$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: OlbftGoZnHrCL8FXCMyQElgwvFqFTaXBlfI+FOHGV94= Subject key identifier: AF:9C:D6:C2:91:B7:1B:2E:8F:74:D7:D9:68:3E:B4:46:65:88:B4:D9 Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 08D6 Signing time: Tue 12 May 2026 21:02:00 +0000 Manifest this update: Tue 12 May 2026 21:01:59 +0000 Manifest next update: Tue 19 May 2026 21:01:59 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: JBrfqiXUGXgScULabkt4DOoup1njXVAhXfX+gnlXEyc=) 2: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: B8m2ePIUCgEMFkUqEdw865bj5KYfUZe6gW5FvbGFIPQ=) 3: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: w4kX8b17fTC2s9BhESajxJlKj2QyQzvAORehV2EbPSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: May 12 21:01:59 2026 GMT Not After : May 19 21:01:59 2026 GMT Subject: CN=6a039548-91d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9c:4d:2f:db:05:b3:f7:d8:98:cd:b7:58:9d: 61:1a:87:16:9e:ee:d6:b1:cb:69:dc:3d:55:ed:96: 15:7d:9b:f6:d0:e9:a4:57:94:53:cf:87:35:49:59: 80:43:75:44:9a:b1:e0:72:87:47:57:58:1c:ec:44: b1:b0:74:13:c9:15:10:32:cb:5b:47:e6:ef:c9:2d: a1:95:30:25:f6:c4:15:96:2c:d9:11:06:5a:6e:5f: e5:bf:00:a0:59:03:4e:ec:1c:fc:3e:2a:df:44:68: d2:db:1f:b5:b0:df:b2:08:58:77:cd:11:90:fc:2c: 08:8d:78:2a:13:64:e6:b5:0f:bb:b1:e9:5c:44:ab: fa:16:c0:ac:81:cf:a3:97:f7:bd:94:76:18:b9:76: 89:58:ff:85:eb:55:c2:29:89:d7:f9:4c:33:32:4f: 1b:3a:f4:d9:c6:11:20:09:a4:45:65:fe:09:42:84: 63:9f:3e:45:30:41:ea:66:7a:97:21:fc:73:cc:aa: a2:a1:b5:73:8e:f2:28:3b:03:aa:0f:de:1c:d2:ff: 61:8b:8d:6c:e1:38:19:88:fc:b1:a7:b4:99:f4:48: 7e:28:05:63:38:32:e4:21:43:32:45:f5:f0:f9:b2: 24:0b:86:b1:23:ae:69:6b:13:69:3e:e1:7f:74:4e: 62:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9C:D6:C2:91:B7:1B:2E:8F:74:D7:D9:68:3E:B4:46:65:88:B4:D9 X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:fc:ea:64:ec:b0:f8:30:a9:1f:12:4b:47:27:bc:22:88:45: a7:00:e8:35:11:86:72:62:14:ce:56:8b:96:04:97:9f:7e:9c: ba:6d:03:01:3f:43:87:36:65:8e:80:5b:63:c1:19:9b:0d:a9: 5c:45:5e:56:f9:c0:fd:48:99:33:33:e9:52:8f:b5:0c:d4:9d: 7d:dd:0f:37:a8:14:6d:d2:66:f2:c4:55:c2:d1:c3:82:7e:f9: d7:97:67:86:d2:d1:be:e7:55:98:e4:fb:67:ba:2d:ff:c2:8f: 00:4e:b7:4d:17:66:d5:a4:55:a5:9e:f5:08:f2:b3:9c:00:3b: 75:cd:62:fa:fa:b9:8e:04:29:1a:2c:f0:7c:0d:3f:67:09:5f: 80:74:dd:e2:42:3d:91:14:a0:74:cb:bb:91:1e:b1:75:a1:25: c5:f1:3e:eb:79:08:1a:90:d1:47:a0:01:26:e9:e6:14:90:0d: d4:dc:a8:ee:7c:b8:54:f3:33:0c:be:51:15:7d:93:ef:db:eb: ce:01:f1:27:cf:f2:69:c1:7e:51:dd:20:27:f7:11:22:8c:32: 34:c7:a5:ff:15:ff:2b:b8:4a:4e:b7:df:a5:5f:ee:28:d1:29: b8:90:7d:a6:2a:c0:89:83:0e:3d:3b:91:20:98:91:df:83:46: 1c:8a:85:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGNUExMTAvBgNVBAUTKDg4N0U3OUUyNUI2RDFEMzdFRjFGMzFCQzVBMDIzMkY4 RTc2NTE1NDUwHhcNMjYwNTEyMjEwMTU5WhcNMjYwNTE5MjEwMTU5WjAYMRYwFAYD VQQDEw02YTAzOTU0OC05MWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5xNL9sFs/fYmM23WJ1hGocWnu7Wsctp3D1V7ZYVfZv20OmkV5RTz4c1SVmA Q3VEmrHgcodHV1gc7ESxsHQTyRUQMstbR+bvyS2hlTAl9sQVlizZEQZabl/lvwCg WQNO7Bz8PirfRGjS2x+1sN+yCFh3zRGQ/CwIjXgqE2TmtQ+7selcRKv6FsCsgc+j l/e9lHYYuXaJWP+F61XCKYnX+UwzMk8bOvTZxhEgCaRFZf4JQoRjnz5FMEHqZnqX IfxzzKqiobVzjvIoOwOqD94c0v9hi41s4TgZiPyxp7SZ9Eh+KAVjODLkIUMyRfXw +bIkC4axI65paxNpPuF/dE5idwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK+c1sKR txsuj3TX2Wg+tEZliLTZMB8GA1UdIwQYMBaAFIh+eeJbbR037x8xvFoCMvjnZRVF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUY1QS8wODk4QjIzQTEx QkExMUVCQkMxQTU4NENDNEY5QUUwMi9pSDU1NGx0dEhUZnZIekc4V2dJeS1PZGxG VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi9pSDU1NGx0dEhU ZnZIekc4V2dJeS1PZGxGVVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkPzqZOyw+DCpHxJLRye8IohFpwDoNRGGcmIUzlaLlgSXn36cum0DAT9DhzZl joBbY8EZmw2pXEVeVvnA/UiZMzPpUo+1DNSdfd0PN6gUbdJm8sRVwtHDgn7515dn htLRvudVmOT7Z7ot/8KPAE63TRdm1aRVpZ71CPKznAA7dc1i+vq5jgQpGizwfA0/ ZwlfgHTd4kI9kRSgdMu7kR6xdaElxfE+63kIGpDRR6ABJunmFJAN1Nyo7ny4VPMz DL5RFX2T79vrzgHxJ8/yacF+Ud0gJ/cRIowyNMel/xX/K7hKTrffpV/uKNEpuJB9 pirAiYMOPTuRIJiR34NGHIqFHw== -----END CERTIFICATE-----Generated at Wed May 13 05:06:42 2026 by rpki-client