$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft File: b70F9jC-RBCpUSzbaahco3zoxzk.mft (raw, json) Hash identifier: QIlZSjkuIUwLiGMv3QLosAwqkU/ScXD/ieYWUCRycF0= Subject key identifier: 58:2C:52:A8:D6:B1:F8:CA:17:1F:63:B7:56:BF:D9:B7:EE:86:D3:DF Authority key identifier: 6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39 Certificate issuer: /CN=A91DC897/serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft Manifest number: 37 Signing time: Mon 11 May 2026 08:48:55 +0000 Manifest this update: Mon 11 May 2026 08:48:55 +0000 Manifest next update: Mon 18 May 2026 08:48:55 +0000 Files and hashes: 1: b70F9jC-RBCpUSzbaahco3zoxzk.crl (hash: j3YQvArHXzH7BCjpAtFNY6/7gXlv237CDUQ4lbZTXeY=) 2: 2764AC08003111F18836FC08486F56BC.roa (hash: yELvoRc3S+vHFcCwKMNPwYPmKbFYr2Z48ucu1l1HAEs=) 3: B8EA8ABC033311F1AAD74374203D8C67.roa (hash: VGTwiIqmaXq4MsscshpbxlIvpQ6VN4x9kiDNRx4VLZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC897, serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739 Validity Not Before: May 11 08:48:55 2026 GMT Not After : May 18 08:48:55 2026 GMT Subject: CN=6a0197f7-3706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e1:84:a2:d3:fa:e6:50:ad:4c:e1:be:8f:f3: f0:66:e0:cd:5f:97:0c:1d:33:14:a1:d4:e8:10:ea: e4:a3:67:8f:60:0e:d0:7f:dc:a2:42:4e:7b:18:1a: 33:80:7e:43:aa:2f:41:10:50:32:a1:ad:a4:44:6e: 1f:3c:15:47:b0:59:e2:fc:1e:c4:6e:96:dc:28:1b: 25:67:d7:e4:ab:ce:13:a2:2d:7b:18:fd:d5:2d:92: 78:9b:05:4c:e0:60:39:91:8d:29:13:e1:e1:07:47: 88:da:cd:90:95:40:72:61:6f:d1:90:c4:aa:01:4f: ef:6a:8f:8b:11:51:55:72:57:ba:31:53:37:de:01: 57:e0:65:2e:7f:ba:13:30:66:a9:51:67:35:15:e9: a0:62:da:49:73:c8:ec:e1:55:bc:5d:b6:11:73:d2: ad:f9:56:4d:80:ac:f2:0d:4f:15:9b:68:d7:04:89: d3:0d:80:f3:73:c8:34:fa:01:60:e5:f1:95:5f:72: 3d:b1:70:a2:b8:cc:83:d9:68:fe:11:36:fb:94:ce: b8:b7:96:dc:14:0e:60:24:57:a0:92:f0:5c:d8:10: d4:78:8b:e7:5b:ab:0f:84:e7:44:13:88:3d:cb:ac: 86:a4:06:31:de:4b:7f:31:a9:ef:7d:76:70:55:71: 4e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2C:52:A8:D6:B1:F8:CA:17:1F:63:B7:56:BF:D9:B7:EE:86:D3:DF X509v3 Authority Key Identifier: keyid:6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:86:f6:76:9b:0e:da:29:cb:6f:95:ff:8d:d4:91:b1:5c:c8: 6e:cd:c1:16:88:23:d7:b3:7c:73:63:1d:f8:96:a3:06:07:6f: 58:94:9e:3c:38:9c:a7:80:7a:a9:e1:c0:14:6e:0d:67:e2:37: 21:75:cb:e5:47:08:d9:35:99:2d:26:27:7c:95:46:47:36:2c: df:5f:c7:d1:75:eb:f5:e0:cf:32:0b:2d:3a:73:ce:48:d7:11: 64:2d:ea:ae:a6:8e:fa:5e:40:52:20:d8:d5:b0:ea:86:9d:c2: 76:bf:eb:0e:c7:bb:cc:8e:28:b8:31:df:49:2e:18:3b:3b:e1: 62:0c:e8:c1:28:fd:e3:6c:a3:0f:af:22:1a:64:45:12:31:4f: 4b:3d:70:5f:50:80:c3:5b:ae:ad:26:9c:6d:0d:5b:90:e2:c9: df:67:30:33:de:39:90:ee:87:d3:4a:62:aa:72:51:66:a4:5a: a4:3f:43:f2:e4:b7:de:1b:9a:64:74:30:78:3f:d5:7b:21:9e: 9d:a4:01:10:3f:19:01:29:20:71:eb:2b:31:dd:9b:c9:cf:82: 67:b9:00:16:a0:43:2e:ae:39:0b:02:6f:65:9d:8b:d7:87:81: 63:ec:1c:3e:4a:b4:fa:5e:4f:7c:df:d8:d6:9a:2c:88:84:ce: 36:2e:4d:39 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qzg5NzExMC8GA1UEBRMoNkZCRDA1RjYzMEJFNDQxMEE5NTEyQ0RCNjlBODVDQTM3 Q0U4QzczOTAeFw0yNjA1MTEwODQ4NTVaFw0yNjA1MTgwODQ4NTVaMBgxFjAUBgNV BAMTDTZhMDE5N2Y3LTM3MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM4YSi0/rmUK1M4b6P8/Bm4M1flwwdMxSh1OgQ6uSjZ49gDtB/3KJCTnsYGjOA fkOqL0EQUDKhraREbh88FUewWeL8HsRultwoGyVn1+SrzhOiLXsY/dUtknibBUzg YDmRjSkT4eEHR4jazZCVQHJhb9GQxKoBT+9qj4sRUVVyV7oxUzfeAVfgZS5/uhMw ZqlRZzUV6aBi2klzyOzhVbxdthFz0q35Vk2ArPINTxWbaNcEidMNgPNzyDT6AWDl 8ZVfcj2xcKK4zIPZaP4RNvuUzri3ltwUDmAkV6CS8FzYENR4i+dbqw+E50QTiD3L rIakBjHeS38xqe99dnBVcU7JAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUWCxSqNax +MoXH2O3Vr/Zt+6G098wHwYDVR0jBBgwFoAUb70F9jC+RBCpUSzbaahco3zoxzkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDODk3LzdGNEU2M0VDMDAz MDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJDcFVTemJhYWhjbzN6b3h6 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvYjcwRjlqQy1SQkNwVVN6YmFhaGNvM3pveHprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD ODk3LzdGNEU2M0VDMDAzMDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJD cFVTemJhYWhjbzN6b3h6ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC+hvZ2mw7aKctvlf+N1JGxXMhuzcEWiCPXs3xzYx34lqMGB29YlJ48OJyngHqp 4cAUbg1n4jchdcvlRwjZNZktJid8lUZHNizfX8fRdev14M8yCy06c85I1xFkLequ po76XkBSINjVsOqGncJ2v+sOx7vMjii4Md9JLhg7O+FiDOjBKP3jbKMPryIaZEUS MU9LPXBfUIDDW66tJpxtDVuQ4snfZzAz3jmQ7ofTSmKqclFmpFqkP0Py5LfeG5pk dDB4P9V7IZ6dpAEQPxkBKSBx6ysx3ZvJz4JnuQAWoEMurjkLAm9lnYvXh4Fj7Bw+ SrT6Xk9839jWmiyIhM42Lk05 -----END CERTIFICATE-----Generated at Wed May 13 00:03:18 2026 by rpki-client