$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: CdtrH/9pdWbAc0IHwkGNdFMYjJnQhOkPR73vXQTQ7cI= Subject key identifier: C7:3D:B5:BD:83:93:BD:5C:3A:E8:14:DA:05:E5:91:32:B4:51:78:32 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0AE7 Signing time: Tue 12 May 2026 19:28:06 +0000 Manifest this update: Tue 12 May 2026 19:28:06 +0000 Manifest next update: Tue 19 May 2026 19:28:06 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: qpkqUaSaEK1OSZM4P8LaKsKSYLAJweOA/OX+Wr+MpMQ=) 2: 6E71C43EF80A11F0BD0E5DB76F6F56BC.roa (hash: EAWXNHbw72NGXN5onuQ/WOahqrbdihDLckXMN5kD8CQ=) 3: 6EE80A72F80A11F0BD0E5DB76F6F56BC.roa (hash: sUHEm0sthEP5Lto5Jyv7yFbAnqT7Ikn9wDCxjmSd04U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: May 12 19:28:06 2026 GMT Not After : May 19 19:28:06 2026 GMT Subject: CN=6a037f46-2684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a0:cf:0f:bb:9a:4b:20:ab:b3:18:b7:51:dd: 18:65:9d:57:bc:4b:78:5b:99:99:68:83:c1:aa:c6: 3a:0d:5b:98:1b:eb:81:59:c6:fd:77:b7:75:36:9a: 74:14:07:d0:c4:a1:6b:b6:1e:80:ad:6f:bc:72:15: 3a:23:af:11:14:fd:f6:65:58:40:1e:69:04:cd:e4: 14:85:46:02:6b:3f:ed:68:00:1f:28:19:25:8e:e1: d2:51:47:cc:79:09:06:ef:d6:3a:09:c8:7b:b1:5d: 6a:80:f9:e1:dc:93:57:67:d0:90:4c:c0:c4:e1:c5: 3e:63:24:8b:d6:83:cc:ad:6c:09:b1:56:e2:cf:5f: e8:48:50:22:73:e2:65:e1:ce:d9:fc:fe:52:e9:0e: 20:56:d0:29:47:f4:6a:4c:5c:ab:df:b5:55:22:ea: 66:ff:ab:a8:4f:1a:36:2a:e6:50:f4:30:c8:38:a0: 76:c7:56:f7:ac:bb:bd:f1:70:f4:a2:ba:6d:43:bc: 8c:fa:e9:ed:a4:df:06:a2:28:17:8b:58:3b:dd:40: b2:c1:47:a9:8a:5d:8b:74:f9:d9:db:73:9b:ac:93: 01:85:b0:76:f5:ba:b9:9d:a1:bc:4c:8e:2b:5a:e2: 23:23:c8:12:7e:5a:1e:6e:ec:3d:c3:8a:ac:c1:d9: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:3D:B5:BD:83:93:BD:5C:3A:E8:14:DA:05:E5:91:32:B4:51:78:32 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:ab:84:72:c6:8b:1e:dd:f8:a5:b6:e4:34:97:e6:b1:c0:ca: d0:42:4e:07:e3:88:9e:ce:ee:af:2c:d1:b9:99:0a:8c:78:b0: c1:0b:0d:b8:10:62:38:5e:72:80:0c:42:81:a3:76:f1:0f:2e: dd:3a:41:5d:a9:26:7a:1e:fb:11:5b:0b:30:ad:54:b3:54:02: 34:ad:1d:15:b5:fd:fb:c3:d6:0a:5e:fa:49:a7:86:d3:68:b7: 8f:9d:3f:69:ae:69:46:e2:23:ec:03:ef:22:2e:67:6e:d3:1d: 87:71:3d:fd:d3:f8:f9:ea:79:d4:09:7b:e8:0e:de:a2:c3:21: 3e:ed:fc:c6:02:01:d9:88:8e:25:1d:d8:32:46:85:56:c0:f3: 75:c7:ea:07:ca:3d:87:dc:79:73:b1:ae:ee:1a:40:5f:51:cb: 66:a1:d3:7c:8b:aa:0e:49:67:f6:2e:b8:ab:20:d5:40:20:fa: c8:21:05:69:a0:9b:15:76:9f:66:d9:16:58:bc:d4:67:61:6d: 68:68:08:0a:a7:7e:2a:3f:b6:b2:e8:e3:97:61:da:f1:9e:bc: df:67:5c:9e:1a:77:19:ca:c8:c9:9c:1a:65:ca:1e:5e:75:bb: 2e:1f:ac:31:54:69:76:41:70:76:f6:be:57:69:ec:89:a8:97: 47:46:6e:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjYwNTEyMTkyODA2WhcNMjYwNTE5MTkyODA2WjAYMRYwFAYD VQQDEw02YTAzN2Y0Ni0yNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKDPD7uaSyCrsxi3Ud0YZZ1XvEt4W5mZaIPBqsY6DVuYG+uBWcb9d7d1Npp0 FAfQxKFrth6ArW+8chU6I68RFP32ZVhAHmkEzeQUhUYCaz/taAAfKBkljuHSUUfM eQkG79Y6Cch7sV1qgPnh3JNXZ9CQTMDE4cU+YySL1oPMrWwJsVbiz1/oSFAic+Jl 4c7Z/P5S6Q4gVtApR/RqTFyr37VVIupm/6uoTxo2KuZQ9DDIOKB2x1b3rLu98XD0 orptQ7yM+untpN8GoigXi1g73UCywUepil2LdPnZ23ObrJMBhbB29bq5naG8TI4r WuIjI8gSfloebuw9w4qswdkNcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMc9tb2D k71cOugU2gXlkTK0UXgyMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr6uEcsaLHt34pbbkNJfmscDK0EJOB+OIns7uryzRuZkKjHiwwQsNuBBiOF5y gAxCgaN28Q8u3TpBXakmeh77EVsLMK1Us1QCNK0dFbX9+8PWCl76SaeG02i3j50/ aa5pRuIj7APvIi5nbtMdh3E9/dP4+ep51Al76A7eosMhPu38xgIB2YiOJR3YMkaF VsDzdcfqB8o9h9x5c7Gu7hpAX1HLZqHTfIuqDkln9i64qyDVQCD6yCEFaaCbFXaf ZtkWWLzUZ2FtaGgICqd+Kj+2sujjl2Ha8Z6832dcnhp3GcrIyZwaZcoeXnW7Lh+s MVRpdkFwdva+V2nsiaiXR0Zuyg== -----END CERTIFICATE-----Generated at Wed May 13 08:26:39 2026 by rpki-client