$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft File: mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft (raw, json) Hash identifier: ODRVUVmWJfouNfvt3SER1LA5Lun1yDX/RKup/vQnC4Y= Subject key identifier: CD:2B:A9:D7:73:63:52:42:F1:DE:17:E9:05:98:49:89:92:59:06:89 Authority key identifier: 98:E9:95:BC:3A:4F:F2:CD:08:C6:E3:55:4B:66:37:4B:66:97:92:70 Certificate issuer: /CN=A91DA5F7/serialNumber=98E995BC3A4FF2CD08C6E3554B66374B66979270 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mOmVvDpP8s0IxuNVS2Y3S2aXknA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft Manifest number: 41 Signing time: Mon 11 May 2026 08:39:28 +0000 Manifest this update: Mon 11 May 2026 08:39:28 +0000 Manifest next update: Mon 18 May 2026 08:39:28 +0000 Files and hashes: 1: mOmVvDpP8s0IxuNVS2Y3S2aXknA.crl (hash: 4i4Mpm3CpZniIyJ4zi48sqeVivX/NWGNayolHxBRvjM=) 2: 3150E4A4F1F211F0B442E9B1456F56BC.roa (hash: NONLn4Akv/l6YL+qj6DEc725hoLYdC323Fs/6ORru7c=) 3: 30D2517AF1F211F0B442E9B1456F56BC.roa (hash: UAtyjnkkGVt2+haohA8ppdzMqX4q+YbKNZp+6njQiaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.crl rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mOmVvDpP8s0IxuNVS2Y3S2aXknA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5F7, serialNumber=98E995BC3A4FF2CD08C6E3554B66374B66979270 Validity Not Before: May 11 08:39:28 2026 GMT Not After : May 18 08:39:28 2026 GMT Subject: CN=6a0195c0-3acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:87:a4:35:d1:ed:29:a3:e0:27:6a:1b:a8:32: 53:f3:08:d8:cd:1d:df:cf:f8:48:7c:0d:fe:4a:52: cb:92:44:b9:f7:a1:6a:05:51:18:ff:c3:64:26:00: f2:8d:38:09:ec:26:42:2f:e8:ee:51:33:fe:fe:7a: 4d:e0:e2:cf:8f:e7:7d:ef:2a:b0:4a:e8:fc:39:8b: 30:2c:32:6f:ca:7e:5f:5b:a0:02:0b:9a:95:4e:f3: a6:c5:21:eb:58:67:b2:06:0a:86:62:71:bf:03:9e: 70:d9:61:c1:19:31:9e:59:48:7d:02:75:a5:37:33: 0c:24:75:9f:3a:1f:e2:1b:7e:44:58:fa:34:ff:61: dc:4f:85:f0:df:9d:90:97:ce:42:9f:b8:dd:55:4b: 45:b1:bb:c5:bc:bd:9d:3c:72:93:a5:06:d2:9b:dc: 0f:5d:fc:90:38:bc:f0:33:99:da:4e:06:7c:65:f6: 04:20:b2:94:fd:40:1e:36:d2:25:fb:09:f1:d6:79: d0:38:d6:ad:d2:ea:7a:45:b8:94:c8:0b:64:e3:d7: 0a:ab:5d:59:45:c0:c7:a5:5e:30:40:7e:59:b7:a1: 87:e6:8f:98:04:64:d1:e6:4e:a7:36:29:98:cb:9d: 8e:dc:86:df:84:7b:3e:64:eb:6e:e4:6e:24:a0:f9: 08:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:2B:A9:D7:73:63:52:42:F1:DE:17:E9:05:98:49:89:92:59:06:89 X509v3 Authority Key Identifier: