$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft File: hCMykdLcashg9UvuzoHVSwNEA78.mft (raw, json) Hash identifier: KAVsYD/eM43DaIoFgtsI2cWRe0TUk0320LMeIciWFR4= Subject key identifier: E9:FE:99:56:4F:03:77:35:54:0E:59:68:05:D1:58:85:80:46:67:1D Authority key identifier: 84:23:32:91:D2:DC:6A:C8:60:F5:4B:EE:CE:81:D5:4B:03:44:03:BF Certificate issuer: /CN=A91CAA8A/serialNumber=84233291D2DC6AC860F54BEECE81D54B034403BF Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft Manifest number: 40 Signing time: Wed 13 May 2026 08:38:01 +0000 Manifest this update: Wed 13 May 2026 08:38:01 +0000 Manifest next update: Wed 20 May 2026 08:38:01 +0000 Files and hashes: 1: hCMykdLcashg9UvuzoHVSwNEA78.crl (hash: FZITCNAL9EPw5GLnezxr0LcFw0D7/FVoiSKvek1yVgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.crl rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA8A, serialNumber=84233291D2DC6AC860F54BEECE81D54B034403BF Validity Not Before: May 13 08:38:01 2026 GMT Not After : May 20 08:38:01 2026 GMT Subject: CN=6a043869-a385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3c:70:ea:5e:95:9b:db:d8:4c:37:88:d9:91: 7a:2c:4b:a9:75:92:7a:c4:ce:e2:a7:ab:68:5a:41: f1:01:ee:6d:f9:64:b6:a2:2a:05:36:39:15:57:34: 9c:8a:d6:d7:13:76:c6:e9:ae:f5:c1:8e:a9:e4:64: db:23:8f:71:38:82:d4:f0:82:2b:be:e8:ae:a0:42: 5f:75:8f:4e:7d:3a:7e:c6:4d:5a:ec:04:20:f4:1f: 80:d2:dc:e2:ad:8f:eb:8f:52:3a:7e:62:67:09:2d: a4:36:c9:0b:49:1a:cd:89:9c:37:95:4c:03:4e:dd: 85:01:9d:7d:4a:54:29:7c:e2:12:bf:a4:c6:39:42: 33:0b:6a:d9:9f:c8:1b:2b:a1:65:b8:24:f0:59:ff: ba:8b:65:23:58:2d:4b:84:03:83:8a:89:46:40:de: 1e:95:f1:6e:dc:1f:69:cb:67:67:fd:15:6f:5e:33: 40:a7:7f:a5:30:fe:51:bd:fe:ca:b7:a1:b0:3b:45: 49:e2:76:64:bd:01:aa:f9:d2:7b:44:36:88:3b:e5: 94:8a:c7:65:28:18:9d:a9:1d:c4:73:ec:41:57:d7: 3f:c8:f1:0c:a2:a9:13:ca:4f:1d:27:c4:ee:20:64: 6b:2d:9a:b1:35:95:09:93:c4:ad:91:7e:a3:43:ea: bb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FE:99:56:4F:03:77:35:54:0E:59:68:05:D1:58:85:80:46:67:1D X509v3 Authority Key Identifier: keyid:84:23:32:91:D2:DC:6A:C8:60:F5:4B:EE:CE:81:D5:4B:03:44:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:13:a6:37:1d:00:88:84:05:6f:37:94:ac:17:26:a9:ac:3b: 79:e2:dc:c0:9f:fc:7c:bc:e1:d4:dc:39:bd:9d:97:eb:f1:3a: