$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft File: kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft (raw, json) Hash identifier: AnSv4JrcrL10iqKMjpusFB24g343roSU8aItqcw0sWI= Subject key identifier: 35:AA:40:7F:09:4E:AB:D6:97:42:27:6B:B9:97:62:45:4F:5F:0C:2F Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft Manifest number: 33 Signing time: Mon 11 May 2026 08:56:39 +0000 Manifest this update: Mon 11 May 2026 08:56:38 +0000 Manifest next update: Mon 18 May 2026 08:56:38 +0000 Files and hashes: 1: kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl (hash: cJ20NHMoxp24v/KWYmAbReN7Y4MgL10y5ejy7GEd5oM=) 2: B1B9A1641D6011F1B057D12F263D8C67.roa (hash: t6D9tXAplx7/JIUvggusg1vjbe0cuS2nLDglz+Se1SQ=) 3: C2373EAC1D6011F1BE4C1B34263D8C67.roa (hash: 07klE73+JTtSptr8Nr9s1wMcP6sL8OycY1vW+oKqJmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: May 11 08:56:38 2026 GMT Not After : May 18 08:56:38 2026 GMT Subject: CN=6a0199c7-0a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:96:90:3c:19:e2:a0:08:da:49:05:42:61:f0: f6:d2:0e:23:bd:13:9d:5d:11:9f:e4:6b:a0:aa:7d: f6:e5:d3:57:1d:ce:ca:8d:f7:78:72:cc:6f:41:58: fa:60:2d:ce:17:4b:c2:95:f5:da:dd:e2:bf:03:9b: f7:41:32:61:ea:99:60:41:58:f8:81:e6:cb:fd:38: c9:1f:0b:1c:3e:89:5d:da:ad:02:b6:f2:8e:4f:69: ff:d7:ea:fd:17:67:cf:a3:20:01:29:05:30:f8:e0: 55:ad:0e:c1:49:3c:c0:1f:df:a4:90:42:d7:cd:55: 8a:d1:37:84:61:e8:36:4d:23:97:15:ed:30:3a:ae: fb:0d:a9:4b:4b:9d:64:d5:e2:f2:f2:3c:9d:d8:af: 4f:00:05:ef:7f:92:29:8d:6c:8d:90:1f:e6:79:f5: fc:e3:ad:c6:41:f5:a2:76:a3:57:5b:a1:e0:65:b2: c1:47:c8:75:95:a3:93:d3:79:ee:79:f0:f5:ec:2e: f6:a1:18:4c:69:9e:30:9d:f9:e2:c2:b8:b2:c8:3d: f5:22:2a:73:08:4f:da:f4:c8:55:0a:cc:65:3d:b0: 4a:7f:e5:c8:1e:c2:e3:99:cd:c8:28:3f:3f:8c:d2: 6c:44:d9:26:bf:0b:60:f4:1a:3e:af:5d:99:3e:5b: 64:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AA:40:7F:09:4E:AB:D6:97:42:27:6B:B9:97:62:45:4F:5F:0C:2F X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e7:7f:ce:5b:7f:e3:dc:ed:35:ed:a5:48:51:01:b6:4d:9d: 1c:0f:8a:47:7d:2d:83:85:2e:8a:61:bc:eb:a0:ab:54:da:ab: a6:c4:b9:ce:b6:1f:cf:98:ea:0c:d8:62:21:52:61:4b:02:80: 9b:8e:e5:50:f7:9b:d3:9d:4c:65:c7:3e:4d:a8:a9:2a:43:ea: 04:65:9a:0e:a5:29:a9:eb:55:b3:f7:3a:73:dd:12:8e:14:49: ca:9f:6c:17:2f:37:b8:a4:46:85:4c:44:81:e0:64:1d:2a:88: 60:8b:71:f3:7d:62:cd:79:90:88:14:13:39:02:7a:73:4c:1d: bd:c4:df:9a:1c:4f:e6:d0:7b:7d:01:0d:fc:9b:64:c8:0b:05: 72:55:bd:de:af:86:cb:28:ce:53:26:6c:82:78:e9:a9:4f:5f: dd:12:d4:af:96:d7:bd:14:f3:80:62:33:0c:c1:17:c5:f2:4c: aa:1b:d8:12:4a:2b:f3:23:f1:0c:fb:dc:69:72:8f:82:b2:4b: ad:b5:69:8a:fd:01:19:5d:14:ef:b1:c9:1d:c3:27:6d:fc:49: b4:77:93:04:e4:4c:a1:b3:af:c2:d2:c6:60:42:49:ef:da:6b: f0:0a:b4:b0:e2:da:4d:c2:c0:72:1e:2c:6b:37:b8:32:df:fa: c9:bf:4d:87 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjA1MTEwODU2MzhaFw0yNjA1MTgwODU2MzhaMBgxFjAUBgNV BAMTDTZhMDE5OWM3LTBhMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXlpA8GeKgCNpJBUJh8PbSDiO9E51dEZ/ka6Cqffbl01cdzsqN93hyzG9BWPpg Lc4XS8KV9drd4r8Dm/dBMmHqmWBBWPiB5sv9OMkfCxw+iV3arQK28o5Paf/X6v0X Z8+jIAEpBTD44FWtDsFJPMAf36SQQtfNVYrRN4Rh6DZNI5cV7TA6rvsNqUtLnWTV 4vLyPJ3Yr08ABe9/kimNbI2QH+Z59fzjrcZB9aJ2o1dboeBlssFHyHWVo5PTee55 8PXsLvahGExpnjCd+eLCuLLIPfUiKnMIT9r0yFUKzGU9sEp/5cgewuOZzcgoPz+M 0mxE2Sa/C2D0Gj6vXZk+W2S5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUNapAfwlO q9aXQidruZdiRU9fDC8wHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTU3LzI1MDgzOEFFMTE0MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBM T3BHY04wVHB5Mkc2cUxaRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBb53/OW3/j3O017aVIUQG2TZ0cD4pHfS2DhS6KYbzroKtU2qumxLnOth/PmOoM 2GIhUmFLAoCbjuVQ95vTnUxlxz5NqKkqQ+oEZZoOpSmp61Wz9zpz3RKOFEnKn2wX Lze4pEaFTESB4GQdKohgi3HzfWLNeZCIFBM5AnpzTB29xN+aHE/m0Ht9AQ38m2TI CwVyVb3er4bLKM5TJmyCeOmpT1/dEtSvlte9FPOAYjMMwRfF8kyqG9gSSivzI/EM +9xpco+CskuttWmK/QEZXRTvsckdwydt/Em0d5ME5Eyhs6/C0sZgQknv2mvwCrSw 4tpNwsByHixrN7gy3/rJv02H -----END CERTIFICATE-----Generated at Wed May 13 06:17:25 2026 by rpki-client