$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: gdgPWnDI3rWy5/La9qhHNilGKDWxjxI28zWybMrDs20= Subject key identifier: A0:56:72:14:EB:65:FF:0A:48:A7:9F:A9:4A:EC:66:BD:39:50:13:51 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0874 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0868 Signing time: Tue 12 May 2026 20:48:22 +0000 Manifest this update: Tue 12 May 2026 20:48:21 +0000 Manifest next update: Tue 19 May 2026 20:48:21 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: rWQo/6HNvkVSFmmTp1TzSulo/MqypaNSIdn0bN1Fh0g=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: pEoVeSKvZWCj0YeLOAFbn4+nyrnm4dpfDhs+6j8mLhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: May 12 20:48:21 2026 GMT Not After : May 19 20:48:21 2026 GMT Subject: CN=6a039215-78b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:2c:83:69:25:5a:99:d7:2e:bd:1a:75:2e:3b: 25:df:5f:22:d2:29:c3:45:02:f6:f4:7d:11:2f:12: f8:8a:12:8f:aa:e6:e6:f3:d1:6a:82:b7:0e:dd:e7: ad:cc:f7:47:16:6b:19:54:f0:8e:8a:54:61:a2:67: 33:a6:e8:27:47:ac:7f:5b:a0:f8:c5:3c:b9:37:14: 7a:84:d4:3e:fd:c0:1d:85:bd:85:b7:05:e1:bc:00: 6b:ae:84:d2:65:8d:26:0f:d8:55:d8:a0:40:39:75: ae:16:55:2c:66:9f:3c:3b:b5:53:95:af:b6:59:bc: 12:8a:4b:ef:ac:fd:3f:6c:74:90:68:83:ff:f6:34: 86:d3:90:81:ee:8e:13:0c:bc:d1:fb:fa:9f:95:6d: 12:bd:ae:fa:9b:3d:f0:41:9b:7a:79:86:08:c1:b2: 9e:6e:22:74:f8:89:61:54:71:e4:e2:87:41:68:cc: 56:8e:6b:af:b7:03:a0:03:1d:c6:b3:65:21:92:a8: fa:70:23:ac:b1:17:b6:2f:bd:a6:7a:42:44:fb:8e: f3:1a:d5:1b:a4:aa:53:92:ae:9e:a3:9d:b0:94:71: d5:6d:b6:63:9b:5f:83:23:c6:5b:f2:5b:fc:51:ed: 59:bb:7f:d8:89:d0:08:8f:34:d8:ad:fd:30:e8:bf: ca:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:56:72:14:EB:65:FF:0A:48:A7:9F:A9:4A:EC:66:BD:39:50:13:51 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e5:0a:4c:97:ac:e7:b3:70:80:0b:d4:44:f7:c4:4e:fc:71: b1:7b:a1:dd:75:65:33:c7:64:f4:1e:20:c3:6e:ce:86:e8:8f: 42:b1:bb:cc:3c:c2:d2:c3:0b:32:62:0e:e3:97:11:5e:d8:12: 8e:c6:9a:16:20:35:aa:28:e1:77:98:53:83:a0:eb:0e:0a:15: 03:20:78:9e:c4:cb:5e:d3:59:ec:f0:62:43:b3:9b:a6:f5:a5: 7e:9b:eb:e7:8f:f5:4b:d2:63:4f:0f:17:82:e5:90:9e:58:d6: cd:25:95:34:81:1d:25:6a:aa:87:8f:de:e7:28:bf:f6:f5:81: 02:92:8d:3e:49:07:8b:65:18:87:b1:0a:93:cd:b2:62:91:25: e1:91:24:8a:cf:cc:cf:8c:fc:b9:37:df:0d:ba:43:e7:f9:c5: 66:94:2f:99:6b:42:ff:7a:e4:61:f4:4e:63:09:53:7b:14:0e: 19:c5:69:cd:bf:b0:b9:b1:1b:31:f7:81:46:74:38:c2:ab:52: a9:fd:dd:f2:5e:01:bb:ee:6e:92:9e:88:07:9b:02:c3:4a:fc: f0:cb:91:cf:08:44:7a:99:51:30:b7:97:d8:45:b3:55:a2:22: 38:d0:d3:10:28:f4:94:cd:84:9d:4b:b9:b1:40:60:17:e6:d8: 61:40:03:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjYwNTEyMjA0ODIxWhcNMjYwNTE5MjA0ODIxWjAYMRYwFAYD VQQDEw02YTAzOTIxNS03OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAliyDaSVamdcuvRp1Ljsl318i0inDRQL29H0RLxL4ihKPqubm89FqgrcO3eet zPdHFmsZVPCOilRhomczpugnR6x/W6D4xTy5NxR6hNQ+/cAdhb2FtwXhvABrroTS ZY0mD9hV2KBAOXWuFlUsZp88O7VTla+2WbwSikvvrP0/bHSQaIP/9jSG05CB7o4T DLzR+/qflW0Sva76mz3wQZt6eYYIwbKebiJ0+IlhVHHk4odBaMxWjmuvtwOgAx3G s2Uhkqj6cCOssRe2L72mekJE+47zGtUbpKpTkq6eo52wlHHVbbZjm1+DI8Zb8lv8 Ue1Zu3/YidAIjzTYrf0w6L/KVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKBWchTr Zf8KSKefqUrsZr05UBNRMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASeUKTJes57NwgAvURPfETvxxsXuh3XVlM8dk9B4gw27OhuiPQrG7zDzC0sML MmIO45cRXtgSjsaaFiA1qijhd5hTg6DrDgoVAyB4nsTLXtNZ7PBiQ7ObpvWlfpvr 54/1S9JjTw8XguWQnljWzSWVNIEdJWqqh4/e5yi/9vWBApKNPkkHi2UYh7EKk82y YpEl4ZEkis/Mz4z8uTffDbpD5/nFZpQvmWtC/3rkYfROYwlTexQOGcVpzb+wubEb MfeBRnQ4wqtSqf3d8l4Bu+5ukp6IB5sCw0r88MuRzwhEeplRMLeX2EWzVaIiONDT ECj0lM2EnUu5sUBgF+bYYUADvA== -----END CERTIFICATE-----Generated at Tue May 12 23:23:42 2026 by rpki-client