$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: UFVpt05UzM139tGQYdaANVyr7AucQngP7XfsaiiV3b8= Subject key identifier: 88:02:2C:BC:D6:2F:BF:6B:D8:82:2A:74:8B:D8:BD:19:A7:17:ED:72 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: CE Signing time: Wed 13 May 2026 06:57:57 +0000 Manifest this update: Wed 13 May 2026 06:57:56 +0000 Manifest next update: Wed 20 May 2026 06:57:56 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: h2gRHAICTGtUteX2EjRvX/b3mqxefZGSptDjRMDBNSI=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: lKCCxnQLqgGAAxb0II04awvwUyFApZ9TGbpShXSvZgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: May 13 06:57:56 2026 GMT Not After : May 20 06:57:56 2026 GMT Subject: CN=6a0420f5-4331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d2:61:64:a5:e8:cb:a9:63:4c:94:bf:25:e6: 4c:ae:26:ad:e8:32:c4:08:c5:36:70:c0:e0:c0:69: 31:6b:44:c7:5c:49:b5:3d:3e:d9:8a:f3:9b:13:c8: af:2f:45:61:e1:79:58:16:71:4a:ad:68:8b:07:ec: 07:6e:bb:e8:2d:33:26:55:87:1a:a9:90:61:eb:bf: f4:13:60:6e:72:db:c3:af:0e:84:93:6a:44:ae:5e: dc:c3:9f:b8:dc:6d:66:79:72:a1:e3:c4:1d:3f:2d: 0f:d9:01:08:c8:eb:d4:e5:09:3e:b6:d8:f4:98:a0: fd:e9:b1:7f:ea:a8:0f:22:c4:a9:a7:28:44:5d:93: af:09:7f:3a:72:03:3e:88:f4:22:f4:84:52:e0:61: 6e:9b:28:3d:d4:3a:4d:c7:2a:14:9f:2d:4d:fe:b4: 36:44:8f:b6:d6:06:79:89:01:9c:56:a5:d1:17:a8: 3f:d6:3a:21:47:ac:09:55:87:8b:42:7a:84:85:23: ca:97:3c:e5:a5:8b:db:a1:c4:46:2c:0f:b5:a6:82: fb:f7:ce:16:ae:66:21:f3:f1:09:f3:0f:ce:4f:a2: 3f:33:f5:ee:95:ce:63:cf:a3:88:ce:fc:aa:5c:80: b7:23:dc:6a:90:33:e9:db:93:7c:61:c6:68:16:7a: 0b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:02:2C:BC:D6:2F:BF:6B:D8:82:2A:74:8B:D8:BD:19:A7:17:ED:72 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:75:ac:67:4a:2a:4b:c5:e6:b0:95:99:bc:59:0c:29:2e:dc: 1c:6d:ed:da:2b:57:00:4a:90:b3:51:00:83:2e:33:a2:06:2a: 4c:ac:4e:fd:3d:a5:0a:73:f3:bf:22:f0:24:5f:d4:80:02:3c: df:4c:58:fa:50:23:f5:6b:08:9e:c7:28:59:39:15:22:7d:ae: 6c:23:d4:44:67:19:2f:92:68:7b:c0:64:68:a9:04:26:e0:ea: de:f7:b4:bb:a9:44:35:35:81:32:56:7b:73:8e:7c:2e:ac:ee: 47:67:f6:ef:22:79:31:83:cf:17:ed:59:cd:8a:68:f7:ef:4d: b1:91:6d:07:50:f8:23:58:b1:54:93:36:64:ca:d8:65:e6:f5: 8a:7e:43:1b:ed:46:40:75:25:fc:0e:f9:c7:38:b3:3b:60:9d: ce:c4:c1:2d:a4:7f:24:3e:df:64:aa:ba:82:f6:f6:67:74:8a: 15:4e:ea:19:ce:70:b6:83:12:8f:94:6c:d6:46:6a:ef:7e:8d: 2d:b7:d1:a6:d5:d1:54:19:bf:b2:e6:35:71:59:c6:47:7e:54: 4f:f0:98:a6:72:46:b6:15:b3:a2:8f:2b:f1:0c:06:1e:85:a1: 64:68:55:93:41:99:22:55:f5:5b:d2:38:ae:6b:ef:2d:00:b6: 5b:0e:4b:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwNTEzMDY1NzU2WhcNMjYwNTIwMDY1NzU2WjAYMRYwFAYD VQQDEw02YTA0MjBmNS00MzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dJhZKXoy6ljTJS/JeZMriat6DLECMU2cMDgwGkxa0THXEm1PT7ZivObE8iv L0Vh4XlYFnFKrWiLB+wHbrvoLTMmVYcaqZBh67/0E2BuctvDrw6Ek2pErl7cw5+4 3G1meXKh48QdPy0P2QEIyOvU5Qk+ttj0mKD96bF/6qgPIsSppyhEXZOvCX86cgM+ iPQi9IRS4GFumyg91DpNxyoUny1N/rQ2RI+21gZ5iQGcVqXRF6g/1johR6wJVYeL QnqEhSPKlzzlpYvbocRGLA+1poL7984WrmYh8/EJ8w/OT6I/M/Xulc5jz6OIzvyq XIC3I9xqkDPp25N8YcZoFnoLJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIgCLLzW L79r2IIqdIvYvRmnF+1yMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpV V3hfMm9LU3ZZR0J2T3owSTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANHWsZ0oqS8XmsJWZvFkMKS7cHG3t2itXAEqQs1EAgy4zogYqTKxO/T2lCnPz vyLwJF/UgAI830xY+lAj9WsInscoWTkVIn2ubCPURGcZL5Joe8BkaKkEJuDq3ve0 u6lENTWBMlZ7c458LqzuR2f27yJ5MYPPF+1ZzYpo9+9NsZFtB1D4I1ixVJM2ZMrY Zeb1in5DG+1GQHUl/A75xzizO2CdzsTBLaR/JD7fZKq6gvb2Z3SKFU7qGc5wtoMS j5Rs1kZq736NLbfRptXRVBm/suY1cVnGR35UT/CYpnJGthWzoo8r8QwGHoWhZGhV k0GZIlX1W9I4rmvvLQC2Ww5LZw== -----END CERTIFICATE-----Generated at Wed May 13 10:53:30 2026 by rpki-client