$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft File: JfnbYAet9vV-xO_3piv01C2nXsU.mft (raw, json) Hash identifier: dWAcKa4M8sL/1WuUduBLfVUvNYRFVRZ+chCP/BTFKZ8= Subject key identifier: 64:18:3C:2E:41:72:90:49:FE:92:42:A4:5B:30:6A:AC:37:96:95:85 Authority key identifier: 25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 Certificate issuer: /CN=A91D3F79/serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft Manifest number: 01E2 Signing time: Wed 13 May 2026 03:32:31 +0000 Manifest this update: Wed 13 May 2026 03:32:31 +0000 Manifest next update: Wed 20 May 2026 03:32:31 +0000 Files and hashes: 1: JfnbYAet9vV-xO_3piv01C2nXsU.crl (hash: NhJ9PiO+sJH0YYVagcBUyb9l3GBtdtlk63lzLEXHAMA=) 2: F4CDCE666F1C11EE8CA3F26AC4F9AE02.roa (hash: mY3dtD5W8Iju1eIPL4linHM5QD9vvZCX/OXihI1ApCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F79, serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Validity Not Before: May 13 03:32:31 2026 GMT Not After : May 20 03:32:31 2026 GMT Subject: CN=6a03f0cf-5adc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ef:53:22:b8:12:6a:6c:36:9c:2f:3c:d0:aa: 6e:80:71:15:ce:80:9f:25:16:0d:6a:37:c6:38:1d: 60:77:70:f2:e7:57:0c:51:54:e1:79:87:c5:83:3b: b0:62:77:6f:c0:b3:47:90:69:71:5f:3c:6c:9d:a1: f4:5c:c5:a5:2a:2c:f8:c6:42:69:f3:aa:83:ba:86: 47:15:49:80:c1:34:77:b3:2e:c4:12:20:22:3c:38: 00:13:fd:cf:06:e5:13:91:57:ca:a3:3d:33:d9:b8: f5:32:00:76:39:99:2c:78:89:d9:6b:52:ea:f9:7e: a6:b8:b8:f9:4e:21:d2:d9:47:6d:2e:19:b0:45:1f: 5a:ec:a2:63:cd:f8:65:6f:51:11:67:1d:3a:74:46: 4f:e5:fd:6c:95:72:28:a8:bb:b8:a0:1f:3b:6f:0f: 12:ca:92:81:94:29:d0:f9:ea:7f:0e:c1:6b:60:38: c2:b5:7a:55:d7:9e:74:9b:67:27:f3:96:64:9d:05: 57:04:34:12:45:f5:c9:7d:12:19:78:0f:98:f0:4c: ac:89:2a:75:39:e3:9e:4c:47:e4:d3:b6:10:bd:bc: 25:7d:6a:e9:83:d4:fc:b1:ea:7a:57:62:87:a6:09: 61:98:fb:ba:25:50:5d:6c:56:3f:4a:8a:3d:19:63: d1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:18:3C:2E:41:72:90:49:FE:92:42:A4:5B:30:6A:AC:37:96:95:85 X509v3 Authority Key Identifier: keyid:25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b3:fe:a5:ae:23:ff:83:49:ea:de:b6:d6:49:e3:db:e2:9f: 8c:bd:47:e8:54:98:da:9a:fe:90:a7:8f:cb:9c:d9:18:82:70: 1f:cf:fd:34:0c:f4:b9:1d:04:2e:ef:e5:4e:b6:f4:17:7d:3d: 97:3d:0b:9d:b6:aa:b8:23:f4:28:f4:90:fd:70:de:08:75:d1: 27:51:9a:29:7e:43:03:e2:b0:dc:b0:b1:64:41:44:9f:2c:7b: 27:64:07:81:34:25:31:7b:71:a6:cd:34:3c:89:c5:d3:d6:18: 2a:02:81:26:cc:ce:e2:08:96:75:ca:4f:45:8d:6a:f8:4a:c6: f3:bf:f1:33:83:3d:8b:2e:cd:ea:3a:c9:c5:27:3c:ad:e9:1f: bb:23:1a:8b:ed:cd:0d:83:1f:7a:48:48:f3:cd:bc:d0:99:e2: 3d:ef:4b:ca:b7:3d:97:41:9a:e2:04:81:0c:e3:23:46:cb:da: 59:00:93:7e:d3:8b:ac:c1:3f:13:bb:0d:67:74:52:37:f6:58: d9:50:e9:91:51:dc:43:88:6c:8a:96:06:ac:09:20:73:41:6b: e8:58:76:f1:02:10:0c:28:4a:93:c5:0b:68:1b:8c:97:c6:84: 7b:dd:ea:27:22:14:7f:30:21:f4:b2:9c:f7:01:09:3c:bf:fe: c9:f9:77:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGNzkxMTAvBgNVBAUTKDI1RjlEQjYwMDdBREY2RjU3RUM0RUZGN0E2MkJGNEQ0 MkRBNzVFQzUwHhcNMjYwNTEzMDMzMjMxWhcNMjYwNTIwMDMzMjMxWjAYMRYwFAYD VQQDEw02YTAzZjBjZi01YWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3e9TIrgSamw2nC880KpugHEVzoCfJRYNajfGOB1gd3Dy51cMUVTheYfFgzuw YndvwLNHkGlxXzxsnaH0XMWlKiz4xkJp86qDuoZHFUmAwTR3sy7EEiAiPDgAE/3P BuUTkVfKoz0z2bj1MgB2OZkseInZa1Lq+X6muLj5TiHS2UdtLhmwRR9a7KJjzfhl b1ERZx06dEZP5f1slXIoqLu4oB87bw8SypKBlCnQ+ep/DsFrYDjCtXpV1550m2cn 85ZknQVXBDQSRfXJfRIZeA+Y8EysiSp1OeOeTEfk07YQvbwlfWrpg9T8sep6V2KH pglhmPu6JVBdbFY/Soo9GWPR+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQYPC5B cpBJ/pJCpFswaqw3lpWFMB8GA1UdIwQYMBaAFCX522AHrfb1fsTv96Yr9NQtp17F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y3OS9GQTMxQTJCMjZG MUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2Vi14T18zcGl2MDFDMm5Y c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmbmJZQWV0OXZWLXhPXzNwaXYwMUMyblhzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Y3OS9GQTMxQTJCMjZGMUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2 Vi14T18zcGl2MDFDMm5Yc1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmbP+pa4j/4NJ6t621knj2+KfjL1H6FSY2pr+kKePy5zZGIJwH8/9NAz0uR0E Lu/lTrb0F309lz0LnbaquCP0KPSQ/XDeCHXRJ1GaKX5DA+Kw3LCxZEFEnyx7J2QH gTQlMXtxps00PInF09YYKgKBJszO4giWdcpPRY1q+ErG87/xM4M9iy7N6jrJxSc8 rekfuyMai+3NDYMfekhI88280JniPe9Lyrc9l0Ga4gSBDOMjRsvaWQCTftOLrME/ E7sNZ3RSN/ZY2VDpkVHcQ4hsipYGrAkgc0Fr6Fh28QIQDChKk8ULaBuMl8aEe93q JyIUfzAh9LKc9wEJPL/+yfl3Xg== -----END CERTIFICATE-----Generated at Wed May 13 06:49:24 2026 by rpki-client