b9:f3:2c:d7:65:2e:80:e8:a7:9a:43:a8:ce:cc:a5:a9:eb:f9: 86:5a:2f:f7:5c:f3:b9:28:e1:f7:92:27:5d:64:b6:33:fa:07: 1e:b9:66:f1:72:7e:35:3d:68:0a:f7:65:7d:eb:62:e3:a7:e8: a7:81:ea:b3:4f:11:c8:da:68:4e:c5:2e:e4:88:22:e9:e3:68: 56:28:ce:81:37:2f:63:98:36:fd:ec:a8:a3:a0:dd:21:9c:a7: 79:63:12:3c:42:e8:18:3b:20:45:72:ac:2e:c1:6c:6a:39:fb: 50:31:5c:9b:1b:73:3c:2e:96:88:39:ee:24:58:1c:ac:73:6a: ea:d5:80:64:b0:64:0f:01:96:47:f6:41:50:5c:99:10:59:ad: 27:e8:9b:ea:a2:1c:bc:9d:e5:da:84:cd:31:69:57:d3:01:94: 44:fc:1a:07:6e:6b:41:27:56:32:9f:a0:fd:b4:c7:6f:9d:b6: 1b:07:9a:49:c4:60:dd:7e:5e:14:fc:a3:11:5f:d7:19:b4:16: 36:ed:82:de:4b:3f:6f:e0:89:0a:e5:08:31:36:c9:c6:bc:5c: 1f:db:48:c6 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QUE4QTExMC8GA1UEBRMoODQyMzMyOTFEMkRDNkFDODYwRjU0QkVFQ0U4MUQ1NEIw MzQ0MDNCRjAeFw0yNjA1MTMwODM4MDFaFw0yNjA1MjAwODM4MDFaMBgxFjAUBgNV BAMTDTZhMDQzODY5LWEzODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUPHDqXpWb29hMN4jZkXosS6l1knrEzuKnq2haQfEB7m35ZLaiKgU2ORVXNJyK 1tcTdsbprvXBjqnkZNsjj3E4gtTwgiu+6K6gQl91j059On7GTVrsBCD0H4DS3OKt j+uPUjp+YmcJLaQ2yQtJGs2JnDeVTANO3YUBnX1KVCl84hK/pMY5QjMLatmfyBsr oWW4JPBZ/7qLZSNYLUuEA4OKiUZA3h6V8W7cH2nLZ2f9FW9eM0Cnf6Uw/lG9/sq3 obA7RUnidmS9Aar50ntENog75ZSKx2UoGJ2pHcRz7EFX1z/I8QyiqRPKTx0nxO4g ZGstmrE1lQmTxK2RfqND6rtxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU6f6ZVk8D dzVUDlloBdFYhYBGZx0wHwYDVR0jBBgwFoAUhCMykdLcashg9UvuzoHVSwNEA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBQThBLzlGM0U1NTE2RjJE MTExRjA5ODlBRDhDRTNDNkY1NkJDL2hDTXlrZExjYXNoZzlVdnV6b0hWU3dORUE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaENNeWtkTGNhc2hnOVV2dXpvSFZTd05FQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNB QThBLzlGM0U1NTE2RjJEMTExRjA5ODlBRDhDRTNDNkY1NkJDL2hDTXlrZExjYXNo ZzlVdnV6b0hWU3dORUE3OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBcE6Y3HQCIhAVvN5SsFyaprDt54tzAn/x8vOHU3Dm9nZfr8Tq58yzXZS6A6Kea Q6jOzKWp6/mGWi/3XPO5KOH3kiddZLYz+gceuWbxcn41PWgK92V962Ljp+ingeqz TxHI2mhOxS7kiCLp42hWKM6BNy9jmDb97KijoN0hnKd5YxI8QugYOyBFcqwuwWxq OftQMVybG3M8LpaIOe4kWBysc2rq1YBksGQPAZZH9kFQXJkQWa0n6Jvqohy8neXa hM0xaVfTAZRE/BoHbmtBJ1Yyn6D9tMdvnbYbB5pJxGDdfl4U/KMRX9cZtBY27YLe Sz9v4IkK5QgxNsnGvFwf20jG -----END CERTIFICATE-----Generated at Wed May 13 13:39:06 2026 by rpki-client