$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: oH14SATi+1wV1IZ0aWIhiTJt0xAMvqt6PHr672i2Jsk= Subject key identifier: FC:70:2D:82:0D:D8:08:A5:D3:B1:0D:2A:5F:D1:F1:A2:2C:2B:71:72 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 0589 Signing time: Sun 10 May 2026 23:17:51 +0000 Manifest this update: Sun 10 May 2026 23:17:50 +0000 Manifest next update: Sun 17 May 2026 23:17:50 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: 8Amjqz9nEdcfQXi+nN3dJFo1qHWMK+Mg7U+tztoDf1U=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: EBh/ckQNlDc4ahR7RMYLM7PgmugIX2cx8X7/ugjUn30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 23:17:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: May 10 23:17:50 2026 GMT Not After : May 17 23:17:50 2026 GMT Subject: CN=6a01121e-34fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:56:fd:a0:8f:b6:58:04:4d:64:fb:a3:88:63: 16:f5:3f:db:44:bd:fc:54:6f:37:56:69:4f:09:ed: c4:62:29:04:4b:b7:15:6a:14:40:ee:f2:47:24:ed: 4d:09:1d:02:ab:15:90:56:72:e7:f8:bb:a7:b1:04: e4:22:ee:20:2f:de:52:21:8b:78:0e:4f:75:02:f8: f7:b9:e9:b6:60:a9:a4:3d:0f:ea:13:4f:20:ff:1a: 78:d2:7d:0a:5b:d5:7e:60:5e:d6:d5:b0:5d:75:f4: 6f:40:2f:c9:7b:61:b2:a6:03:c7:9b:1e:bb:0d:5a: 9b:2d:51:86:fa:e6:0b:b6:cf:c7:de:06:f9:88:e4: c4:1e:59:e0:bd:36:b0:ff:a8:9a:24:3e:e3:52:6f: 80:fe:64:87:36:ba:0a:fc:e3:89:63:1f:f7:9b:b1: a5:c4:d4:97:11:a1:af:6d:d9:00:0b:ab:4b:04:35: d7:f8:e7:ea:da:cd:b9:cd:1f:ba:1b:b3:9d:1a:0c: 22:14:ba:69:07:b2:9a:f3:1e:28:78:f3:4b:67:28: 6d:d5:b1:58:b3:bf:fd:dc:f1:f4:b9:5b:05:ec:2d: bd:f3:cf:23:a0:f5:6c:fb:dc:e1:30:10:4a:c7:c4: a3:d3:05:d3:7e:d5:f1:0b:a5:0b:1d:16:6d:80:6a: 63:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:70:2D:82:0D:D8:08:A5:D3:B1:0D:2A:5F:D1:F1:A2:2C:2B:71:72 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:06:0d:c8:17:b8:60:0f:38:26:9a:60:7b:0f:4d:79:86:9a: 01:1f:1a:ce:88:58:4b:f0:8d:5c:94:fa:b0:39:f9:b2:25:86: bb:16:22:35:74:9a:42:ab:d7:4c:20:21:0c:7c:27:6e:74:af: d7:20:5e:94:67:fa:19:7e:a7:99:c3:dd:7c:6f:65:ea:eb:5b: eb:cc:7e:d3:86:2d:5c:43:09:7f:ae:b2:b4:39:a6:bd:69:40: c9:8d:12:b6:b3:1b:6b:b9:9d:f3:12:6c:4d:eb:22:0c:a9:1e: cf:90:83:1d:6a:39:ed:96:f6:2e:3d:6e:da:2c:13:6c:a0:ac: 0e:11:8b:ed:35:1e:7b:39:30:fe:b9:a7:57:f8:99:af:22:61: 67:cc:48:1a:88:8a:2e:87:ac:e0:a2:81:5f:7b:e6:c8:e7:6e: ca:06:05:b6:85:95:2b:e8:5a:51:4f:87:a2:3c:e0:28:5a:4c: df:7c:15:ac:8b:9c:39:36:49:55:06:15:e1:b2:f5:1a:2c:88: c0:b7:88:e3:01:2c:24:6e:0d:24:b9:70:d3:90:7b:f6:59:80: 12:68:4f:26:0e:bf:03:c8:04:17:3f:7e:a4:80:85:c6:c6:42: 3c:b6:94:80:34:c3:da:6e:bf:b2:e9:78:2e:5f:ef:f6:c2:8c: 8b:97:d6:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjYwNTEwMjMxNzUwWhcNMjYwNTE3MjMxNzUwWjAYMRYwFAYD VQQDEw02YTAxMTIxZS0zNGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1b9oI+2WARNZPujiGMW9T/bRL38VG83VmlPCe3EYikES7cVahRA7vJHJO1N CR0CqxWQVnLn+LunsQTkIu4gL95SIYt4Dk91Avj3uem2YKmkPQ/qE08g/xp40n0K W9V+YF7W1bBddfRvQC/Je2GypgPHmx67DVqbLVGG+uYLts/H3gb5iOTEHlngvTaw /6iaJD7jUm+A/mSHNroK/OOJYx/3m7GlxNSXEaGvbdkAC6tLBDXX+Ofq2s25zR+6 G7OdGgwiFLppB7Ka8x4oePNLZyht1bFYs7/93PH0uVsF7C29888joPVs+9zhMBBK x8Sj0wXTftXxC6ULHRZtgGpj0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPxwLYIN 2Ail07ENKl/R8aIsK3FyMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXQYNyBe4YA84Jppgew9NeYaaAR8azohYS/CNXJT6sDn5siWGuxYiNXSaQqvX TCAhDHwnbnSv1yBelGf6GX6nmcPdfG9l6utb68x+04YtXEMJf66ytDmmvWlAyY0S trMba7md8xJsTesiDKkez5CDHWo57Zb2Lj1u2iwTbKCsDhGL7TUeezkw/rmnV/iZ ryJhZ8xIGoiKLoes4KKBX3vmyOduygYFtoWVK+haUU+HojzgKFpM33wVrIucOTZJ VQYV4bL1GiyIwLeI4wEsJG4NJLlw05B79lmAEmhPJg6/A8gEFz9+pICFxsZCPLaU gDTD2m6/sul4Ll/v9sKMi5fWGg== -----END CERTIFICATE-----Generated at Tue May 12 22:31:20 2026 by rpki-client