$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft File: i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft (raw, json) Hash identifier: Tw3uISCfqWCr+1NM7d5YYXGvmGZWA5ESX/jgeSUIlI0= Subject key identifier: BD:82:5A:95:AF:36:C1:2D:4D:6F:42:20:4D:BE:6A:0F:98:D8:99:21 Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft Manifest number: 0816 Signing time: Tue 12 May 2026 21:11:18 +0000 Manifest this update: Tue 12 May 2026 21:11:17 +0000 Manifest next update: Tue 19 May 2026 21:11:17 +0000 Files and hashes: 1: i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl (hash: oUtDwMaX4TUQeFAKq6FohqzZBgEokr3WbS61y53+zeE=) 2: D933655E23B511EBA7BDD50FC4F9AE02.roa (hash: D8eauO5Ji5HlCRuIfjUIlmK4L86PjKaAnDzrks9sonQ=) 3: BD764EAE1D5B11EBAB008D19C4F9AE02.roa (hash: JZqHXQRGfZxF3NgJ2VE0gwCg4J3Ofdou+/uDHMJJLwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: May 12 21:11:17 2026 GMT Not After : May 19 21:11:17 2026 GMT Subject: CN=6a039776-d9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:87:d2:db:03:e6:79:f4:59:9c:85:58:38:81: 4c:5a:a7:73:55:c8:d3:86:50:0b:65:d1:a3:a6:8b: 45:c6:01:f7:04:1f:5c:ea:eb:16:00:4f:dc:a2:11: dc:26:68:58:c6:3e:c1:7e:2a:2c:c2:f3:d3:33:a3: 8f:f5:8c:05:2b:ea:b1:6c:e8:b8:93:38:92:05:d3: 46:26:f3:20:16:5f:8b:fe:e7:aa:fa:9d:1d:55:00: 28:3f:74:81:c0:36:ef:0d:e2:53:35:c8:60:75:c2: 70:de:6b:30:c2:0b:55:df:84:dc:68:ab:75:af:8c: d1:9b:ee:0a:d8:6e:cf:06:d9:7b:33:fb:1f:5d:e6: 94:83:1f:c8:97:1f:60:46:82:7f:c1:0c:e0:f9:f7: 88:1f:b5:c9:85:b6:85:48:b9:ee:e0:43:08:5e:8e: 88:5c:d9:a1:fe:a2:79:1b:c2:d1:1f:0b:2b:31:5b: dd:2b:09:05:c5:cb:4c:28:97:45:65:0b:2a:85:45: 9c:5c:52:9d:6a:89:9a:cd:8b:bb:eb:58:ab:8e:e7: 50:a9:c7:13:6c:b0:3b:e3:a8:a1:aa:09:64:41:dd: 91:98:81:22:c0:87:4c:1a:f9:20:45:2d:f7:a5:73: 5f:59:be:ee:53:05:5d:92:0e:98:eb:5f:aa:58:b4: fc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:82:5A:95:AF:36:C1:2D:4D:6F:42:20:4D:BE:6A:0F:98:D8:99:21 X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ab:9d:ef:03:d0:46:b1:f2:7a:2a:b1:16:6f:74:43:fc:76: 2f:b3:02:17:c3:c9:53:57:df:c2:7c:69:2d:a4:44:d1:2e:24: c6:01:3f:66:b4:69:a4:97:49:80:08:95:2f:09:e3:ad:88:08: 83:89:90:45:38:6c:15:b8:ce:09:f0:99:e7:55:3b:df:91:ea: b6:6d:69:59:51:e9:89:fd:ae:32:a5:68:de:e4:c7:6a:03:19: 4e:fa:15:d3:97:d6:8a:6e:c9:aa:54:ae:36:5d:af:fa:50:5c: 01:08:fd:0d:56:50:3b:ed:7a:d4:bc:f8:51:04:d1:08:17:d4: d7:8a:f7:97:c5:99:63:4c:60:9c:ff:aa:8a:75:02:ce:b8:a0: b3:69:e6:77:e0:f2:45:ae:74:42:81:5c:8d:4f:c0:16:94:fe: ec:16:eb:e6:c6:a8:cd:b4:c0:40:f0:4f:db:0f:4a:c1:73:5f: 2d:06:1b:86:63:3f:c3:5d:e2:6f:04:9d:8b:6d:15:d0:8d:8c: d7:a5:1f:26:22:8f:e2:20:38:20:16:b4:c2:b5:9f:c3:ef:1b: 8e:97:43:d0:ac:06:d7:7e:15:2b:bd:73:d8:8e:88:b0:b4:5a: 1a:60:2c:ba:06:fc:b5:d6:17:91:b7:78:da:5e:bc:60:d7:bf: ac:4b:c2:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjYwNTEyMjExMTE3WhcNMjYwNTE5MjExMTE3WjAYMRYwFAYD VQQDEw02YTAzOTc3Ni1kOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4fS2wPmefRZnIVYOIFMWqdzVcjThlALZdGjpotFxgH3BB9c6usWAE/cohHc JmhYxj7BfioswvPTM6OP9YwFK+qxbOi4kziSBdNGJvMgFl+L/ueq+p0dVQAoP3SB wDbvDeJTNchgdcJw3mswwgtV34TcaKt1r4zRm+4K2G7PBtl7M/sfXeaUgx/Ilx9g RoJ/wQzg+feIH7XJhbaFSLnu4EMIXo6IXNmh/qJ5G8LRHwsrMVvdKwkFxctMKJdF ZQsqhUWcXFKdaomazYu761irjudQqccTbLA746ihqglkQd2RmIEiwIdMGvkgRS33 pXNfWb7uUwVdkg6Y61+qWLT8gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2CWpWv NsEtTW9CIE2+ag+Y2JkhMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzdFNC8zNkZCMTE0NDFENUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1Jz TXdZd1JxY2w2cmhXUXJuQzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWaud7wPQRrHyeiqxFm90Q/x2L7MCF8PJU1ffwnxpLaRE0S4kxgE/ZrRppJdJ gAiVLwnjrYgIg4mQRThsFbjOCfCZ51U735Hqtm1pWVHpif2uMqVo3uTHagMZTvoV 05fWim7JqlSuNl2v+lBcAQj9DVZQO+161Lz4UQTRCBfU14r3l8WZY0xgnP+qinUC zrigs2nmd+DyRa50QoFcjU/AFpT+7Bbr5saozbTAQPBP2w9KwXNfLQYbhmM/w13i bwSdi20V0I2M16UfJiKP4iA4IBa0wrWfw+8bjpdD0KwG134VK71z2I6IsLRaGmAs ugb8tdYXkbd42l68YNe/rEvCxQ== -----END CERTIFICATE-----Generated at Wed May 13 15:29:14 2026 by rpki-client