$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft File: s2uXFySjur2JC3VFmJM3IPly_q8.mft (raw, json) Hash identifier: HwnKrwEmGHAyCKw8DlBE3QGZSspBwdYioduKNeuSRsM= Subject key identifier: 46:06:02:53:85:4D:39:75:6A:8E:77:86:88:2F:36:F6:2D:07:96:6C Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0C29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft Manifest number: 0BBC Signing time: Tue 12 May 2026 19:14:16 +0000 Manifest this update: Tue 12 May 2026 19:14:16 +0000 Manifest next update: Tue 19 May 2026 19:14:16 +0000 Files and hashes: 1: s2uXFySjur2JC3VFmJM3IPly_q8.crl (hash: jW+jajihdty74a9x8VwnQIqNwj4X7ccNHl/nX5zuRT0=) 2: 966FD4648D2411EF9914EF63C4F9AE02.roa (hash: w7eYnxJy/ErX8uBHC7lb97b71ahe13DgTz190X2OvQU=) 3: B66F0C58817111EFB121970CC4F9AE02.roa (hash: vY3JgYrHf50LIMon2cQ4xi3ayVXFANYUAF1HUUmukAc=) 4: D992FDD49B4811EFA17EB17FC4F9AE02.roa (hash: FIe/ZxZ/czs73Iv9mGeR+sUl8NFbSaTBZOQUejuclqo=) 5: F1EB46D2717F11EEB3FA0A5EC4F9AE02.roa (hash: a5ETmaqpNy6qeOL+PmbuFg5Hvj7coJZt0e2vYVREM4A=) 6: C1ACB1E819EF11EC84DBF462C4F9AE02.roa (hash: /IKxncGwcVAUWd16lVeAqQuGXRqTtvt9Ll/KgYku0+M=) 7: 466891560ADA11ECBFAECB29C4F9AE02.roa (hash: uv7rdnmyI+gc1dDgRNGKvt12no6t8v6+Sh+LAKmYBS0=) 8: A7470BFC33A711EBA4313B36C4F9AE02.roa (hash: ZCVyWhNkXCNm36AW8HvL8obBGE1kXtO5k/l1MbGslew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3113 (0xc29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558, serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: May 12 19:14:16 2026 GMT Not After : May 19 19:14:16 2026 GMT Subject: CN=6a037c08-4ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:10:20:27:44:db:10:3c:2a:81:a1:3c:b8:c6: 96:cc:eb:bb:eb:8a:23:eb:43:2b:ca:70:06:7d:cb: 92:b1:91:94:46:58:ad:32:01:9e:75:f9:94:0a:9b: 2e:c2:81:e7:15:a8:bd:52:89:ef:80:19:5b:ab:80: 5c:85:2e:cb:67:5d:de:6c:85:bf:ab:a3:bb:13:93: d5:f3:71:b4:d8:72:27:57:18:54:8d:5a:d2:50:72: 14:c6:7e:45:85:4c:af:0c:48:00:7b:d5:4d:77:3d: 39:1e:91:70:e3:ee:07:7c:08:b4:28:68:e3:88:d8: e4:af:25:56:6c:30:7b:dc:4b:2f:22:08:f8:fb:41: 8f:0f:4d:4c:e0:48:dd:bd:58:6f:f5:98:de:ab:83: 00:b9:79:6b:fc:0d:17:45:ff:51:bb:df:16:35:73: 3e:eb:05:6e:06:9b:32:b7:af:4e:f5:a9:c5:63:30: 68:8a:88:b3:34:89:66:d7:98:2a:0c:73:1f:f8:ae: 54:f2:49:d3:0c:59:62:8b:cc:16:1a:29:a3:f8:0a: f1:63:ba:c3:1a:48:b8:38:ea:9d:11:36:35:61:b7: