$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: vQyYE23qaIQdomH7vOspWcaOYuFSeWGQHTezv65WNhE= Subject key identifier: C5:B9:A7:C6:87:F2:C6:B2:37:C3:A5:EB:EA:B1:65:2F:DA:41:83:E5 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 0894 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 086D Signing time: Tue 12 May 2026 20:54:18 +0000 Manifest this update: Tue 12 May 2026 20:54:17 +0000 Manifest next update: Tue 19 May 2026 20:54:17 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: N/PBxei0v7ncfuMUQJEXdMuuRFQX2wfz9qWXQl/42jM=) 2: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: F6LSRzHnrTo7J01sXjb7AoMVO+sTd3XP3ZGtjca+Bu8=) 3: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: mEYTlHG5kpWGqAptPr16SuSTKtrgl88+S1qWS3rlZ1c=) 4: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: ySJ9f4a7cg7BoSELqx9I/0KDLVkwX9/nfnRYeM6OTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: May 12 20:54:17 2026 GMT Not After : May 19 20:54:17 2026 GMT Subject: CN=6a03937a-3806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:57:ce:45:08:84:1e:96:9e:71:d5:fa:11:91: 3c:67:25:12:73:dc:61:e9:07:c7:c8:13:e9:f3:af: 8b:b2:98:00:c3:93:74:19:e0:4f:15:b9:b5:aa:69: 27:d6:ca:17:3e:21:03:5a:f5:ab:d7:6f:70:04:69: 8c:3b:c7:80:46:93:b7:3a:b6:d6:ea:e6:b7:56:ca: ca:b3:a2:13:6f:91:50:c3:3f:22:a5:3c:6d:8b:e7: 12:f7:05:7c:85:a2:d7:79:7c:4b:fa:24:1f:c7:6a: 10:3f:3b:32:67:32:76:24:df:2d:19:19:d0:f0:a3: 99:fe:09:b7:52:86:22:55:f1:cb:57:49:9a:1c:00: b0:4f:c3:bb:9c:33:0b:94:17:bb:6a:e7:66:fd:ca: 94:08:21:75:8b:4d:50:fe:16:f4:82:7f:cc:70:20: 55:37:af:c7:11:2f:40:a3:93:a6:98:b7:b5:83:97: 70:6d:1d:d4:8a:c6:a1:6d:11:ad:60:cd:00:35:87: 5b:d4:1a:a1:2d:24:9b:a8:42:bb:bb:5b:cb:c2:4e: 9b:80:a4:25:e6:fd:6f:86:fc:be:3c:65:bf:a2:4d: 4e:14:75:29:b0:da:d6:cd:ea:ad:7f:6e:f9:04:fb: 63:aa:be:57:76:a9:7d:9c:1e:da:0a:e9:e6:98:0d: 01:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B9:A7:C6:87:F2:C6:B2:37:C3:A5:EB:EA:B1:65:2F:DA:41:83:E5 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:a0:7e:f5:a9:7d:c1:1f:14:0c:dd:a3:95:aa:54:b3:4a:08: 6c:c6:e0:d6:4a:d9:f3:93:4f:bb:55:3e:d3:a5:3b:2e:05:81: 4a:e4:0e:63:6b:96:02:4b:e3:e4:69:c2:25:aa:c6:20:89:a0: 20:9e:ae:f0:0a:39:4c:14:bd:57:1a:af:fb:6b:65:81:0b:ce: 46:d2:6c:fb:01:d3:20:c8:f5:87:0a:2a:f6:30:3b:c0:f6:bf: 19:ea:38:a5:26:16:b4:69:a7:00:15:f9:e2:d0:e4:ec:be:68: 65:fc:18:a5:bf:a4:5b:51:0c:97:d5:1a:60:2e:5b:87:12:cd: 61:b2:a9:2d:04:15:64:93:ba:13:e0:0b:9e:85:05:20:23:92: 99:1a:27:33:df:5c:c1:fa:f2:94:68:a6:38:d3:df:84:10:1d: 67:20:8c:d9:12:88:4e:5b:93:1c:06:db:58:83:b8:56:8d:99: fe:19:62:88:54:24:03:ba:f5:fb:e6:c1:e7:54:fe:a9:d1:15: 2b:23:de:9e:d1:c4:04:65:34:0f:c2:1a:32:10:f8:62:35:58: b6:26:7e:a8:9b:55:02:d3:44:04:61:3e:24:b4:d7:87:b9:8e: 63:69:45:be:10:78:f2:4c:55:0e:98:02:8d:09:f0:03:33:45: 54:e9:dd:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjYwNTEyMjA1NDE3WhcNMjYwNTE5MjA1NDE3WjAYMRYwFAYD VQQDEw02YTAzOTM3YS0zODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVfORQiEHpaecdX6EZE8ZyUSc9xh6QfHyBPp86+LspgAw5N0GeBPFbm1qmkn 1soXPiEDWvWr129wBGmMO8eARpO3OrbW6ua3VsrKs6ITb5FQwz8ipTxti+cS9wV8 haLXeXxL+iQfx2oQPzsyZzJ2JN8tGRnQ8KOZ/gm3UoYiVfHLV0maHACwT8O7nDML lBe7audm/cqUCCF1i01Q/hb0gn/McCBVN6/HES9Ao5OmmLe1g5dwbR3UisahbRGt YM0ANYdb1BqhLSSbqEK7u1vLwk6bgKQl5v1vhvy+PGW/ok1OFHUpsNrWzeqtf275 BPtjqr5Xdql9nB7aCunmmA0BtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMW5p8aH 8sayN8Ol6+qxZS/aQYPlMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVqB+9al9wR8UDN2jlapUs0oIbMbg1krZ85NPu1U+06U7LgWBSuQOY2uWAkvj 5GnCJarGIImgIJ6u8Ao5TBS9Vxqv+2tlgQvORtJs+wHTIMj1hwoq9jA7wPa/Geo4 pSYWtGmnABX54tDk7L5oZfwYpb+kW1EMl9UaYC5bhxLNYbKpLQQVZJO6E+ALnoUF ICOSmRonM99cwfrylGimONPfhBAdZyCM2RKITluTHAbbWIO4Vo2Z/hliiFQkA7r1 ++bB51T+qdEVKyPentHEBGU0D8IaMhD4YjVYtiZ+qJtVAtNEBGE+JLTXh7mOY2lF vhB48kxVDpgCjQnwAzNFVOndUQ== -----END CERTIFICATE-----Generated at Wed May 13 08:58:24 2026 by rpki-client