$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: SM09zjl1w9Yuqeaa1R+XlfEgJbxLjt38fFYDicuSlKg= Subject key identifier: 49:FF:C7:AB:95:42:AD:E1:A7:D1:59:76:E0:0D:36:A8:04:0A:AE:B1 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0F50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0F30 Signing time: Tue 12 May 2026 17:36:45 +0000 Manifest this update: Tue 12 May 2026 17:36:44 +0000 Manifest next update: Tue 19 May 2026 17:36:44 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: H2l49m4WcP6q8hwfcAQY8WuNw+xP3NkPAnFhyUlCGW4=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: tQrQ6Cd+gUF5DxrjyCWytmMItl98qXXXMjLohZ6qa3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3920 (0xf50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: May 12 17:36:44 2026 GMT Not After : May 19 17:36:44 2026 GMT Subject: CN=6a03652d-013d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2a:4f:cf:44:a7:f9:59:b4:94:97:0e:c6:74: bc:50:ca:3e:e0:4b:79:e5:ee:81:f4:de:05:88:1a: 6e:6f:ab:0b:2e:bb:de:a0:ce:cb:74:48:a7:3e:65: c4:48:32:dc:a9:86:75:da:8f:92:a4:43:6f:b5:02: f3:e4:e6:1d:0a:94:fa:a1:12:96:f9:65:96:b9:03: cc:20:c8:25:b9:c3:52:27:05:de:14:93:e5:cb:34: 20:cf:ad:d7:9b:d6:6e:ae:59:a1:00:1e:7f:9e:08: 88:3e:a2:59:bd:92:5f:72:69:2a:fe:ef:69:50:fd: 99:23:9d:7c:ae:8b:ad:70:e4:e2:89:72:5e:fe:aa: c4:2f:9d:5f:17:5f:6d:32:bf:8c:3a:d0:76:16:40: cd:34:2d:d9:26:c6:c9:35:c6:17:f0:c5:0d:a3:9a: 0b:a3:39:56:9c:3f:b9:27:be:e9:df:74:cc:aa:9e: df:fe:53:4a:37:94:57:1c:4a:86:4c:8c:f9:6c:23: 11:94:68:24:41:35:66:d5:e2:bc:71:83:45:f4:fa: ad:65:c2:a5:d2:2a:95:65:6d:03:43:8b:31:f0:88: 23:b4:47:7c:6f:20:5d:35:97:20:1f:bc:14:83:9b: 66:33:65:f2:c8:91:8f:f5:4c:90:07:fc:05:3a:e2: 24:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FF:C7:AB:95:42:AD:E1:A7:D1:59:76:E0:0D:36:A8:04:0A:AE:B1 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:1a:5e:ee:09:ed:c1:6b:2b:d3:b8:e9:16:a9:76:a8:ab:bb: 97:d9:eb:b6:62:8a:81:20:bf:55:29:fb:1e:1a:71:49:6f:a8: 0d:11:eb:78:f5:cc:d5:dc:3d:d4:e4:75:fd:57:60:58:ae:f6: a7:fa:77:d8:d7:a0:45:43:fd:37:e2:60:2e:0c:15:60:70:a2: c6:48:3f:a9:d0:97:ca:38:0b:9a:1c:fa:db:b1:01:08:90:bc: b2:35:8e:b2:a7:1a:8c:a1:8c:30:5e:69:50:93:8f:82:a8:b9: 3b:3d:27:4b:a1:ec:f8:be:3c:a1:6b:70:dd:2d:51:ef:aa:f3: cd:88:52:11:15:b6:83:79:c8:f5:b2:8a:1f:e2:32:61:22:31: 25:1f:44:49:b2:06:e3:8f:db:ea:04:c4:1b:a5:a7:a3:08:a9: 35:fa:ba:b3:9e:8c:ab:9d:ec:62:53:6b:28:58:94:1c:08:28: b5:bd:35:cd:c2:84:2e:32:2b:d3:48:cc:43:51:b1:da:10:1d: 36:4d:d4:88:b5:32:98:c0:81:74:d6:7b:3d:6b:be:fd:f1:39: eb:97:e2:f6:76:44:67:be:3e:af:66:83:dd:e9:32:40:3c:fe: 8b:fa:0c:17:f3:aa:4f:30:c5:69:58:6c:f5:4a:82:c6:10:e6: 88:0f:84:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjYwNTEyMTczNjQ0WhcNMjYwNTE5MTczNjQ0WjAYMRYwFAYD VQQDEw02YTAzNjUyZC0wMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCpPz0Sn+Vm0lJcOxnS8UMo+4Et55e6B9N4FiBpub6sLLrveoM7LdEinPmXE SDLcqYZ12o+SpENvtQLz5OYdCpT6oRKW+WWWuQPMIMglucNSJwXeFJPlyzQgz63X m9ZurlmhAB5/ngiIPqJZvZJfcmkq/u9pUP2ZI518routcOTiiXJe/qrEL51fF19t Mr+MOtB2FkDNNC3ZJsbJNcYX8MUNo5oLozlWnD+5J77p33TMqp7f/lNKN5RXHEqG TIz5bCMRlGgkQTVm1eK8cYNF9PqtZcKl0iqVZW0DQ4sx8IgjtEd8byBdNZcgH7wU g5tmM2XyyJGP9UyQB/wFOuIkiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEn/x6uV Qq3hp9FZduANNqgECq6xMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACRpe7gntwWsr07jpFql2qKu7l9nrtmKKgSC/VSn7HhpxSW+oDRHrePXM1dw9 1OR1/VdgWK72p/p32NegRUP9N+JgLgwVYHCixkg/qdCXyjgLmhz627EBCJC8sjWO sqcajKGMMF5pUJOPgqi5Oz0nS6Hs+L48oWtw3S1R76rzzYhSERW2g3nI9bKKH+Iy YSIxJR9ESbIG44/b6gTEG6WnowipNfq6s56Mq53sYlNrKFiUHAgotb01zcKELjIr 00jMQ1Gx2hAdNk3UiLUymMCBdNZ7PWu+/fE565fi9nZEZ74+r2aD3ekyQDz+i/oM F/OqTzDFaVhs9UqCxhDmiA+EeQ== -----END CERTIFICATE-----Generated at Wed May 13 05:05:16 2026 by rpki-client