$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: IwctPF5akReqXANXCotGS0OOywbWZL5Dot0smwzsd5Q= Subject key identifier: 7C:D1:B1:D5:55:16:17:E3:61:20:1B:45:18:05:A0:AE:76:A2:52:F6 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 0684 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 0679 Signing time: Tue 12 May 2026 22:39:15 +0000 Manifest this update: Tue 12 May 2026 22:39:14 +0000 Manifest next update: Tue 19 May 2026 22:39:14 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: xT2Edv0w8XlD0RTCRnRaJNf9IjO5MnmEtIcBmMLREHE=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: cN1hwE7Kn24tcOs69ZtX9qTJpNy1aheRedD7/deVNQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: May 12 22:39:14 2026 GMT Not After : May 19 22:39:14 2026 GMT Subject: CN=6a03ac13-1784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:1d:4d:ee:0e:dc:2b:d6:b1:23:d8:d7:ee: 3d:07:2d:22:e2:87:f7:8d:7d:d6:57:65:8e:62:d8: fa:1a:25:5d:98:36:ce:52:97:80:0f:69:1e:d7:ac: 2d:63:12:49:c3:e1:68:75:12:55:64:3f:87:03:76: 37:57:96:f6:03:54:f6:d5:3e:a7:4c:e2:3c:27:ca: a1:60:da:cb:ff:df:43:d3:ce:01:e7:c0:a5:af:9f: 4a:e4:d2:e2:0b:52:5c:d8:27:64:a1:b6:df:b8:c7: d3:05:4f:a5:d2:fa:a0:ac:50:34:e5:05:cd:02:ee: 7c:92:4f:ea:a0:7b:b1:01:6f:df:03:d5:98:f7:b4: e5:d7:69:6e:38:f4:9c:0d:fc:23:74:6a:e5:84:06: 52:2a:08:f7:8a:d6:c7:7e:37:fc:9a:e8:92:80:08: 30:d5:ca:d8:3c:dd:f9:74:a9:34:89:4b:b0:c8:c1: 86:eb:c8:73:ba:e0:46:b6:c4:d5:51:cd:69:f4:89: 37:9c:f1:d4:7a:40:c5:b2:03:ac:cd:b7:94:7d:11: 76:6c:d9:4e:b4:7b:dd:2a:de:d0:7e:9d:75:a2:a5: 74:06:72:7b:25:e7:0d:cd:ad:e6:48:7c:ef:31:62: ed:45:14:9c:2b:d9:4f:ca:7e:b6:32:a1:35:4d:12: 43:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D1:B1:D5:55:16:17:E3:61:20:1B:45:18:05:A0:AE:76:A2:52:F6 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ae:36:a2:cc:42:c4:19:1d:d5:b2:a0:1a:02:f9:1d:d9:48: 0b:15:0a:d2:6e:71:44:ca:7b:e3:f1:60:5a:7e:eb:69:6c:f6: 1c:53:53:5b:01:44:0b:75:94:65:54:ef:33:ed:6a:e2:c7:dd: 28:51:73:b1:99:16:6a:54:27:1b:d1:6a:05:3b:db:fb:fd:14: 15:54:43:cf:d7:07:d5:0e:14:fe:a2:23:d0:02:cb:07:36:80: a1:ef:71:f3:87:43:74:c4:31:a0:c4:9a:e0:06:88:fb:37:0d: 68:3e:e9:cc:6a:26:aa:70:47:be:a8:fd:b4:b3:43:48:de:e3: 2b:f1:cb:79:f9:31:e8:15:a0:85:f8:ba:52:8f:57:80:64:69: df:8f:4c:ec:52:ec:7a:3c:f5:09:4f:58:c1:e2:49:de:28:7d: 42:e8:45:f3:5a:c7:3b:a5:4a:46:2b:85:76:73:e8:8c:45:d9: bd:ea:f6:81:bb:ec:a9:29:3c:fa:fe:cb:e4:17:d2:f5:fd:7f: f2:a5:7c:19:39:f6:35:43:61:46:01:55:3c:ce:e0:f5:49:fa: 09:30:37:c7:c2:ab:5d:d4:8c:53:4b:fb:48:78:29:02:bd:c8: 61:e6:9e:27:3d:66:3b:34:84:8a:98:ff:b8:82:3e:af:3f:4c: 43:63:08:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjYwNTEyMjIzOTE0WhcNMjYwNTE5MjIzOTE0WjAYMRYwFAYD VQQDEw02YTAzYWMxMy0xNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzodTe4O3CvWsSPY1+49By0i4of3jX3WV2WOYtj6GiVdmDbOUpeAD2ke16wt YxJJw+FodRJVZD+HA3Y3V5b2A1T21T6nTOI8J8qhYNrL/99D084B58Clr59K5NLi C1Jc2CdkobbfuMfTBU+l0vqgrFA05QXNAu58kk/qoHuxAW/fA9WY97Tl12luOPSc DfwjdGrlhAZSKgj3itbHfjf8muiSgAgw1crYPN35dKk0iUuwyMGG68hzuuBGtsTV Uc1p9Ik3nPHUekDFsgOszbeUfRF2bNlOtHvdKt7Qfp11oqV0BnJ7JecNza3mSHzv MWLtRRScK9lPyn62MqE1TRJD6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHzRsdVV FhfjYSAbRRgFoK52olL2MB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgq42osxCxBkd1bKgGgL5HdlICxUK0m5xRMp74/FgWn7raWz2HFNTWwFEC3WU ZVTvM+1q4sfdKFFzsZkWalQnG9FqBTvb+/0UFVRDz9cH1Q4U/qIj0ALLBzaAoe9x 84dDdMQxoMSa4AaI+zcNaD7pzGomqnBHvqj9tLNDSN7jK/HLefkx6BWghfi6Uo9X gGRp349M7FLsejz1CU9YweJJ3ih9QuhF81rHO6VKRiuFdnPojEXZver2gbvsqSk8 +v7L5BfS9f1/8qV8GTn2NUNhRgFVPM7g9Un6CTA3x8KrXdSMU0v7SHgpAr3IYeae Jz1mOzSEipj/uII+rz9MQ2MI6A== -----END CERTIFICATE-----Generated at Wed May 13 01:26:38 2026 by rpki-client