a8:66:74:cd:4e:38:f0:f4:ec:3a:a0:40:3f:4f:d4: ec:43:3e:8b:9d:ae:5e:9c:93:2b:42:28:78:ac:3a: 73:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:06:02:53:85:4D:39:75:6A:8E:77:86:88:2F:36:F6:2D:07:96:6C X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:8e:71:7f:29:10:b7:8f:d3:32:aa:32:d9:ce:fb:3c:cf:66: 96:14:b4:ef:d2:11:06:9c:92:9c:3e:1c:30:17:ca:3a:59:61: 2d:55:b7:ec:d7:64:d8:05:5b:39:23:5a:a7:b7:4d:12:d7:57: ea:4a:ba:34:23:7a:70:15:8d:be:a7:33:11:81:a3:03:f5:63: 42:a2:ef:39:e6:36:f8:aa:b1:41:5c:45:4f:e3:4d:53:87:21: 61:6f:d9:5d:5a:b2:f9:03:2b:fe:3a:53:29:78:41:c5:62:b7: 9b:8f:c5:6d:77:79:ed:41:0c:22:5d:df:23:ac:1c:7c:57:5c: 0d:af:5c:e9:87:ac:90:db:a6:fa:cd:e4:44:d8:74:01:b6:13: 78:f1:74:d0:d7:ed:a1:33:ea:78:cb:b9:21:39:65:96:14:c5: 89:17:10:74:74:7e:6e:68:f3:32:95:5c:b7:dc:e9:5e:2f:f9: 03:93:94:5f:76:0d:cb:e6:fd:71:2b:e2:78:55:63:74:28:83: 71:03:a6:e8:cf:30:47:6c:e6:cb:77:16:f2:db:b2:33:15:4b: a3:cd:b8:20:6d:68:f0:96:eb:c4:0d:23:f8:18:e1:6d:3a:d4: 8a:33:25:51:93:22:dc:07:04:69:ba:28:a2:3c:62:7c:73:58: 40:f4:a5:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjYwNTEyMTkxNDE2WhcNMjYwNTE5MTkxNDE2WjAYMRYwFAYD VQQDEw02YTAzN2MwOC00YWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RAgJ0TbEDwqgaE8uMaWzOu764oj60MrynAGfcuSsZGURlitMgGedfmUCpsu woHnFai9UonvgBlbq4BchS7LZ13ebIW/q6O7E5PV83G02HInVxhUjVrSUHIUxn5F hUyvDEgAe9VNdz05HpFw4+4HfAi0KGjjiNjkryVWbDB73EsvIgj4+0GPD01M4Ejd vVhv9Zjeq4MAuXlr/A0XRf9Ru98WNXM+6wVuBpsyt69O9anFYzBoioizNIlm15gq DHMf+K5U8knTDFlii8wWGimj+ArxY7rDGki4OOqdETY1YbeoZnTNTjjw9Ow6oEA/ T9TsQz6Lna5enJMrQih4rDpz6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEYGAlOF TTl1ao53hogvNvYtB5ZsMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTU1OC8zREYxNEYwODUzOTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVy MkpDM1ZGbUpNM0lQbHlfcTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzI5xfykQt4/TMqoy2c77PM9mlhS079IRBpySnD4cMBfKOllhLVW37Ndk2AVb OSNap7dNEtdX6kq6NCN6cBWNvqczEYGjA/VjQqLvOeY2+KqxQVxFT+NNU4chYW/Z XVqy+QMr/jpTKXhBxWK3m4/FbXd57UEMIl3fI6wcfFdcDa9c6YeskNum+s3kRNh0 AbYTePF00NftoTPqeMu5ITlllhTFiRcQdHR+bmjzMpVct9zpXi/5A5OUX3YNy+b9 cSvieFVjdCiDcQOm6M8wR2zmy3cW8tuyMxVLo824IG1o8JbrxA0j+BjhbTrUijMl UZMi3AcEabooojxifHNYQPSl2w== -----END CERTIFICATE-----Generated at Wed May 13 00:58:05 2026 by rpki-client