$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: UDcMWVbpEs14gI8iuTIzvODHk9pIDX3a/Yf6ckL6G/c= Subject key identifier: 5B:5A:DD:97:08:66:03:F2:7C:42:98:3F:E2:84:4A:8C:11:44:B6:DB Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0E16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0DE8 Signing time: Tue 12 May 2026 17:54:16 +0000 Manifest this update: Tue 12 May 2026 17:54:15 +0000 Manifest next update: Tue 19 May 2026 17:54:15 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: qdSgjagtrzkfjfj8pH/LE1vPAHT6DvKuOPkfylus1W4=) 2: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: USUvjmydXjtMJPzPbFEwUqIP+Ih5VSwPB5Ykt4WO3Ws=) 3: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: ky9Ng4i7BRaoHnDxU2AZbymyosvFrsEsC/8UhobSRso=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: onq3kLqhAx1MRzvzSd2yOhdRNFOh2mwuifP1Le+Ju0M=) 5: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: D9klEFQG/k6Phw9Yt86DVaS1LFIWfa7yVLK9O+stCIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3606 (0xe16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: May 12 17:54:15 2026 GMT Not After : May 19 17:54:15 2026 GMT Subject: CN=6a036947-ea73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:e7:97:7f:51:f0:76:aa:92:8c:72:45:fa:53: a6:b1:79:ce:60:74:b9:33:40:43:14:6f:e5:0e:d8: 60:4b:90:89:55:53:ab:5b:1c:9c:79:2b:66:d7:4e: 9e:dc:e9:29:74:dc:41:c6:3e:75:6a:ee:15:1b:26: 53:aa:4d:d3:df:ce:75:33:0e:a4:1a:14:62:90:11: 2c:51:4f:4c:98:8f:0e:0d:04:a2:b3:29:62:0e:72: 5a:da:bd:2b:12:aa:ae:09:31:22:93:fd:43:99:c1: ba:d2:d4:2d:39:ea:7f:69:69:1a:6e:29:13:6d:48: 76:09:e4:e1:aa:47:66:8d:c3:54:0b:d6:da:97:3c: 95:22:ca:fe:f1:e6:4f:01:cb:2d:f0:55:46:b8:b4: 57:64:73:2a:b6:e8:da:5f:db:2e:06:a8:a6:0d:77: 95:ef:31:7e:ea:75:8f:d1:2f:9d:d8:6d:3e:d6:86: 60:6e:c3:7b:87:ac:20:ef:65:d1:86:e5:7e:4f:ec: a8:05:d8:77:43:45:f1:70:18:9e:74:f9:31:e8:47: 3c:7b:dd:4d:27:79:2e:8b:1a:98:d3:d4:70:b8:51: 52:3a:b4:76:b0:8e:7d:f6:53:b4:21:a5:75:ad:91: ac:52:56:f6:70:aa:54:4d:4f:e7:6f:03:fc:bc:25: 35:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:5A:DD:97:08:66:03:F2:7C:42:98:3F:E2:84:4A:8C:11:44:B6:DB X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e6:41:20:07:c1:90:d8:57:47:53:a9:98:e3:73:7a:35:c1: d4:d8:07:79:f4:29:5a:b0:22:10:a3:7f:fa:c8:a4:3e:01:2b: 83:67:a4:7d:0a:ed:84:d0:b3:93:56:a9:50:0a:f6:3b:d9:18: 01:00:53:79:e6:70:2a:2c:e4:a1:7c:ab:b8:2a:fb:d5:86:14: 55:c6:82:45:23:7d:9b:4c:03:a9:d8:b6:05:16:16:7a:bd:c6: 2f:35:7c:c7:a5:7b:1d:26:5d:a6:88:4f:da:a8:9c:fb:a4:bf: cb:b1:23:4d:a4:40:5c:c9:d2:f3:db:dc:36:a6:ba:5d:ca:5e: 4c:f1:c9:fe:b4:76:c8:bf:48:f3:32:2b:ca:77:ae:9c:fc:7c: 4e:77:2a:52:2a:ae:af:e9:cd:cb:c1:f5:25:d1:2e:04:43:4e: 50:1e:d3:74:3f:bc:d5:2f:6d:a0:d1:58:22:ab:0b:3e:00:46: ce:e8:6c:fc:bf:96:0f:ac:72:fb:c2:34:c4:f9:60:83:21:d4: b6:70:59:9e:2b:f9:ab:c1:f1:17:4c:ff:a8:3c:9a:31:91:32: ab:6f:5f:a9:0d:59:df:10:0c:4e:3e:bf:40:88:5e:2e:91:e0: f1:0d:04:02:67:78:11:28:85:b0:c1:7e:3b:30:7d:85:bc:f8: 74:a2:7a:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjYwNTEyMTc1NDE1WhcNMjYwNTE5MTc1NDE1WjAYMRYwFAYD VQQDEw02YTAzNjk0Ny1lYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgeeXf1HwdqqSjHJF+lOmsXnOYHS5M0BDFG/lDthgS5CJVVOrWxyceStm106e 3OkpdNxBxj51au4VGyZTqk3T3851Mw6kGhRikBEsUU9MmI8ODQSisyliDnJa2r0r EqquCTEik/1DmcG60tQtOep/aWkabikTbUh2CeThqkdmjcNUC9balzyVIsr+8eZP Acst8FVGuLRXZHMqtujaX9suBqimDXeV7zF+6nWP0S+d2G0+1oZgbsN7h6wg72XR huV+T+yoBdh3Q0XxcBiedPkx6Ec8e91NJ3kuixqY09RwuFFSOrR2sI599lO0IaV1 rZGsUlb2cKpUTU/nbwP8vCU1UQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFta3ZcI ZgPyfEKYP+KESowRRLbbMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI+ZBIAfBkNhXR1OpmONzejXB1NgHefQpWrAiEKN/+sikPgErg2ekfQrthNCz k1apUAr2O9kYAQBTeeZwKizkoXyruCr71YYUVcaCRSN9m0wDqdi2BRYWer3GLzV8 x6V7HSZdpohP2qic+6S/y7EjTaRAXMnS89vcNqa6XcpeTPHJ/rR2yL9I8zIryneu nPx8TncqUiqur+nNy8H1JdEuBENOUB7TdD+81S9toNFYIqsLPgBGzuhs/L+WD6xy +8I0xPlggyHUtnBZniv5q8HxF0z/qDyaMZEyq29fqQ1Z3xAMTj6/QIheLpHg8Q0E Amd4ESiFsMF+OzB9hbz4dKJ6OQ== -----END CERTIFICATE-----Generated at Wed May 13 11:26:13 2026 by rpki-client