:c9:bc:45:fe:ca:97:f4:36:b1:b8:17: 48:15:21:c1:a8:55:37:97:e9:fa:d5:32:db:e8:27: bb:bf:c8:e7:a1:53:36:f5:a7:df:73:32:4b:67:1a: cc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F1:C4:BA:72:92:B9:2C:0F:1D:AE:7A:36:38:1A:FD:A2:65:17:AC X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e8:d5:d7:d7:b2:ec:fd:de:0b:d8:14:58:26:c7:c0:a4:49: 9e:1b:26:b3:9a:18:29:33:ab:b1:a5:e9:e6:11:6a:bd:bf:da: 92:5e:8b:21:ea:4c:bb:d4:de:f2:d8:4c:50:14:fb:40:b5:28: 88:0f:81:fa:1f:cf:8a:47:0f:66:49:5d:dd:4f:94:9d:24:01: d3:79:36:7c:2f:97:33:24:f5:3e:58:90:9b:6d:00:85:f5:fd: 49:09:1e:4c:62:91:67:5e:cd:d2:bf:9d:80:bc:e9:63:d9:2b: 38:c3:f6:f9:01:7c:15:4b:a6:0c:70:3d:00:8a:05:b8:c0:67: a1:f3:fa:ed:01:3f:3b:0f:9c:a6:0a:a9:18:3a:d6:66:e5:ee: 1e:2e:99:35:aa:92:d4:46:5e:39:29:a0:f9:4e:f9:58:10:c2: 6c:d9:a2:e5:43:e3:1e:d6:3e:b4:e0:c0:a5:67:b1:42:51:41: 13:df:ca:c7:04:6f:de:92:a4:02:e0:dd:e7:f6:1f:e7:de:63: 7e:b0:75:ad:95:e6:a9:7a:0a:c6:71:21:7a:81:69:68:37:33: c5:a0:7f:c9:84:5f:7e:6e:a5:da:91:59:ac:0d:72:23:19:86: f7:55:5a:4d:de:d6:f7:28:5a:79:ee:00:60:7c:06:dc:53:8f: 2b:e4:95:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjYwNTEyMjA1NzQyWhcNMjYwNTE5MjA1NzQyWjAYMRYwFAYD VQQDEw02YTAzOTQ0Ni0zYjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUHGGktu/b2Av0AUK96EYAopnzibJGABAqCWy5oxPVhUz9UYdtKIZSk5nq+F SLp7ZonOCyUVNgrPqe4orJqRYIJqCL5jQNWi7SnrfANd39DR4IElVvj6F9nkKNYh Cr17cS6OX1+PlPuNxD/zooFw4NopX+PDyxqK9TTb9/JApQ+DKTNZSyumyQITQ8wj Ez0Lm3Kqvi5RSajiUP8WisGjp9n8D5sUhWgvMxV6PVkAaGg2D3neDpICtO5jOdKR Q/h1ph0JEnq+eWqXWWM2+Eb5HtrfGLyxybxF/sqX9DaxuBdIFSHBqFU3l+n61TLb 6Ce7v8jnoVM29affczJLZxrM4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDDxxLpy krksDx2uejY4Gv2iZResMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMxMi9BQTkyQjk3ODBDMjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9k WXFsYTlkTHlMdkpBamEwcHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKujV19ey7P3eC9gUWCbHwKRJnhsms5oYKTOrsaXp5hFqvb/akl6LIepMu9Te 8thMUBT7QLUoiA+B+h/PikcPZkld3U+UnSQB03k2fC+XMyT1PliQm20AhfX9SQke TGKRZ17N0r+dgLzpY9krOMP2+QF8FUumDHA9AIoFuMBnofP67QE/Ow+cpgqpGDrW ZuXuHi6ZNaqS1EZeOSmg+U75WBDCbNmi5UPjHtY+tODApWexQlFBE9/KxwRv3pKk AuDd5/Yf595jfrB1rZXmqXoKxnEheoFpaDczxaB/yYRffm6l2pFZrA1yIxmG91Va Td7W9yhaee4AYHwG3FOPK+SVlw== -----END CERTIFICATE-----Generated at Wed May 13 11:04:34 2026 by rpki-client