$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: Evaoa6SHmHfJc7yM0K8O+GmohNKBcjj3NRYwsiDZ0Fg= Subject key identifier: 2C:D2:73:FC:36:8A:E9:C1:CE:B2:59:DC:02:A9:2B:67:11:D1:37:F1 Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 0372 Signing time: Wed 13 May 2026 00:58:19 +0000 Manifest this update: Wed 13 May 2026 00:58:19 +0000 Manifest next update: Wed 20 May 2026 00:58:19 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: ZSIdqXdtMXokpDalfsz3iqh0VtQt7hOmKC4d+ynPC6w=) 2: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: VSmy2GGy/MUnJpKHQqfyFcFHs7o9CbczIhcZ8oDgTIM=) 3: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: nkQmNKNtDWtkko/kc3lrW6+9g0X+EY77aB0EFy2ZQ0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: May 13 00:58:19 2026 GMT Not After : May 20 00:58:19 2026 GMT Subject: CN=6a03ccab-91a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:de:fa:63:b6:ef:9a:5b:c3:71:19:96:a3:bd: 46:c7:bf:89:78:49:28:9c:cd:8a:9e:87:ca:1c:26: 3d:c4:9d:93:d6:5a:3d:7d:27:ad:7f:02:be:47:cc: bd:77:89:7b:18:9b:e9:57:72:e4:da:26:0d:1d:87: 0b:a3:cd:19:b1:ba:dc:13:e6:7f:68:f9:26:e9:92: 37:de:d5:46:90:e9:d5:5b:4c:f6:01:47:7a:eb:44: c7:af:5c:0a:12:0f:04:f7:c1:1d:5b:34:d1:27:3d: 3f:26:92:a7:c1:d0:3d:50:e6:ef:e9:42:87:f2:4b: f1:98:07:52:56:bf:d8:d6:99:cf:bc:e0:61:a4:f8: 3a:ed:f2:25:49:14:c2:86:cc:ad:92:0a:26:0b:b2: 52:ce:b2:cb:0a:b8:08:41:74:3a:14:5a:c3:8c:78: 10:19:4b:f8:0a:c3:ab:a8:36:de:97:28:b8:68:57: 41:6c:cf:3d:e0:d5:e8:c1:de:37:c6:b4:cb:4d:57: 12:aa:4c:0b:41:82:51:00:b6:b0:be:20:2e:9e:a0: a5:c5:f6:74:c7:a9:4b:c7:23:e2:26:b5:b6:b3:84: e2:4c:0d:48:c1:e0:7c:83:7f:a9:7f:9a:1d:39:0d: 3a:82:cc:7b:ef:05:03:76:61:e5:6b:2e:c2:35:1a: a8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D2:73:FC:36:8A:E9:C1:CE:B2:59:DC:02:A9:2B:67:11:D1:37:F1 X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:be:a6:14:8c:7a:64:34:26:81:54:60:09:15:e3:ca:41:9a: 2d:18:e5:9b:ad:a8:b0:8d:98:a4:0d:04:53:d0:46:cd:d3:cd: 74:92:c5:7c:a9:af:d1:0f:2e:98:3a:46:5f:02:58:4a:72:2a: 50:fd:40:f3:19:6a:77:95:1e:6a:6b:98:22:9c:d7:fe:01:ad: c4:36:83:cd:11:57:63:a5:34:01:91:da:ed:e9:a5:57:06:c1: 64:f1:80:8a:56:d1:cf:ca:df:d4:6e:b3:56:b7:60:c6:0f:83: 04:3d:c5:f8:35:b0:e4:e1:4a:10:68:86:ee:b0:ea:6c:a7:9b: ad:e3:ce:d7:4a:69:97:73:9a:f7:fc:19:2b:d0:50:93:3b:ed: a9:34:d6:a1:15:be:ec:91:4e:36:d5:3e:fc:18:a3:7f:13:38: 84:4e:a2:92:61:d0:15:26:84:a9:9e:54:b0:c0:c5:2b:81:20: 6b:0c:bd:d5:3a:52:3a:a4:aa:c3:d8:ba:01:b9:4f:7b:83:93: 87:04:47:81:c5:92:51:e8:81:9e:8d:38:0e:0e:6c:81:1d:b6: 90:1b:63:15:f4:b7:f8:06:5b:dc:45:d5:b7:e1:01:1e:09:70: 5e:53:b8:12:aa:b6:9f:a0:5e:84:2d:ae:6a:0f:cb:78:31:53: 2c:39:7d:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjYwNTEzMDA1ODE5WhcNMjYwNTIwMDA1ODE5WjAYMRYwFAYD VQQDEw02YTAzY2NhYi05MWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN76Y7bvmlvDcRmWo71Gx7+JeEkonM2KnofKHCY9xJ2T1lo9fSetfwK+R8y9 d4l7GJvpV3Lk2iYNHYcLo80ZsbrcE+Z/aPkm6ZI33tVGkOnVW0z2AUd660THr1wK Eg8E98EdWzTRJz0/JpKnwdA9UObv6UKH8kvxmAdSVr/Y1pnPvOBhpPg67fIlSRTC hsytkgomC7JSzrLLCrgIQXQ6FFrDjHgQGUv4CsOrqDbelyi4aFdBbM894NXowd43 xrTLTVcSqkwLQYJRALawviAunqClxfZ0x6lLxyPiJrW2s4TiTA1IweB8g3+pf5od OQ06gsx77wUDdmHlay7CNRqo8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCzSc/w2 iunBzrJZ3AKpK2cR0TfxMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArL6mFIx6ZDQmgVRgCRXjykGaLRjlm62osI2YpA0EU9BGzdPNdJLFfKmv0Q8u mDpGXwJYSnIqUP1A8xlqd5UeamuYIpzX/gGtxDaDzRFXY6U0AZHa7emlVwbBZPGA ilbRz8rf1G6zVrdgxg+DBD3F+DWw5OFKEGiG7rDqbKebrePO10ppl3Oa9/wZK9BQ kzvtqTTWoRW+7JFONtU+/BijfxM4hE6ikmHQFSaEqZ5UsMDFK4Egawy91TpSOqSq w9i6AblPe4OThwRHgcWSUeiBno04Dg5sgR22kBtjFfS3+AZb3EXVt+EBHglwXlO4 Eqq2n6BehC2uag/LeDFTLDl9rA== -----END CERTIFICATE-----Generated at Wed May 13 07:17:34 2026 by rpki-client