$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: 8ZP+/7JtcNWMpF+R9UA3iAaH7qBoviyI48bIWoHED+4= Subject key identifier: 91:06:BA:36:EF:25:43:3C:19:B8:8C:0B:9F:5E:7E:6F:34:F3:79:07 Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: B3 Signing time: Mon 11 May 2026 07:16:29 +0000 Manifest this update: Mon 11 May 2026 07:16:29 +0000 Manifest next update: Mon 18 May 2026 07:16:29 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: 8AMkVoRm2qvpIFhowOtAcgv7Lq2VPp+69PIDD/3oteU=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: QEFTIDA+TJrcDI4/EvRQfRv5uCDm3GXgS8OiMfubAA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: May 11 07:16:29 2026 GMT Not After : May 18 07:16:29 2026 GMT Subject: CN=6a01824d-f032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bd:eb:e4:2b:c3:bc:03:b8:42:3c:31:1c:e8: 72:fe:33:5f:2b:c2:fd:8b:ff:0d:2b:51:15:32:b1: 8b:84:65:e8:1b:24:19:31:65:ec:1c:77:dc:56:40: 29:64:3b:73:0a:46:43:1a:ee:a6:d7:5c:b5:c8:cc: f5:5d:4f:39:27:ff:f0:0d:4a:ec:13:da:5c:12:1c: dd:3f:a3:c1:23:7b:02:19:ac:0b:3d:08:9c:0c:87: 33:38:1c:68:61:f1:9d:56:1c:9a:a7:cb:ac:69:9c: a3:8e:72:ac:c4:0a:0c:21:8b:b8:16:f3:1f:2b:79: 16:e7:f3:57:b9:64:19:d0:7b:06:59:e8:be:93:60: f8:64:d1:f4:5a:89:b7:f7:a7:27:9d:2f:76:6c:65: cb:1b:00:15:f2:e5:0e:80:de:82:ce:b4:e7:cc:46: 2b:f0:f8:9e:39:05:2b:8e:60:9a:81:0b:17:48:1b: ed:78:35:a4:03:0e:95:d5:bc:23:f4:50:1b:90:e1: 02:34:4f:e2:5d:5b:9f:4a:0e:bc:43:55:d6:90:f1: cc:a8:0b:3d:d6:90:82:ac:60:df:cf:19:00:5b:ab: 73:aa:76:26:3a:c4:fe:86:30:ed:c6:77:ff:c2:b7: 6f:81:37:22:9d:14:05:4c:ab:f4:ef:73:03:fc:5b: c6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:06:BA:36:EF:25:43:3C:19:B8:8C:0B:9F:5E:7E:6F:34:F3:79:07 X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7b:29:78:09:d8:d9:b3:53:2b:d2:9f:21:68:3f:20:f3:ef: 25:27:ca:b8:eb:5d:5e:46:fb:ea:9a:23:c8:e0:c6:c5:1d:7f: c8:d8:d3:d4:67:b9:29:de:f7:81:a5:8b:1d:f1:fd:06:f4:78: f3:bf:3a:4e:94:58:ee:da:99:0f:44:a5:2a:b7:d5:29:30:b5: 31:67:cf:59:3e:7d:86:25:3d:0c:4d:c4:ba:d4:0e:c2:93:78: d3:3c:8a:78:53:86:c4:2e:1f:e1:89:51:f7:92:32:9e:9d:e2: 50:f9:b8:55:c1:24:2d:fa:3d:3a:f1:56:f9:47:9a:63:1e:d1: 3d:d3:ac:dc:59:a9:15:b2:84:ff:c1:51:64:40:8f:a9:cd:ef: 7f:7f:09:90:61:55:a5:02:1f:a6:e4:55:06:e0:47:7d:ad:e1: 9e:ac:28:b0:5c:3d:23:99:2e:2c:7f:6e:b1:f3:00:ab:e7:f1: 23:e7:14:3e:f8:0a:7c:5e:f8:9b:26:3d:3a:39:cf:e3:d5:80: 8b:05:92:33:11:a7:ba:b6:0a:d7:1f:01:c5:90:41:57:ad:32: e3:54:7f:62:e7:20:0e:d9:31:36:d2:c6:5c:61:c8:8a:c8:84: d2:8e:f4:72:31:8b:c3:db:d8:3e:83:29:1d:73:42:cd:25:34: 45:56:3c:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKDIyMjQyOTQ0MTZCODQ2NTcwNjU1NEI1MkNCQzU2RjQ0 OUJDNDZDODkwHhcNMjYwNTExMDcxNjI5WhcNMjYwNTE4MDcxNjI5WjAYMRYwFAYD VQQDEw02YTAxODI0ZC1mMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz73r5CvDvAO4QjwxHOhy/jNfK8L9i/8NK1EVMrGLhGXoGyQZMWXsHHfcVkAp ZDtzCkZDGu6m11y1yMz1XU85J//wDUrsE9pcEhzdP6PBI3sCGawLPQicDIczOBxo YfGdVhyap8usaZyjjnKsxAoMIYu4FvMfK3kW5/NXuWQZ0HsGWei+k2D4ZNH0Wom3 96cnnS92bGXLGwAV8uUOgN6CzrTnzEYr8PieOQUrjmCagQsXSBvteDWkAw6V1bwj 9FAbkOECNE/iXVufSg68Q1XWkPHMqAs91pCCrGDfzxkAW6tzqnYmOsT+hjDtxnf/ wrdvgTcinRQFTKv073MD/FvGUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJEGujbv JUM8GbiMC59efm8083kHMB8GA1UdIwQYMBaAFCIkKUQWuEZXBlVLUsvFb0SbxGyJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9FRDBGMTFGNDQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJsY0dWVXRTeThWdlJKdkVi SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9FRDBGMTFGNDQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJs Y0dWVXRTeThWdlJKdkViSWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABXspeAnY2bNTK9KfIWg/IPPvJSfKuOtdXkb76pojyODGxR1/yNjT1Ge5Kd73 gaWLHfH9BvR48786TpRY7tqZD0SlKrfVKTC1MWfPWT59hiU9DE3EutQOwpN40zyK eFOGxC4f4YlR95Iynp3iUPm4VcEkLfo9OvFW+UeaYx7RPdOs3FmpFbKE/8FRZECP qc3vf38JkGFVpQIfpuRVBuBHfa3hnqwosFw9I5kuLH9usfMAq+fxI+cUPvgKfF74 myY9OjnP49WAiwWSMxGnurYK1x8BxZBBV60y41R/YucgDtkxNtLGXGHIisiE0o70 cjGLw9vYPoMpHXNCzSU0RVY8rQ== -----END CERTIFICATE-----Generated at Wed May 13 03:40:15 2026 by rpki-client