$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: JgmdOnKVEVwsE6qXF69GeHgzII2LcK3uNukzKCV4g+8= Subject key identifier: 2B:E4:8F:98:D4:9F:14:A3:7F:05:2D:E6:B1:F9:04:59:4C:23:32:90 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 3639 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 35AB Signing time: Tue 12 May 2026 14:16:26 +0000 Manifest this update: Tue 12 May 2026 14:16:25 +0000 Manifest next update: Tue 19 May 2026 14:16:25 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: 7fGP/vtCeiYWF3QLGk7PitS7zvtcznH0EnxXjOBWYYA=) 2: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: US7l9IRW6KnysaR3hgfIHQKP61jxpaRsUq+BQajlvlE=) 3: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: y6ZiKIpbO8nVe1RhgWjLdE8kQETpbK+AjZQf/Ewa3Fk=) 4: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: 46CC9LcyzFfBkRedCj8zONrcqyJIMjuxJScGt32qKqY=) 5: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: 13OCzHbeP84SVts3fLFM8ezvX9wYG+xk9oztS8IQ/oo=) 6: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: oS/2Yr0f0AX3IY6Qw0kprzC/haS0V2Vl/e9gsEC9t0o=) 7: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: 0TLVORl6wSPXD4zN0o2eNo/c7mH0Sa6LVUUSVrU3gGs=) 8: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: Zl7CL1hILK98z1K1OQnmQBFBX3AF5k+q1EWP8nnTBiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13881 (0x3639) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: May 12 14:16:25 2026 GMT Not After : May 19 14:16:25 2026 GMT Subject: CN=6a03363a-44c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e6:00:c5:00:2f:1b:dd:af:2c:b9:6f:5c:c9: 1a:68:cd:64:8e:07:db:10:48:ae:d5:f4:e3:24:c7: 2e:90:e6:0a:d7:de:9f:79:fc:3e:a6:82:dc:e1:75: f2:cb:3d:56:2b:45:8e:c6:cb:fa:5c:00:c9:2b:9f: 26:51:30:47:9d:36:cc:64:07:ee:e4:29:a7:9e:6d: c1:35:3b:5a:de:81:e2:e5:4f:45:ca:e1:45:f5:a9: 21:85:94:f3:62:72:9a:b9:13:0f:3c:04:a8:10:d3: 57:84:88:13:03:d1:eb:fb:f6:b4:33:45:01:47:a6: bf:63:9b:db:c7:1b:1a:42:32:56:aa:45:31:c4:bd: 67:3c:80:81:34:8d:84:bc:04:2e:8a:99:bf:c2:0b: f5:a2:32:5c:4b:e3:fa:c7:a8:b0:1c:68:fc:22:e8: 39:07:4f:51:74:00:fa:bd:4d:88:ae:73:17:33:ba: 14:c3:ce:89:15:e4:e3:ba:c5:dc:5e:e2:d0:15:86: a7:34:a9:be:9c:58:b1:48:b7:51:87:f4:04:29:bf: 93:20:2f:20:ce:4b:fb:e5:e6:94:92:75:c6:84:5b: ab:15:58:09:3a:b3:95:21:90:2d:bd:69:a5:6b:59: 5f:d0:ac:d5:d0:3d:b8:57:2b:d9:b7:41:cd:5e:42: b5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E4:8F:98:D4:9F:14:A3:7F:05:2D:E6:B1:F9:04:59:4C:23:32:90 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6b:1c:8b:e5:7e:ba:94:29:d3:04:8d:b9:8b:c4:8d:9a:6d: 7f:d4:fa:d5:e3:c4:7f:74:aa:49:af:06:8b:ae:dd:a8:b8:ee: d3:e1:80:55:9d:04:85:e0:c7:f6:2f:61:e2:9d:0f:84:7a:00: 2e:ad:a8:48:85:aa:21:50:d7:44:94:d6:39:47:82:db:c6:0d: c6:f1:71:91:45:20:97:84:ec:9c:1f:98:a5:8d:e3:a7:a8:0e: 13:b9:ec:89:6d:31:e9:30:d2:af:fd:4f:99:13:5c:41:83:47: 53:59:00:24:88:68:04:3b:97:4a:d7:38:b6:4b:b1:f0:3b:a4: 86:ea:4d:47:7d:f3:f2:3d:a1:2f:31:ae:f0:65:ac:c2:50:79: d8:90:65:bf:5a:39:48:9e:fe:95:46:14:ec:3b:4e:8c:2f:e2: 62:8d:12:80:42:be:73:bb:f5:14:11:a1:a7:66:3a:b8:5f:1e: fe:3e:39:39:dc:1a:77:64:91:9b:02:4a:1f:01:ba:43:28:04: aa:1e:d0:52:31:35:af:c4:3a:15:56:0f:5d:5d:f1:a1:55:f2: 60:83:6d:eb:12:01:4e:2d:0b:9e:9e:ab:68:c3:04:6e:71:fe: 19:56:09:10:ed:fc:c6:e2:7f:cf:8a:30:02:73:2d:bb:75:6a: 19:59:9b:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwNTEyMTQxNjI1WhcNMjYwNTE5MTQxNjI1WjAYMRYwFAYD VQQDEw02YTAzMzYzYS00NGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+YAxQAvG92vLLlvXMkaaM1kjgfbEEiu1fTjJMcukOYK196fefw+poLc4XXy yz1WK0WOxsv6XADJK58mUTBHnTbMZAfu5Cmnnm3BNTta3oHi5U9FyuFF9akhhZTz YnKauRMPPASoENNXhIgTA9Hr+/a0M0UBR6a/Y5vbxxsaQjJWqkUxxL1nPICBNI2E vAQuipm/wgv1ojJcS+P6x6iwHGj8Iug5B09RdAD6vU2IrnMXM7oUw86JFeTjusXc XuLQFYanNKm+nFixSLdRh/QEKb+TIC8gzkv75eaUknXGhFurFVgJOrOVIZAtvWml a1lf0KzV0D24VyvZt0HNXkK1twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCvkj5jU nxSjfwUt5rH5BFlMIzKQMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiGsci+V+upQp0wSNuYvEjZptf9T61ePEf3SqSa8Gi67dqLju0+GAVZ0EheDH 9i9h4p0PhHoALq2oSIWqIVDXRJTWOUeC28YNxvFxkUUgl4TsnB+YpY3jp6gOE7ns iW0x6TDSr/1PmRNcQYNHU1kAJIhoBDuXStc4tkux8DukhupNR33z8j2hLzGu8GWs wlB52JBlv1o5SJ7+lUYU7DtOjC/iYo0SgEK+c7v1FBGhp2Y6uF8e/j45Odwad2SR mwJKHwG6QygEqh7QUjE1r8Q6FVYPXV3xoVXyYINt6xIBTi0Lnp6raMMEbnH+GVYJ EO38xuJ/z4owAnMtu3VqGVmbQg== -----END CERTIFICATE-----Generated at Wed May 13 03:12:32 2026 by rpki-client