$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: GlFTG/Vp+nkyBcVinTa90ZK/qDh+a8db655jpVHlQoE= Subject key identifier: ED:6E:D8:FA:03:07:A5:B1:60:8C:81:27:5D:E1:60:BB:9E:5E:48:C8 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0CAE Signing time: Tue 12 May 2026 18:36:33 +0000 Manifest this update: Tue 12 May 2026 18:36:32 +0000 Manifest next update: Tue 19 May 2026 18:36:32 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: F1jkLBkXlya08LLT3uXUoSUPMwy1wfY8CR7tdshxU+A=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: rh5kanvG5QXPAMOrNiNLJLVHnbyU12f7aHXUzCF2hMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3273 (0xcc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: May 12 18:36:32 2026 GMT Not After : May 19 18:36:32 2026 GMT Subject: CN=6a037330-393f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4a:a6:e6:c0:1f:5f:bf:31:19:b3:7c:a9:49: 13:c9:33:8e:41:e1:b6:21:0c:9b:3a:e8:a3:ae:57: 8f:67:31:97:04:1b:b8:e4:09:53:f6:65:95:c0:2a: c7:93:91:85:48:4c:11:99:78:9c:c9:91:ff:ca:61: 9b:18:08:83:a4:51:54:50:f0:98:59:cf:c3:36:9b: 80:c6:5b:61:b9:8d:25:01:41:a4:f0:ef:3d:07:18: e8:21:c2:15:86:43:b4:c2:1d:87:4b:93:26:9f:14: bb:f0:a7:e7:94:ec:26:e5:73:a9:9b:03:00:1b:ae: 2e:8e:10:d6:b2:b4:3f:f5:e8:90:63:7b:2e:55:53: 10:a6:ff:7e:0b:d6:55:56:95:0b:a3:b6:3e:88:0d: 7d:0f:ee:d1:2c:10:37:6f:87:9e:e8:be:0b:93:2b: 6c:d2:53:ea:fe:5e:23:50:b2:a3:5d:44:f4:b3:99: 92:cf:f1:1e:b6:78:90:a2:36:d7:fc:57:cb:1b:b0: a9:9a:bb:c0:59:ba:19:cd:b0:a3:27:4f:37:e9:08: 9f:a7:8d:ed:fa:25:f4:62:72:63:fa:22:42:a4:f0: ad:c1:55:44:0a:73:0c:b9:4b:ba:9a:1c:7e:52:35: cf:f6:9f:26:cd:38:2b:4f:c5:e8:04:55:ff:80:b9: fb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6E:D8:FA:03:07:A5:B1:60:8C:81:27:5D:E1:60:BB:9E:5E:48:C8 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b7:f4:35:9b:ae:9b:5f:d1:19:ff:77:11:81:42:4a:4c:45: b0:44:f7:42:37:05:2d:7e:9f:6b:8b:c3:6b:4b:01:f4:9a:8c: 1a:08:2a:3e:8b:3c:10:73:a6:af:b9:71:37:8e:03:a8:d6:25: 2c:36:11:a7:8a:8e:b4:02:69:56:09:f9:50:cc:f8:2a:38:52: a1:c9:e5:19:86:49:05:dc:21:32:2c:05:8c:5c:3a:84:c8:dc: b7:e1:7f:9c:9e:9c:14:42:60:9f:6e:a1:9e:81:5e:bc:c4:3d: 03:40:a9:8b:32:02:1c:ca:aa:a4:99:9e:7d:b5:e2:9f:47:5b: 90:5b:77:81:4c:a9:c1:43:cb:4d:67:35:50:3f:cb:f4:71:11: c3:6f:53:45:d1:43:94:08:01:b3:af:4b:9e:4d:53:03:64:00: 76:8c:60:e0:e2:da:61:2c:40:e3:77:ac:61:e8:21:2d:6f:d6: cc:12:0c:96:e1:c2:a8:14:41:fc:0e:e2:3f:a1:b3:30:b7:29: 48:fa:f2:df:4f:85:c4:db:31:af:f7:84:55:29:e0:7d:1c:5e: 32:a4:6d:d8:57:62:f3:f7:5a:27:04:01:73:d1:12:ce:72:53: 78:63:e6:a1:1a:60:22:7d:17:df:1f:79:39:c8:2d:8b:45:87: c1:cc:b2:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjYwNTEyMTgzNjMyWhcNMjYwNTE5MTgzNjMyWjAYMRYwFAYD VQQDEw02YTAzNzMzMC0zOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Uqm5sAfX78xGbN8qUkTyTOOQeG2IQybOuijrlePZzGXBBu45AlT9mWVwCrH k5GFSEwRmXicyZH/ymGbGAiDpFFUUPCYWc/DNpuAxlthuY0lAUGk8O89BxjoIcIV hkO0wh2HS5MmnxS78KfnlOwm5XOpmwMAG64ujhDWsrQ/9eiQY3suVVMQpv9+C9ZV VpULo7Y+iA19D+7RLBA3b4ee6L4Lkyts0lPq/l4jULKjXUT0s5mSz/EetniQojbX /FfLG7CpmrvAWboZzbCjJ0836Qifp43t+iX0YnJj+iJCpPCtwVVECnMMuUu6mhx+ UjXP9p8mzTgrT8XoBFX/gLn7cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO1u2PoD B6WxYIyBJ13hYLueXkjIMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKrf0NZuum1/RGf93EYFCSkxFsET3QjcFLX6fa4vDa0sB9JqMGggqPos8EHOm r7lxN44DqNYlLDYRp4qOtAJpVgn5UMz4KjhSocnlGYZJBdwhMiwFjFw6hMjct+F/ nJ6cFEJgn26hnoFevMQ9A0CpizICHMqqpJmefbXin0dbkFt3gUypwUPLTWc1UD/L 9HERw29TRdFDlAgBs69Lnk1TA2QAdoxg4OLaYSxA43esYeghLW/WzBIMluHCqBRB /A7iP6GzMLcpSPry30+FxNsxr/eEVSngfRxeMqRt2Fdi8/daJwQBc9ESznJTeGPm oRpgIn0X3x95Ocgti0WHwcyy8g== -----END CERTIFICATE-----Generated at Wed May 13 04:55:57 2026 by rpki-client