$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: Xm4i7xCbbudR6mYvA98nroUGDL8BNADGRUyZPo/eeJg= Subject key identifier: 38:F1:63:7F:B6:1E:04:C1:78:F5:22:6B:DE:F5:20:2C:AE:44:F5:8E Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 084A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 0841 Signing time: Tue 12 May 2026 20:58:40 +0000 Manifest this update: Tue 12 May 2026 20:58:39 +0000 Manifest next update: Tue 19 May 2026 20:58:39 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: YOWG5VHiOPvrUp2r05V+ErPixAUT3ZDE6xXTUW/tSHQ=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: 1FYTa+b4b7Loa31EgzeXR7TOb6YS6HpedmRkzfbLWn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2122 (0x84a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: May 12 20:58:39 2026 GMT Not After : May 19 20:58:39 2026 GMT Subject: CN=6a039480-b682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:94:20:a9:1c:5a:17:56:69:ab:e3:c3:31:18: 13:aa:2c:96:d5:b7:dd:a4:17:8b:df:8e:bd:c2:a2: 46:33:5f:fd:6b:bd:a9:e2:35:5a:45:98:5d:3b:4a: 49:f9:dc:84:d4:e9:02:2b:07:29:86:7a:82:1b:8e: 3e:39:22:bc:ea:22:fc:9f:fc:be:67:9f:0b:8c:44: f8:6a:e1:27:5c:0d:49:8c:27:b9:17:bd:eb:ec:4f: 11:53:2b:a1:dc:a1:2b:c5:6b:c8:33:02:78:dc:76: 6e:3d:d2:0d:39:0c:32:f6:52:87:f1:67:31:45:74: a0:cd:47:c1:e6:b3:a8:c2:72:bf:f9:38:96:c5:49: 8e:62:86:cd:39:1b:80:fc:25:1d:25:b8:d6:b1:d1: 6c:3a:8b:2b:bb:45:83:94:87:b4:e1:2d:65:1e:60: b7:20:2e:92:6e:1d:b7:ca:32:2e:be:98:4a:31:ef: d6:95:a2:59:7d:ed:fa:81:0d:d1:52:00:c0:27:1c: 8a:54:e2:09:13:07:eb:4b:41:b3:21:a4:6d:71:63: e6:a0:5a:39:27:99:b3:cd:de:38:87:02:32:9e:b8: 0c:53:96:74:69:2a:7d:2e:9b:7e:1b:f1:59:b9:6d: 26:61:c3:68:85:f7:a4:39:79:64:e3:40:e6:3d:c8: 2d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F1:63:7F:B6:1E:04:C1:78:F5:22:6B:DE:F5:20:2C:AE:44:F5:8E X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f7:98:f5:2a:c7:d9:66:21:a4:ac:63:34:c8:62:b2:f6:b4: b9:d7:c8:03:ad:8f:a9:5e:56:bf:39:20:d3:f9:21:50:5b:12: 87:0d:77:da:67:b5:a0:5f:0b:56:c0:0b:12:16:00:a2:a6:03: 93:48:99:ce:1c:58:2c:35:ca:6b:1c:2f:40:f1:c3:6f:e8:b0: 63:f2:2b:b3:92:9a:41:b9:0f:e6:d4:4c:c4:c2:0b:f3:a3:7e: 24:3a:a4:38:02:ec:5a:97:e9:a8:3e:46:d6:13:ff:98:06:06: 0a:c6:8f:a9:65:df:0e:e5:cd:ec:b2:90:61:12:18:c2:91:12: c1:1f:b5:ce:14:f3:88:9f:a6:43:c0:ea:f9:8a:1a:6e:05:e8: 1e:0f:5b:db:40:58:8d:5e:7e:8f:b4:3e:73:6b:96:d9:8b:e4: 8e:07:21:54:34:3d:65:a2:db:8b:14:02:6f:18:fc:9a:9c:1c: 28:22:16:2f:23:07:66:a8:93:c1:ac:3d:9a:d0:0e:9e:05:a3: de:3f:d1:85:fe:4b:0c:a3:0f:b9:89:15:11:8b:a7:b9:d4:f4: 02:ae:58:d8:58:1f:f8:43:5c:47:71:d2:f3:1c:7d:81:22:f4: bb:aa:fc:0b:01:5c:62:e6:88:ae:99:f6:41:de:0c:70:cc:1e: be:f7:74:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjYwNTEyMjA1ODM5WhcNMjYwNTE5MjA1ODM5WjAYMRYwFAYD VQQDEw02YTAzOTQ4MC1iNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpQgqRxaF1Zpq+PDMRgTqiyW1bfdpBeL3469wqJGM1/9a72p4jVaRZhdO0pJ +dyE1OkCKwcphnqCG44+OSK86iL8n/y+Z58LjET4auEnXA1JjCe5F73r7E8RUyuh 3KErxWvIMwJ43HZuPdINOQwy9lKH8WcxRXSgzUfB5rOownK/+TiWxUmOYobNORuA /CUdJbjWsdFsOosru0WDlIe04S1lHmC3IC6Sbh23yjIuvphKMe/WlaJZfe36gQ3R UgDAJxyKVOIJEwfrS0GzIaRtcWPmoFo5J5mzzd44hwIynrgMU5Z0aSp9Lpt+G/FZ uW0mYcNohfekOXlk40DmPcgtzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDjxY3+2 HgTBePUia971ICyuRPWOMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATfeY9SrH2WYhpKxjNMhisva0udfIA62PqV5Wvzkg0/khUFsShw132me1oF8L VsALEhYAoqYDk0iZzhxYLDXKaxwvQPHDb+iwY/Irs5KaQbkP5tRMxMIL86N+JDqk OALsWpfpqD5G1hP/mAYGCsaPqWXfDuXN7LKQYRIYwpESwR+1zhTziJ+mQ8Dq+Yoa bgXoHg9b20BYjV5+j7Q+c2uW2YvkjgchVDQ9ZaLbixQCbxj8mpwcKCIWLyMHZqiT waw9mtAOngWj3j/Rhf5LDKMPuYkVEYunudT0Aq5Y2Fgf+ENcR3HS8xx9gSL0u6r8 CwFcYuaIrpn2Qd4McMwevvd0lA== -----END CERTIFICATE-----Generated at Wed May 13 17:49:57 2026 by rpki-client