$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: hd+VyTFqOPQ+AKG99CII/ViCwMGWkoH04V3g/eF54Mw= Subject key identifier: 91:3B:89:AA:5C:CC:B5:DA:46:86:A0:0F:20:36:2E:74:D5:22:80:8A Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 016F Signing time: Tue 12 May 2026 15:43:13 +0000 Manifest this update: Tue 12 May 2026 15:43:12 +0000 Manifest next update: Tue 19 May 2026 15:43:12 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: 6gnraZWqUyYFR3ff1ydIzXlQ3rmS2VmxzKBsBHenkNA=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: hOp5C3KdQglyoPlRpzdVUK1HCVo7MMXzvUe8s9/qr10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: May 12 15:43:12 2026 GMT Not After : May 19 15:43:12 2026 GMT Subject: CN=6a034a90-c65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:4e:45:98:d3:b5:54:41:36:a4:12:a4:fa: 6f:46:f6:20:df:93:71:f2:a3:ed:0f:9c:ff:42:50: af:7a:ad:f5:7e:2e:95:0e:17:73:10:a7:00:2e:c8: 78:1b:d6:06:d7:7e:db:a6:5c:4e:02:09:ea:c8:f5: 7e:be:af:d0:a6:e5:34:4f:66:5d:43:83:a6:da:3b: e9:0b:b2:89:a0:c5:62:81:0b:6d:f3:0a:4f:04:76: 87:43:95:87:bf:6d:1d:22:17:47:f7:38:bb:29:3e: af:37:c6:50:88:93:ed:7b:24:d2:4a:68:dd:eb:fc: f9:99:3d:36:6d:3f:3a:78:e5:bd:34:86:8a:f3:9b: 5d:85:aa:c3:83:ef:44:a9:f2:9f:45:cf:fe:87:f1: 21:d3:46:b9:a3:24:39:ab:0b:e8:81:bd:87:a9:68: 6c:33:2d:8f:aa:42:70:c6:de:c7:0d:a5:16:39:8d: 15:e0:83:15:dc:50:d3:0b:b4:45:fb:9f:71:4c:f1: 1e:48:a1:4c:1b:ae:7e:f6:e7:bd:65:fe:e4:39:11: 0e:01:86:d7:76:98:3e:14:5e:d0:3e:a7:90:27:9b: 1c:2e:df:d9:b1:5f:88:3a:6f:81:27:6e:f4:ff:27: 6e:6f:84:0e:50:ff:97:5a:b9:65:48:5c:3f:40:2f: d2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3B:89:AA:5C:CC:B5:DA:46:86:A0:0F:20:36:2E:74:D5:22:80:8A X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:60:fc:e9:85:72:b0:7e:d8:e0:5c:9c:48:25:f1:46:b2:8d: 3f:28:70:70:7f:3d:25:b7:9d:a4:b4:39:7a:6c:38:a1:ec:2e: 8a:3f:ab:f9:49:42:ce:21:19:aa:8e:3d:e0:3b:82:71:84:59: 96:a9:01:10:02:82:9f:6f:b3:b3:ad:af:de:6e:07:37:e5:ce: 25:5b:36:5a:be:58:19:97:80:99:2e:5f:ef:cd:f9:91:7d:b4: 57:d7:bb:56:1a:6e:69:2a:78:b4:9d:ad:6e:f5:c7:b0:a0:b5: db:44:73:ce:11:fa:a0:b4:59:1e:1c:00:7b:80:f4:5d:69:47: cc:31:0a:09:b1:66:42:1e:af:1a:59:11:2e:d3:12:5f:8e:37: 26:75:70:33:d2:f8:20:bd:57:67:16:19:c4:35:14:c5:a5:04: 2e:3a:c8:ec:f3:e7:00:2b:58:a3:81:4b:07:7e:6e:cb:bd:01: 07:49:22:52:f1:53:91:4d:47:f7:54:bb:bc:63:4c:31:43:27: 4a:05:85:7f:32:a0:88:5f:87:83:98:c8:3f:72:e0:b7:b7:19: af:a5:7e:93:43:d5:63:88:cd:87:4e:ea:30:fa:0a:10:45:f0: 06:af:cb:d5:9a:8d:fc:99:9e:40:cb:3e:9c:f0:21:dd:b0:78: 0c:c8:8a:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjYwNTEyMTU0MzEyWhcNMjYwNTE5MTU0MzEyWjAYMRYwFAYD VQQDEw02YTAzNGE5MC1jNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmhORZjTtVRBNqQSpPpvRvYg35Nx8qPtD5z/QlCveq31fi6VDhdzEKcALsh4 G9YG137bplxOAgnqyPV+vq/QpuU0T2ZdQ4Om2jvpC7KJoMVigQtt8wpPBHaHQ5WH v20dIhdH9zi7KT6vN8ZQiJPteyTSSmjd6/z5mT02bT86eOW9NIaK85tdharDg+9E qfKfRc/+h/Eh00a5oyQ5qwvogb2HqWhsMy2PqkJwxt7HDaUWOY0V4IMV3FDTC7RF +59xTPEeSKFMG65+9ue9Zf7kOREOAYbXdpg+FF7QPqeQJ5scLt/ZsV+IOm+BJ270 /ydub4QOUP+XWrllSFw/QC/SQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJE7iapc zLXaRoagDyA2LnTVIoCKMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMmD86YVysH7Y4FycSCXxRrKNPyhwcH89JbedpLQ5emw4oewuij+r+UlCziEZ qo494DuCcYRZlqkBEAKCn2+zs62v3m4HN+XOJVs2Wr5YGZeAmS5f7835kX20V9e7 VhpuaSp4tJ2tbvXHsKC120RzzhH6oLRZHhwAe4D0XWlHzDEKCbFmQh6vGlkRLtMS X443JnVwM9L4IL1XZxYZxDUUxaUELjrI7PPnACtYo4FLB35uy70BB0kiUvFTkU1H 91S7vGNMMUMnSgWFfzKgiF+Hg5jIP3Lgt7cZr6V+k0PVY4jNh07qMPoKEEXwBq/L 1ZqN/JmeQMs+nPAh3bB4DMiKIg== -----END CERTIFICATE-----Generated at Wed May 13 03:58:07 2026 by rpki-client