$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: SapWTkXVX1fAx3vLAOnvEzNLwe6OgehYd+1itkTn6UU= Subject key identifier: A0:B2:B0:2E:27:DD:AF:BA:96:B6:1D:C4:5D:66:8A:1F:DF:92:A2:32 Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1EED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1EAA Signing time: Tue 12 May 2026 16:04:19 +0000 Manifest this update: Tue 12 May 2026 16:04:19 +0000 Manifest next update: Tue 19 May 2026 16:04:19 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: kDVe4pFsizoSlcDbe7mGkhDPPNzwKlgW3+8JWXD0aAA=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: cWHGKEyK1/n+XzphhsGriIZiXwfaKLq/Wm0XGKlIaZU=) 3: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: LnqeCppjvfZw+kjrXoa/2ToWPDmJSTa9ohrJhVPCflE=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: RsEExvcwJC5E9KwjY1oAwXxgW1IttoQBiLKiJe8oXuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7917 (0x1eed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: May 12 16:04:19 2026 GMT Not After : May 19 16:04:19 2026 GMT Subject: CN=6a034f83-112a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:03:a0:5c:1b:bb:cf:ec:81:da:26:73:16:b4: cb:2b:77:51:3d:1d:f8:1e:75:76:58:cf:77:80:bc: a8:47:71:c4:13:2e:1b:73:c3:ff:e6:28:13:64:67: 0a:85:50:b2:4e:a3:47:1f:73:1e:d0:e7:2f:9a:e9: 2e:f1:19:42:c5:60:32:74:9c:d7:5c:05:27:d7:a6: cc:83:0c:46:82:00:93:0d:18:89:be:e6:37:22:62: f4:aa:80:d2:6b:13:eb:4f:dc:bf:db:4c:f3:85:c4: 15:72:01:38:bc:ab:01:47:9f:2e:e8:04:8c:87:87: 51:85:57:6c:fb:c0:08:25:65:7f:3e:7c:e7:29:98: b9:21:47:dc:08:d8:94:b3:4b:5b:58:88:45:73:a9: f7:88:a9:36:01:9f:f7:10:2c:21:81:db:97:09:6f: fa:4c:06:e8:37:14:1c:af:85:5a:24:48:a3:55:c7: 1c:d2:d2:e2:fd:20:fe:d5:0e:18:d1:7d:13:4c:77: 9c:53:30:75:37:dc:ac:ab:ed:1b:18:eb:f8:a8:50: 2e:3b:0b:87:19:ad:79:eb:a7:da:ae:41:a9:2f:00: 8f:8f:73:8c:2f:9e:f3:fc:3e:3e:3d:9d:50:91:57: b6:e8:c2:4a:a9:eb:99:d5:3c:d8:e6:48:2d:d3:97: 2a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B2:B0:2E:27:DD:AF:BA:96:B6:1D:C4:5D:66:8A:1F:DF:92:A2:32 X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:23:d8:7f:52:ed:2e:2f:22:17:dd:dc:ad:53:bc:58:f6:eb: 34:f6:25:6c:93:09:44:be:1b:f0:65:d3:64:58:52:e8:cc:eb: 3d:69:47:2b:83:fc:3e:ea:ce:e2:bd:ed:49:e4:f9:79:c5:24: e2:f9:ea:43:b4:53:51:43:b6:7a:6e:b8:48:ac:91:28:39:72: 92:6f:e6:95:e6:26:dd:52:3e:a6:34:d1:6f:c2:3d:5e:62:91: 7f:03:84:33:83:7e:c3:a6:0f:5f:59:88:c1:32:4c:d5:55:e7: bf:77:dc:35:97:95:05:14:d5:16:37:98:b6:bc:ea:7c:f6:49: f6:39:fa:55:53:7a:8b:50:93:5b:e0:1f:80:cb:00:81:3f:51: 85:0e:90:ea:a2:1a:6a:7c:4e:b8:ca:f3:fa:4c:b4:46:f0:a6: 56:08:5a:b0:74:88:07:1f:6a:ab:d0:c2:4a:17:d4:4f:cd:1f: 67:83:58:c7:5a:d6:24:c6:35:ed:9a:77:66:fc:32:64:c9:b6: bd:3a:0d:4f:f4:ea:de:87:67:98:a9:4d:2b:58:00:08:18:09: 11:94:6e:29:3f:14:ac:ab:65:3b:9a:81:73:7b:fd:77:a1:83: a2:32:e3:df:d1:c9:7d:35:93:a1:a9:34:ca:ba:34:d9:0d:60: 3c:7e:4f:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjYwNTEyMTYwNDE5WhcNMjYwNTE5MTYwNDE5WjAYMRYwFAYD VQQDEw02YTAzNGY4My0xMTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wOgXBu7z+yB2iZzFrTLK3dRPR34HnV2WM93gLyoR3HEEy4bc8P/5igTZGcK hVCyTqNHH3Me0Ocvmuku8RlCxWAydJzXXAUn16bMgwxGggCTDRiJvuY3ImL0qoDS axPrT9y/20zzhcQVcgE4vKsBR58u6ASMh4dRhVds+8AIJWV/PnznKZi5IUfcCNiU s0tbWIhFc6n3iKk2AZ/3ECwhgduXCW/6TAboNxQcr4VaJEijVccc0tLi/SD+1Q4Y 0X0TTHecUzB1N9ysq+0bGOv4qFAuOwuHGa1566farkGpLwCPj3OML57z/D4+PZ1Q kVe26MJKqeuZ1TzY5kgt05cqHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKCysC4n 3a+6lrYdxF1mih/fkqIyMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOSPYf1LtLi8iF93crVO8WPbrNPYlbJMJRL4b8GXTZFhS6MzrPWlHK4P8PurO 4r3tSeT5ecUk4vnqQ7RTUUO2em64SKyRKDlykm/mleYm3VI+pjTRb8I9XmKRfwOE M4N+w6YPX1mIwTJM1VXnv3fcNZeVBRTVFjeYtrzqfPZJ9jn6VVN6i1CTW+AfgMsA gT9RhQ6Q6qIaanxOuMrz+ky0RvCmVghasHSIBx9qq9DCShfUT80fZ4NYx1rWJMY1 7Zp3ZvwyZMm2vToNT/Tq3odnmKlNK1gACBgJEZRuKT8UrKtlO5qBc3v9d6GDojLj 39HJfTWToak0yro02Q1gPH5Pcg== -----END CERTIFICATE-----Generated at Wed May 13 15:08:16 2026 by rpki-client