$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft File: r_h3chh1NYXDiOm4HDkGa9ONtZI.mft (raw, json) Hash identifier: LromG522XZ7UvZpwEleYvvK73vaD2/PZrXWTYEaAEFs= Subject key identifier: 04:70:DF:B2:9D:67:E3:31:EA:A9:87:AB:43:76:90:BD:F2:0D:B1:F6 Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft Manifest number: B9 Signing time: Mon 11 May 2026 07:10:55 +0000 Manifest this update: Mon 11 May 2026 07:10:55 +0000 Manifest next update: Mon 18 May 2026 07:10:55 +0000 Files and hashes: 1: r_h3chh1NYXDiOm4HDkGa9ONtZI.crl (hash: Jkct47l0LszbSmWcLHCNYxvRNo/F1q5lD1xjtsEF6kE=) 2: AFD61B9C36A311F08A82A258C4F9AE02.roa (hash: pJSESHzyh46NJYdnq5GWolfK6jlgGJK8T3PBPiUJbVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: May 11 07:10:55 2026 GMT Not After : May 18 07:10:55 2026 GMT Subject: CN=6a0180ff-c7e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a5:31:47:6f:bf:23:c6:34:bb:14:fd:6a:b7: c3:61:0f:f3:75:ef:76:88:bf:0b:25:79:76:5c:a6: fb:7c:8c:58:ff:1f:84:67:5c:45:89:61:bb:be:24: de:2b:61:e8:12:27:56:52:49:b7:99:eb:58:c1:e2: 19:0a:bd:c8:c5:9d:fd:95:f2:c8:83:44:46:16:5f: cc:db:84:22:39:66:2a:89:00:f5:7e:c2:3f:ac:33: db:ca:31:d4:94:a3:b2:ea:d6:f8:77:d8:89:4e:1d: a7:48:4a:e5:fa:ee:0c:b7:50:ce:82:c2:7c:0e:a2: 5f:31:cb:7a:fa:54:70:66:08:fd:ea:71:21:b6:e3: 04:04:f4:57:46:ee:8c:8e:1b:a9:c8:78:56:19:5f: d1:9c:be:3f:8c:41:a5:3b:89:9d:c8:16:bc:75:31: 2e:65:83:e2:85:3a:ea:56:02:4c:8a:75:d2:b8:3c: 1a:68:35:8b:18:b8:81:f3:df:9f:86:ac:c3:2d:66: e4:00:57:dd:ee:df:5a:41:ed:58:17:92:ee:c9:42: 0c:75:8e:fb:0b:9a:b1:fa:a6:dd:59:5c:e4:bf:12: 8e:ff:74:c0:17:94:db:44:c0:f6:be:8d:04:90:40: 3f:9b:6d:79:be:09:ef:aa:0d:e0:c7:f5:da:6a:25: f6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:70:DF:B2:9D:67:E3:31:EA:A9:87:AB:43:76:90:BD:F2:0D:B1:F6 X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:e6:4a:96:27:61:b5:88:e0:37:e6:59:31:d4:13:ef:15:cb: 8c:80:8d:05:d6:89:40:19:0d:9b:eb:78:e5:25:bf:3d:18:cf: 18:ae:c8:d7:cb:68:f3:d0:b0:98:2b:d6:d4:92:93:ba:8e:ed: 2f:90:ec:46:2c:ce:5f:bb:86:7b:51:21:3d:85:50:16:0a:f2: 1f:0f:17:bd:96:c3:c1:e0:44:2a:70:14:31:0c:ac:d2:fa:2f: fa:b2:2e:b4:7c:06:06:ea:03:4c:60:0a:d3:4d:6e:ce:07:30: d2:79:77:1c:a1:26:7a:3a:48:fe:59:d5:93:8e:4a:c6:5d:d1: 0b:4e:e7:3b:84:9f:19:91:2d:8f:11:01:15:9c:0c:54:13:f1: bb:27:2b:58:c2:09:d0:53:74:30:bd:f2:8a:d8:f9:24:d2:1e: fa:a2:08:35:5d:dd:ab:8a:0b:63:df:4a:91:37:3a:eb:da:b9: 8f:dd:57:7c:83:d6:76:01:b1:eb:d7:73:39:5a:0d:60:f8:0f: a1:c1:a0:81:d9:29:37:3d:d9:b4:4b:d1:1f:0e:a8:1d:80:ad: 41:0a:e6:11:aa:12:4a:52:db:cf:bc:e7:ed:0d:8e:54:78:c2: 16:6c:3b:00:48:0e:4d:c9:67:c5:eb:fd:54:59:04:71:7c:a6: 6f:a5:6b:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjYwNTExMDcxMDU1WhcNMjYwNTE4MDcxMDU1WjAYMRYwFAYD VQQDEw02YTAxODBmZi1jN2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66UxR2+/I8Y0uxT9arfDYQ/zde92iL8LJXl2XKb7fIxY/x+EZ1xFiWG7viTe K2HoEidWUkm3metYweIZCr3IxZ39lfLIg0RGFl/M24QiOWYqiQD1fsI/rDPbyjHU lKOy6tb4d9iJTh2nSErl+u4Mt1DOgsJ8DqJfMct6+lRwZgj96nEhtuMEBPRXRu6M jhupyHhWGV/RnL4/jEGlO4mdyBa8dTEuZYPihTrqVgJMinXSuDwaaDWLGLiB89+f hqzDLWbkAFfd7t9aQe1YF5LuyUIMdY77C5qx+qbdWVzkvxKO/3TAF5TbRMD2vo0E kEA/m215vgnvqg3gx/XaaiX2+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFARw37Kd Z+Mx6qmHq0N2kL3yDbH2MB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjNGRS8yQTU2ODc4MjM2QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5Z WERpT200SERrR2E5T050WkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbOZKlidhtYjgN+ZZMdQT7xXLjICNBdaJQBkNm+t45SW/PRjPGK7I18to89Cw mCvW1JKTuo7tL5DsRizOX7uGe1EhPYVQFgryHw8XvZbDweBEKnAUMQys0vov+rIu tHwGBuoDTGAK001uzgcw0nl3HKEmejpI/lnVk45Kxl3RC07nO4SfGZEtjxEBFZwM VBPxuycrWMIJ0FN0ML3yitj5JNIe+qIINV3dq4oLY99KkTc669q5j91XfIPWdgGx 69dzOVoNYPgPocGggdkpNz3ZtEvRHw6oHYCtQQrmEaoSSlLbz7zn7Q2OVHjCFmw7 AEgOTclnxev9VFkEcXymb6VrIA== -----END CERTIFICATE-----Generated at Wed May 13 08:40:30 2026 by rpki-client