$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: U99R7G5cU1W9xnSfoUXiMfFNb/RNKBUnzYNpFfBnsyM= Subject key identifier: B5:BA:5C:34:B9:1E:2A:4B:E8:33:30:29:A3:17:38:74:3E:72:BD:9E Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 08E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0DAA Signing time: Tue 12 May 2026 20:24:45 +0000 Manifest this update: Tue 12 May 2026 20:24:45 +0000 Manifest next update: Tue 19 May 2026 20:24:45 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: Xu++R1gYPLvg9zpcDaDKMNABNFn8XIHQwCLBf5hgpc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2277 (0x8e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: May 12 20:24:45 2026 GMT Not After : May 19 20:24:45 2026 GMT Subject: CN=6a038c8d-162c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:96:77:10:04:aa:a9:8d:12:64:24:09:fb: 76:1f:31:af:7f:c7:d3:d4:30:b3:01:cf:68:b6:3b: e6:70:d9:fb:86:57:7c:a4:cc:7c:4a:86:d9:9f:6b: fc:bb:c7:7c:28:6b:2e:52:55:5e:a1:2b:50:eb:fd: 82:4f:72:a7:88:8b:d0:71:1e:0a:a3:80:bb:e9:f1: 6e:95:b0:b3:a9:9b:4e:bf:86:52:dc:80:d0:0c:3c: a2:ef:c9:6a:84:8c:b2:91:52:63:50:53:6d:00:14: fe:3c:e5:7b:d0:23:af:35:4b:43:b4:88:f7:35:03: 8a:32:06:1a:4b:3e:8e:ad:cc:08:f1:e5:fe:38:68: 0f:06:49:9f:ce:e6:dd:f9:0e:55:4d:f6:ab:66:bd: 03:af:ca:4a:0a:87:e8:07:d0:72:29:f8:62:51:8e: c6:a7:3c:0c:b7:69:25:7a:6d:49:33:2e:b7:36:da: f8:01:ed:38:c2:d0:32:ce:3e:57:19:b4:ae:18:69: 57:4c:0c:bb:b9:9a:98:ba:82:97:3c:97:ae:d5:ab: 2a:6e:d6:50:6d:a4:1b:94:7b:f3:cb:13:b8:f4:70: 53:6b:ea:54:d4:85:02:a5:c0:4f:d2:67:a1:a1:32: c3:c9:a8:04:06:4a:c9:4c:95:f2:65:4c:3a:e5:58: 7e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BA:5C:34:B9:1E:2A:4B:E8:33:30:29:A3:17:38:74:3E:72:BD:9E X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:89:81:7d:ae:fc:af:c4:31:06:fa:15:bb:ba:e1:0e:bf:a3: 4c:61:65:23:cf:17:08:5f:08:e0:45:57:e2:43:b1:fb:8e:87: a7:f2:b9:ad:92:f6:04:8e:b8:3d:02:75:c5:70:0a:4d:ef:0f: 74:0a:e4:06:72:68:b7:6d:bd:84:e4:d4:91:96:c1:0e:9f:3b: 9e:25:dd:3a:63:1d:4b:c4:b4:3f:88:fb:aa:8f:a2:06:82:1e: 81:2f:fc:e0:ef:dd:5c:3b:c9:76:f0:83:cc:c6:e4:5d:d1:7d: fe:24:c3:c6:a9:52:ad:80:b1:fd:af:a9:0b:98:77:1b:60:0b: 76:64:54:e6:88:c5:94:4f:59:e7:46:57:60:2e:22:a2:79:a7: 10:70:cd:99:2d:1c:1e:71:3e:6d:68:c4:fd:76:ce:7c:e9:8a: bb:96:54:b1:f4:a6:bc:11:29:24:6a:08:bc:d5:e0:aa:4d:6a: 6f:14:70:68:a2:f9:41:cc:8c:90:c3:c4:26:3e:9f:79:2e:42: 08:6d:13:23:ca:0b:fb:08:ed:a7:24:8c:54:29:11:97:0c:d7: 9e:a5:d1:bd:50:96:6b:76:5a:6b:b6:e3:48:ce:34:d1:c5:7f: 8f:a3:7c:84:2a:40:62:a1:16:33:d9:50:f9:79:17:33:20:3e: 51:2c:c0:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjYwNTEyMjAyNDQ1WhcNMjYwNTE5MjAyNDQ1WjAYMRYwFAYD VQQDEw02YTAzOGM4ZC0xNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+eWdxAEqqmNEmQkCft2HzGvf8fT1DCzAc9otjvmcNn7hld8pMx8SobZn2v8 u8d8KGsuUlVeoStQ6/2CT3KniIvQcR4Ko4C76fFulbCzqZtOv4ZS3IDQDDyi78lq hIyykVJjUFNtABT+POV70COvNUtDtIj3NQOKMgYaSz6OrcwI8eX+OGgPBkmfzubd +Q5VTfarZr0Dr8pKCofoB9ByKfhiUY7GpzwMt2klem1JMy63Ntr4Ae04wtAyzj5X GbSuGGlXTAy7uZqYuoKXPJeu1asqbtZQbaQblHvzyxO49HBTa+pU1IUCpcBP0meh oTLDyagEBkrJTJXyZUw65Vh+TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLW6XDS5 HipL6DMwKaMXOHQ+cr2eMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO4mBfa78r8QxBvoVu7rhDr+jTGFlI88XCF8I4EVX4kOx+46Hp/K5rZL2BI64 PQJ1xXAKTe8PdArkBnJot229hOTUkZbBDp87niXdOmMdS8S0P4j7qo+iBoIegS/8 4O/dXDvJdvCDzMbkXdF9/iTDxqlSrYCx/a+pC5h3G2ALdmRU5ojFlE9Z50ZXYC4i onmnEHDNmS0cHnE+bWjE/XbOfOmKu5ZUsfSmvBEpJGoIvNXgqk1qbxRwaKL5QcyM kMPEJj6feS5CCG0TI8oL+wjtpySMVCkRlwzXnqXRvVCWa3Zaa7bjSM400cV/j6N8 hCpAYqEWM9lQ+XkXMyA+USzARw== -----END CERTIFICATE-----Generated at Wed May 13 09:44:44 2026 by rpki-client