$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: HvLKaIEGuxwMR6ynJwPGzm7lZu3pcmYvvHrTg9DcDII= Subject key identifier: 69:2A:CC:74:4C:5B:3A:71:CE:33:81:57:CD:4F:91:59:9B:7D:1C:07 Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1C91 Signing time: Tue 12 May 2026 16:11:46 +0000 Manifest this update: Tue 12 May 2026 16:11:46 +0000 Manifest next update: Tue 19 May 2026 16:11:46 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: 2WruPkCdC51/z0eIAcrtlu1Y8GvPGqTV1Z/htUAM8dc=) 2: 65D82706BACE11F0AAEC4611C4F9AE02.roa (hash: sqvmzo0nBMsekrGisDm87YPLKEUsc2Q0u1zWWfR7WgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7329 (0x1ca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: May 12 16:11:46 2026 GMT Not After : May 19 16:11:46 2026 GMT Subject: CN=6a035142-6d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:ce:23:51:9b:76:a6:26:30:31:e9:31:39:65: b9:78:e8:7f:aa:fc:77:d3:92:e0:5a:4e:0f:15:12: a5:e8:bc:5e:ed:cd:ad:c0:e2:c7:b0:8e:5a:57:b8: 82:dd:c5:53:13:f5:95:a8:36:fb:97:ab:61:57:a3: ec:df:a3:79:e5:ad:b0:c3:24:3a:1c:b9:92:48:8d: f1:bb:2c:7d:17:aa:8f:d0:92:c8:5a:06:a5:1d:fb: 0c:b7:b7:24:48:dd:d7:3a:00:74:85:ca:3f:eb:9f: b3:f9:3c:ae:ac:6b:6e:f3:99:b2:f0:79:d6:c3:32: 29:4f:dc:dd:5d:24:49:4c:52:58:ef:65:2e:91:e4: 08:b4:7d:e5:1b:6b:d7:9c:ce:51:15:68:68:6d:be: 94:5f:6a:7f:54:0e:19:6d:6a:2c:f2:85:ad:8a:14: 42:f1:19:4d:cd:6e:5a:ff:fd:ea:44:c9:df:84:42: 78:82:a8:e0:0e:90:b3:8e:9f:b0:fe:c5:8e:29:f3: 71:c6:56:a3:88:8a:26:e0:41:80:de:e6:68:11:ea: c7:d3:3c:1e:61:c4:98:a0:a6:7b:11:10:05:71:d4: e8:66:cc:4d:14:04:e7:29:15:27:ab:79:dd:99:27: 9e:fa:45:86:8c:30:6f:2f:82:c2:00:36:2e:15:e4: 4d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2A:CC:74:4C:5B:3A:71:CE:33:81:57:CD:4F:91:59:9B:7D:1C:07 X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:6b:f9:68:cd:fe:44:af:c1:43:9b:19:37:ea:73:ea:07:ef: 17:27:f6:98:11:8b:2f:0f:48:b0:69:44:4b:94:ff:f0:53:3e: dd:6c:b7:c1:f4:f2:76:72:36:50:ce:21:01:d8:f8:8d:1d:8d: a6:0b:03:a5:a3:17:6c:7e:a1:b2:d2:9e:08:98:70:f3:af:72: 40:cc:8f:b8:2f:c5:16:83:7d:e3:82:31:e2:df:12:00:f5:33: c7:bb:8c:c2:05:ad:67:9a:4a:0b:eb:08:a8:51:e7:76:22:5a: 6f:95:2e:e4:af:ae:a0:31:65:87:c2:26:94:09:dc:0d:92:f1: 66:41:84:b8:d5:03:09:2e:63:49:50:9a:63:c2:dd:a2:5d:db: ba:32:51:69:4e:40:b4:a6:b4:36:eb:83:41:c5:c2:7d:a4:3a: 84:48:9e:eb:0e:bc:27:70:f1:98:4a:23:ea:d7:97:48:2a:89: 6f:a5:1e:be:d0:18:da:50:88:dc:ce:11:b0:4c:38:b4:15:c7: cb:f1:cd:8c:ac:26:c2:7c:87:84:41:c3:56:91:7e:3a:1e:ce: 13:07:54:4a:7a:02:4d:83:c8:cf:20:0f:b3:a6:cb:59:fe:6d: 94:a6:a0:76:e5:e9:73:1d:62:a2:e5:60:41:ab:e6:82:dd:f4: d2:e5:83:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjYwNTEyMTYxMTQ2WhcNMjYwNTE5MTYxMTQ2WjAYMRYwFAYD VQQDEw02YTAzNTE0Mi02ZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg84jUZt2piYwMekxOWW5eOh/qvx305LgWk4PFRKl6Lxe7c2twOLHsI5aV7iC 3cVTE/WVqDb7l6thV6Ps36N55a2wwyQ6HLmSSI3xuyx9F6qP0JLIWgalHfsMt7ck SN3XOgB0hco/65+z+TyurGtu85my8HnWwzIpT9zdXSRJTFJY72UukeQItH3lG2vX nM5RFWhobb6UX2p/VA4ZbWos8oWtihRC8RlNzW5a//3qRMnfhEJ4gqjgDpCzjp+w /sWOKfNxxlajiIom4EGA3uZoEerH0zweYcSYoKZ7ERAFcdToZsxNFATnKRUnq3nd mSee+kWGjDBvL4LCADYuFeRNWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGkqzHRM WzpxzjOBV81PkVmbfRwHMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAy2v5aM3+RK/BQ5sZN+pz6gfvFyf2mBGLLw9IsGlES5T/8FM+3Wy3wfTydnI2 UM4hAdj4jR2NpgsDpaMXbH6hstKeCJhw869yQMyPuC/FFoN944Ix4t8SAPUzx7uM wgWtZ5pKC+sIqFHndiJab5Uu5K+uoDFlh8ImlAncDZLxZkGEuNUDCS5jSVCaY8Ld ol3bujJRaU5AtKa0NuuDQcXCfaQ6hEie6w68J3DxmEoj6teXSCqJb6UevtAY2lCI 3M4RsEw4tBXHy/HNjKwmwnyHhEHDVpF+Oh7OEwdUSnoCTYPIzyAPs6bLWf5tlKag duXpcx1iouVgQavmgt300uWDAw== -----END CERTIFICATE-----Generated at Wed May 13 07:24:25 2026 by rpki-client