keyid:98:E9:95:BC:3A:4F:F2:CD:08:C6:E3:55:4B:66:37:4B:66:97:92:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mOmVvDpP8s0IxuNVS2Y3S2aXknA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:7e:5d:13:ca:02:aa:71:83:01:ce:28:5a:08:74:cc:d6:85: bc:65:cc:78:79:02:42:81:9d:ba:a4:da:d2:c2:ad:bd:4b:5b: 48:ef:e0:c5:e8:d4:24:70:1c:65:9b:c7:45:80:6d:4d:96:68: 62:9e:44:96:3d:b6:bf:cb:bc:cb:bc:ab:2f:4d:a4:2a:ab:82: d1:60:3b:65:5f:db:96:4a:07:10:78:3e:99:16:18:3f:36:63: 88:26:93:70:1f:5a:50:62:5d:d9:a8:3d:63:aa:d6:86:51:3c: 42:f9:1b:df:fc:da:7e:49:d3:20:7e:71:1d:a1:61:9d:a8:eb: a7:1e:24:6f:1f:54:9c:fe:0f:04:f3:48:73:46:d0:6a:c7:c1: e9:d3:5b:3c:a1:46:40:0a:61:fa:58:1e:95:3b:63:6d:24:ec: 2f:87:f5:5b:96:3f:dc:ad:aa:f2:73:bd:c0:8e:eb:65:e7:b6: b8:a7:96:7f:43:10:01:21:c6:ce:76:72:a0:58:46:47:10:c5: 72:dd:0b:8b:d7:8d:a2:88:11:8e:56:d5:70:fd:5d:ee:cd:a3: f9:fc:96:ef:3a:5e:0b:f9:b0:e6:b6:9a:ce:06:36:3a:56:00: c6:96:84:e4:7a:35:6c:8b:93:1d:57:b2:d6:87:c2:45:99:69: d8:0d:2c:32 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTVGNzExMC8GA1UEBRMoOThFOTk1QkMzQTRGRjJDRDA4QzZFMzU1NEI2NjM3NEI2 Njk3OTI3MDAeFw0yNjA1MTEwODM5MjhaFw0yNjA1MTgwODM5MjhaMBgxFjAUBgNV BAMTDTZhMDE5NWMwLTNhY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD6h6Q10e0po+AnahuoMlPzCNjNHd/P+Eh8Df5KUsuSRLn3oWoFURj/w2QmAPKN OAnsJkIv6O5RM/7+ek3g4s+P533vKrBK6Pw5izAsMm/Kfl9boAILmpVO86bFIetY Z7IGCoZicb8DnnDZYcEZMZ5ZSH0CdaU3MwwkdZ86H+IbfkRY+jT/YdxPhfDfnZCX zkKfuN1VS0Wxu8W8vZ08cpOlBtKb3A9d/JA4vPAzmdpOBnxl9gQgspT9QB420iX7 CfHWedA41q3S6npFuJTIC2Tj1wqrXVlFwMelXjBAflm3oYfmj5gEZNHmTqc2KZjL nY7cht+Eez5k627kbiSg+QgnAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUzSup13Nj UkLx3hfpBZhJiZJZBokwHwYDVR0jBBgwFoAUmOmVvDpP8s0IxuNVS2Y3S2aXknAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBNUY3L0YwRENDREQ0RjFG MTExRjBBQjIxRjkzQjQ1NkY1NkJDL21PbVZ2RHBQOHMwSXh1TlZTMlkzUzJhWGtu QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbU9tVnZEcFA4czBJeHVOVlMyWTNTMmFYa25BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB NUY3L0YwRENDREQ0RjFGMTExRjBBQjIxRjkzQjQ1NkY1NkJDL21PbVZ2RHBQOHMw SXh1TlZTMlkzUzJhWGtuQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAPfl0TygKqcYMBzihaCHTM1oW8Zcx4eQJCgZ26pNrSwq29S1tI7+DF6NQkcBxl m8dFgG1NlmhinkSWPba/y7zLvKsvTaQqq4LRYDtlX9uWSgcQeD6ZFhg/NmOIJpNw H1pQYl3ZqD1jqtaGUTxC+Rvf/Np+SdMgfnEdoWGdqOunHiRvH1Sc/g8E80hzRtBq x8Hp01s8oUZACmH6WB6VO2NtJOwvh/Vblj/craryc73Ajutl57a4p5Z/QxABIcbO dnKgWEZHEMVy3QuL142iiBGOVtVw/V3uzaP5/JbvOl4L+bDmtprOBjY6VgDGloTk ejVsi5MdV7LWh8JFmWnYDSwy -----END CERTIFICATE-----Generated at Wed May 13 02:29:31 2026 by rpki-client