$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: nU8qcVXSJgCNAtI7o+fzFQhNm0eHFoi3dwsrrjq6jmE= Subject key identifier: 4A:4E:04:7E:AE:88:AD:B0:49:CC:E7:7D:F5:DD:92:32:A9:BF:48:30 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 0969 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 095E Signing time: Tue 12 May 2026 20:10:42 +0000 Manifest this update: Tue 12 May 2026 20:10:41 +0000 Manifest next update: Tue 19 May 2026 20:10:41 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: 9TkjI2DkhiS1ttOGwC5NOmWsfH43n/21ioBL/zBXSSc=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: K8ifKpf1OxSentj2ShFOfGXT/u0aCJtaC2BhvsjDEzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2409 (0x969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: May 12 20:10:41 2026 GMT Not After : May 19 20:10:41 2026 GMT Subject: CN=6a038941-db23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:2c:98:c1:1b:b3:6d:75:ff:df:ef:17:6e: ff:70:64:3b:8e:17:f8:d3:23:5f:cc:a4:66:17:64: 97:72:4e:61:6e:2c:5d:48:53:88:3a:4d:6a:f4:5e: 88:c3:e7:bb:ac:2d:db:f6:61:7f:fe:f3:bb:d0:d9: ee:76:05:bf:a8:b5:33:4c:c3:3d:88:bd:48:66:47: 79:e1:28:64:b3:05:1c:f1:03:5a:e5:35:cd:51:e3: b3:5c:f2:85:38:68:7d:8d:4a:8a:94:9d:c8:63:fc: 81:c1:f0:83:77:0c:a4:72:b7:f2:d6:a3:93:b0:92: 87:45:7d:82:29:ce:42:50:80:9b:90:78:79:b3:9e: 10:40:a8:84:8d:88:90:01:69:a2:55:83:0a:7e:89: a9:02:f3:c2:10:dc:65:dc:fa:97:1a:e4:10:78:bf: a9:d7:90:ea:82:ac:7e:80:bd:51:f3:b3:9f:23:89: 75:f6:ee:1c:b7:01:a7:dc:e2:f7:86:ca:9d:34:14: f0:61:f0:29:f6:78:07:ce:4e:04:db:c8:35:03:a7: b8:ae:b1:d6:6b:5e:9b:0c:b6:3f:98:5c:c7:16:a9: dc:29:de:4c:ca:a6:bf:0f:be:fc:8c:c4:7f:38:c4: 85:2f:ce:4c:37:d3:db:6e:0f:da:cb:6a:e5:6e:e9: 77:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4E:04:7E:AE:88:AD:B0:49:CC:E7:7D:F5:DD:92:32:A9:BF:48:30 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:de:72:26:cd:e9:74:a3:23:70:7e:60:d0:97:50:57:ff:3b: 19:08:57:c1:8b:3e:2e:36:f2:0c:13:60:54:4e:7f:f3:64:44: 5a:52:12:6c:5d:a6:0c:d0:21:76:9b:4c:0f:8c:06:1d:a3:1e: 1c:59:60:2f:29:5d:4f:aa:39:53:2d:35:0c:f7:3b:bd:0c:08: bf:e5:51:48:ec:02:0e:5e:04:e5:48:a9:99:86:ac:2e:32:f8: 6d:91:d4:2c:c7:88:39:0e:6e:9b:66:19:f9:55:48:77:3b:4f: db:36:8a:04:f2:e2:c0:11:20:a4:28:39:71:64:95:ff:3a:21: ae:08:74:04:a7:99:d8:9d:9c:ca:10:2f:c1:5e:a5:9c:c7:0e: 94:d8:3b:9c:c5:58:8e:60:1f:c9:5d:cd:ac:e0:42:b5:96:cf: ac:78:7e:2d:78:25:fc:0e:6b:1e:9f:df:43:16:90:b7:96:e8: 23:98:76:02:e1:b5:37:19:b8:86:a8:f8:1f:a0:a1:1d:6a:fc: 96:98:d0:17:86:a6:6e:c8:b2:52:9d:a7:bd:44:83:05:32:eb: 03:a4:9e:8c:c2:ba:99:00:41:25:d1:68:c0:a9:94:79:f4:84: e2:69:47:38:6b:ac:63:b6:ea:ac:ee:45:3c:90:f6:a0:b7:23: 6e:b6:4f:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjYwNTEyMjAxMDQxWhcNMjYwNTE5MjAxMDQxWjAYMRYwFAYD VQQDEw02YTAzODk0MS1kYjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTQsmMEbs211/9/vF27/cGQ7jhf40yNfzKRmF2SXck5hbixdSFOIOk1q9F6I w+e7rC3b9mF//vO70NnudgW/qLUzTMM9iL1IZkd54ShkswUc8QNa5TXNUeOzXPKF OGh9jUqKlJ3IY/yBwfCDdwykcrfy1qOTsJKHRX2CKc5CUICbkHh5s54QQKiEjYiQ AWmiVYMKfompAvPCENxl3PqXGuQQeL+p15Dqgqx+gL1R87OfI4l19u4ctwGn3OL3 hsqdNBTwYfAp9ngHzk4E28g1A6e4rrHWa16bDLY/mFzHFqncKd5Myqa/D778jMR/ OMSFL85MN9Pbbg/ay2rlbul37QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEpOBH6u iK2wScznffXdkjKpv0gwMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbt5yJs3pdKMjcH5g0JdQV/87GQhXwYs+LjbyDBNgVE5/82REWlISbF2mDNAh dptMD4wGHaMeHFlgLyldT6o5Uy01DPc7vQwIv+VRSOwCDl4E5UipmYasLjL4bZHU LMeIOQ5um2YZ+VVIdztP2zaKBPLiwBEgpCg5cWSV/zohrgh0BKeZ2J2cyhAvwV6l nMcOlNg7nMVYjmAfyV3NrOBCtZbPrHh+LXgl/A5rHp/fQxaQt5boI5h2AuG1Nxm4 hqj4H6ChHWr8lpjQF4ambsiyUp2nvUSDBTLrA6SejMK6mQBBJdFowKmUefSE4mlH OGusY7bqrO5FPJD2oLcjbrZPaw== -----END CERTIFICATE-----Generated at Wed May 13 14:56:26 2026 by rpki-client