$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: 6JrJ8umZyJmtoXxI5jB0Y2qmcXCjIFMlY9Q1hlDAvSE= Subject key identifier: 5D:C7:CB:98:76:B9:7A:04:C9:8E:45:A2:F4:0E:F0:C3:84:67:93:1B Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0DD4 Signing time: Tue 12 May 2026 17:54:31 +0000 Manifest this update: Tue 12 May 2026 17:54:30 +0000 Manifest next update: Tue 19 May 2026 17:54:30 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: q8ZecQpYmQWJDf9uFooALeQGiI2LzzLRO7K7EvCwQQw=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: n+1VIRJou+nBlWU6Es4cxB80UK2IiCMsqRaa75g/YvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3565 (0xded) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: May 12 17:54:30 2026 GMT Not After : May 19 17:54:30 2026 GMT Subject: CN=6a036957-5459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:60:df:d2:81:f8:17:ff:25:89:47:f5:72: 87:33:12:7c:79:f2:82:b5:03:07:4e:e0:c1:70:fa: 70:6b:01:52:67:33:0e:53:72:61:ac:5d:ad:bb:0c: fa:d7:78:eb:de:76:9d:13:5d:89:b3:dd:d2:0f:2b: 6f:4a:8f:18:25:7b:d8:92:4d:93:1c:2d:fe:a6:d6: 0a:cc:25:99:d7:38:96:55:55:55:d2:cd:60:f7:26: 24:28:c4:61:db:db:a5:71:cf:f4:dd:8d:2c:96:7b: 46:0a:93:68:c1:81:c4:47:d7:54:53:63:cd:c2:5e: 16:26:f7:eb:ea:b8:37:b2:fd:ef:69:50:84:36:c2: 93:48:7c:68:6e:f2:a8:15:27:ee:62:74:8a:b4:a2: 14:72:1d:7d:5f:14:67:3c:48:be:3a:70:1f:e0:6b: bd:8e:a0:37:fa:bf:f7:bc:58:2f:54:05:16:15:12: b2:3a:b7:8a:fd:c2:69:a7:48:3c:9c:53:60:16:54: b5:20:6d:23:ca:a3:d2:df:a2:fa:5f:38:65:74:1c: e6:97:90:7d:b0:48:c3:92:c7:64:b4:c6:9b:ca:c3: 8d:aa:92:b8:12:8d:d4:d4:37:bd:1d:bb:e3:76:a6: 08:b4:ad:40:d3:77:d5:ff:5e:83:ad:9a:50:fd:07: 36:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C7:CB:98:76:B9:7A:04:C9:8E:45:A2:F4:0E:F0:C3:84:67:93:1B X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:98:70:80:6b:d4:80:06:c1:56:48:b2:d3:3a:b5:89:7c:25: 9b:f2:14:74:0f:3f:fa:f3:3e:87:69:87:74:e1:76:32:d1:9b: d1:a4:c7:8a:a6:fe:33:31:fd:33:ba:46:ca:1e:f7:43:3e:67: 23:ff:65:14:d1:48:4c:c7:7a:cd:ce:b6:79:b9:a0:fa:3b:46: 89:38:d2:70:cd:f5:f5:64:11:4e:4b:14:a7:32:61:ec:c3:4d: 3e:ea:38:96:39:55:ed:e8:e6:fb:70:8f:39:9a:e8:a6:37:b3: 7e:75:a2:09:a7:28:ca:31:11:41:c4:1c:24:a6:89:99:d1:76: ae:18:34:3d:bf:4e:0b:ce:aa:c3:08:10:09:fe:e4:5d:00:8e: 42:f9:b1:ae:ac:e0:99:f5:09:65:69:89:f1:51:69:60:a7:99: 3b:f9:33:a4:86:db:e1:fb:e9:4d:35:46:f7:c1:ed:9c:6d:18: 58:29:a2:7b:28:34:e6:8e:71:b9:88:da:9c:9f:a4:ea:72:85: 21:74:88:ff:ee:9f:47:6e:5d:b8:80:da:59:66:c3:a7:4e:4d: aa:8d:e6:f2:58:10:f6:80:b9:53:87:d7:78:4f:06:ef:30:0c: c3:16:fd:ab:5a:06:26:6d:dc:d8:41:7a:4e:8f:1d:54:31:67: d4:0b:c7:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwNTEyMTc1NDMwWhcNMjYwNTE5MTc1NDMwWjAYMRYwFAYD VQQDEw02YTAzNjk1Ny01NDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRBg39KB+Bf/JYlH9XKHMxJ8efKCtQMHTuDBcPpwawFSZzMOU3JhrF2tuwz6 13jr3nadE12Js93SDytvSo8YJXvYkk2THC3+ptYKzCWZ1ziWVVVV0s1g9yYkKMRh 29ulcc/03Y0slntGCpNowYHER9dUU2PNwl4WJvfr6rg3sv3vaVCENsKTSHxobvKo FSfuYnSKtKIUch19XxRnPEi+OnAf4Gu9jqA3+r/3vFgvVAUWFRKyOreK/cJpp0g8 nFNgFlS1IG0jyqPS36L6XzhldBzml5B9sEjDksdktMabysONqpK4Eo3U1De9Hbvj dqYItK1A03fV/16DrZpQ/Qc2qwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3Hy5h2 uXoEyY5FovQO8MOEZ5MbMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhJhwgGvUgAbBVkiy0zq1iXwlm/IUdA8/+vM+h2mHdOF2MtGb0aTHiqb+MzH9 M7pGyh73Qz5nI/9lFNFITMd6zc62ebmg+jtGiTjScM319WQRTksUpzJh7MNNPuo4 ljlV7ejm+3CPOZropjezfnWiCacoyjERQcQcJKaJmdF2rhg0Pb9OC86qwwgQCf7k XQCOQvmxrqzgmfUJZWmJ8VFpYKeZO/kzpIbb4fvpTTVG98HtnG0YWCmieyg05o5x uYjanJ+k6nKFIXSI/+6fR25duIDaWWbDp05Nqo3m8lgQ9oC5U4fXeE8G7zAMwxb9 q1oGJm3c2EF6To8dVDFn1AvHUQ== -----END CERTIFICATE-----Generated at Wed May 13 13:13:28 2026 by rpki-client