$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: s8nZ1PKubXJ1i4R6H1gNWj9tcOFGKJIdo5QXiqjLEVk= Subject key identifier: A0:6E:F3:2A:F7:E4:6C:E5:68:C5:5D:B3:0F:88:B3:E8:B0:0F:6F:51 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2E20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2DFA Signing time: Tue 12 May 2026 15:30:38 +0000 Manifest this update: Tue 12 May 2026 15:30:38 +0000 Manifest next update: Tue 19 May 2026 15:30:38 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: kPaGWasbCmvyqH5hXIpsGKCfdfpJvQ3i6UBoaJLERH4=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: 2iAA5Sdwm5Oc9oXy7BNKf4hVQshNT/PV2nUfVZIXmzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11808 (0x2e20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: May 12 15:30:38 2026 GMT Not After : May 19 15:30:38 2026 GMT Subject: CN=6a03479e-de65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:85:68:59:1c:17:eb:69:75:bc:c9:66:86:6e: ae:e1:1f:e6:31:b4:c5:29:3c:1e:e4:f9:1d:ed:33: d9:a0:54:e9:4e:88:e5:7d:e3:14:87:61:88:c1:6e: 59:b9:2b:d3:70:17:d1:1d:9c:f0:74:7b:20:ab:14: cc:25:f3:5a:10:37:54:d7:7f:01:97:29:14:75:1d: 89:79:78:6d:8d:82:27:02:4f:67:3b:dd:3e:d3:3c: 93:16:83:da:fe:77:08:fe:80:57:4c:34:aa:35:d7: 01:dd:5e:8f:ae:d3:c1:f7:cd:b1:dc:c8:a7:90:49: 7c:02:2e:00:4f:be:e7:70:5e:9f:0a:59:8f:a3:9d: 12:56:32:fb:39:43:bd:f7:e4:cc:3e:4a:61:a4:18: c4:54:c3:3f:21:84:78:9d:68:12:13:fe:a0:98:ff: 37:4d:91:ab:7b:55:b1:2f:f2:ae:23:80:2d:78:85: ff:a1:62:8b:d6:d5:d1:d2:0f:3f:d8:30:7e:55:9a: 0c:10:2d:e4:37:a9:aa:33:60:f0:04:a6:03:bb:71: 97:80:33:bc:15:11:cb:03:7b:2b:1f:1b:4d:49:ce: 04:39:3a:73:0b:83:e5:82:d0:8a:b9:c7:6e:d9:d7: 91:64:3d:e0:b6:32:3c:67:b6:cd:f8:67:43:a2:33: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6E:F3:2A:F7:E4:6C:E5:68:C5:5D:B3:0F:88:B3:E8:B0:0F:6F:51 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c9:97:26:5b:e3:94:c0:fb:e0:12:01:4e:a7:f1:11:d7:2d: 25:b7:b5:f8:c3:16:29:07:d1:c2:58:14:6c:5d:0c:24:d3:02: 0a:fb:7d:a6:51:62:3e:72:32:29:28:89:4e:8c:85:b2:c4:6b: e7:d5:1d:2c:cc:8c:51:ff:01:bb:01:25:54:7e:ec:d6:17:8c: 27:fe:c1:2f:03:d7:6a:ee:3c:3f:12:01:d4:87:a2:c2:1a:51: 9a:f7:8a:4c:4a:09:99:f2:a8:3b:01:20:48:30:fc:8f:66:e2: 14:f6:4d:92:28:0c:ee:ea:be:32:da:32:c4:fa:20:fd:5e:86: e4:4d:15:e5:25:51:43:01:b9:99:ed:92:d6:70:0c:eb:6b:9d: e6:f0:63:3c:98:be:49:34:a1:46:eb:5b:f0:36:de:42:34:66: f6:62:8d:c6:d7:6d:c8:24:ca:b3:30:5b:16:ad:84:55:ee:06: ee:90:25:01:ca:5d:01:af:b0:dd:59:83:f6:c1:01:68:2f:4c: fa:51:dd:c4:b7:af:02:a5:69:3b:90:0a:83:eb:59:98:6f:9e: 4e:67:02:4e:a9:7d:b9:e8:ea:95:8a:ef:a3:8a:b0:60:b4:00: b8:41:78:0d:e4:7c:08:47:f7:66:40:76:2e:e2:ef:8e:35:a5: 14:9b:ae:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjYwNTEyMTUzMDM4WhcNMjYwNTE5MTUzMDM4WjAYMRYwFAYD VQQDEw02YTAzNDc5ZS1kZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIVoWRwX62l1vMlmhm6u4R/mMbTFKTwe5Pkd7TPZoFTpTojlfeMUh2GIwW5Z uSvTcBfRHZzwdHsgqxTMJfNaEDdU138BlykUdR2JeXhtjYInAk9nO90+0zyTFoPa /ncI/oBXTDSqNdcB3V6PrtPB982x3MinkEl8Ai4AT77ncF6fClmPo50SVjL7OUO9 9+TMPkphpBjEVMM/IYR4nWgSE/6gmP83TZGre1WxL/KuI4AteIX/oWKL1tXR0g8/ 2DB+VZoMEC3kN6mqM2DwBKYDu3GXgDO8FRHLA3srHxtNSc4EOTpzC4PlgtCKucdu 2deRZD3gtjI8Z7bN+GdDojPTcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKBu8yr3 5GzlaMVdsw+Is+iwD29RMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUMmXJlvjlMD74BIBTqfxEdctJbe1+MMWKQfRwlgUbF0MJNMCCvt9plFiPnIy KSiJToyFssRr59UdLMyMUf8BuwElVH7s1heMJ/7BLwPXau48PxIB1IeiwhpRmveK TEoJmfKoOwEgSDD8j2biFPZNkigM7uq+MtoyxPog/V6G5E0V5SVRQwG5me2S1nAM 62ud5vBjPJi+STShRutb8DbeQjRm9mKNxtdtyCTKszBbFq2EVe4G7pAlAcpdAa+w 3VmD9sEBaC9M+lHdxLevAqVpO5AKg+tZmG+eTmcCTql9uejqlYrvo4qwYLQAuEF4 DeR8CEf3ZkB2LuLvjjWlFJuuWQ== -----END CERTIFICATE-----Generated at Wed May 13 12:56:06 2026 by rpki-client