$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: Rlb+t+757aZ400aYP7q3XbkGMOrxejzhcMEeu/fBxM0= Subject key identifier: 13:8A:BD:5A:81:99:5A:07:11:1F:EB:FF:B9:27:55:CC:78:86:70:34 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 025D Signing time: Wed 13 May 2026 02:30:18 +0000 Manifest this update: Wed 13 May 2026 02:30:17 +0000 Manifest next update: Wed 20 May 2026 02:30:17 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: nSNGdeW+TQgn1/g2oBiByLjB3E1kXF3Yn85ytHQV2OI=) 2: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: eUh3+0eNlTLz/GijzP1F9VFF/VuE/2wjuZ3Eqz98/Ac=) 3: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: xl+ZGGMMsQzXdRoVvAevwVbibKiAjAP36zHm8LVE2Zw=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: rqdiCtjrx/nRHSFBDJET2Hy4bfU3/bkdX125W59d+co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: May 13 02:30:17 2026 GMT Not After : May 20 02:30:17 2026 GMT Subject: CN=6a03e23a-1277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:59:10:12:92:98:03:85:52:4e:c0:b6:97:6b: e7:fe:b2:bb:51:50:fd:c1:44:d3:0e:bb:11:bb:82: e2:14:6f:cc:83:cf:8d:f8:c5:17:8c:28:2c:79:bf: 30:61:3b:d3:9d:6a:e6:a4:8c:01:af:7d:3b:e5:8b: 94:ab:62:74:a3:55:4a:ea:19:60:54:90:b8:28:9b: 24:32:c0:ae:b8:e1:cd:b4:14:26:e2:19:6e:68:8d: 39:0c:b9:cd:09:e4:e6:d5:7f:e6:cc:2b:27:c9:9a: 0d:50:60:52:1b:6e:1d:58:30:2e:23:8b:42:80:da: 0f:e6:2c:96:fd:47:1c:5e:43:b3:a6:1a:d7:23:5a: 87:41:d9:e5:fd:e3:a8:16:7d:3c:50:55:6d:e7:a8: 78:6e:49:14:13:2c:7c:73:cd:f8:ea:d6:46:fc:ca: 8a:c7:b1:30:b7:3d:81:d4:41:0e:20:b8:2f:a0:63: d6:0d:e9:41:8c:47:cc:bd:9f:0e:72:bf:59:e9:79: b3:35:f8:c4:9e:c3:17:a9:12:d5:5d:c3:62:a3:ae: d8:52:45:e8:f5:ae:f8:8b:e0:24:36:c0:04:d6:a6: ab:3a:b5:40:d4:76:8b:e6:bd:c0:22:2d:34:d4:fb: 4a:ab:ac:52:55:73:21:7a:b0:76:bf:f8:27:90:7d: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8A:BD:5A:81:99:5A:07:11:1F:EB:FF:B9:27:55:CC:78:86:70:34 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:5d:07:34:b2:e1:f9:9b:e2:16:99:34:30:25:ea:f0:7b:e4: 52:be:53:38:59:7d:0f:0c:06:fc:49:f1:fb:08:0f:19:d6:d8: 33:f6:94:5b:62:c0:51:a7:36:b1:80:a6:2e:29:a8:0e:ed:1d: 04:59:51:46:86:16:99:22:fd:6c:5a:5a:63:df:99:5b:b9:97: fc:60:88:d6:97:0b:71:ea:45:21:64:d8:4c:09:1d:e8:02:44: f2:47:35:1f:c3:24:93:ea:fe:b3:68:28:49:7b:69:e3:e2:b4: 76:87:47:a9:9f:73:2e:4d:7a:8c:4b:fd:3d:5a:60:4d:26:9f: 32:51:b5:91:72:74:60:0e:25:d3:8f:a4:74:5d:c6:bf:03:2c: e6:73:81:be:fa:2f:c8:43:c7:61:6d:be:43:ff:4b:09:6b:61: 78:cd:14:66:bc:c4:c4:e8:f6:c3:61:cc:70:ae:6a:fd:f1:f3: 6d:52:9c:fb:89:94:17:c7:fd:1c:cd:00:6d:c2:02:7e:c1:10: e8:68:19:52:bc:d2:45:b5:0b:91:e2:f2:0c:05:76:3a:56:67: 1d:26:77:1c:d9:8c:1e:56:23:aa:89:08:2c:5a:4c:75:d5:07: 50:a6:de:9d:f6:f6:40:db:54:94:5c:fd:77:73:54:f0:86:37: 4d:55:7e:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjYwNTEzMDIzMDE3WhcNMjYwNTIwMDIzMDE3WjAYMRYwFAYD VQQDEw02YTAzZTIzYS0xMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlkQEpKYA4VSTsC2l2vn/rK7UVD9wUTTDrsRu4LiFG/Mg8+N+MUXjCgseb8w YTvTnWrmpIwBr3075YuUq2J0o1VK6hlgVJC4KJskMsCuuOHNtBQm4hluaI05DLnN CeTm1X/mzCsnyZoNUGBSG24dWDAuI4tCgNoP5iyW/UccXkOzphrXI1qHQdnl/eOo Fn08UFVt56h4bkkUEyx8c8346tZG/MqKx7Ewtz2B1EEOILgvoGPWDelBjEfMvZ8O cr9Z6XmzNfjEnsMXqRLVXcNio67YUkXo9a74i+AkNsAE1qarOrVA1HaL5r3AIi00 1PtKq6xSVXMherB2v/gnkH2b8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBOKvVqB mVoHER/r/7knVcx4hnA0MB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADF0HNLLh+ZviFpk0MCXq8HvkUr5TOFl9DwwG/Enx+wgPGdbYM/aUW2LAUac2 sYCmLimoDu0dBFlRRoYWmSL9bFpaY9+ZW7mX/GCI1pcLcepFIWTYTAkd6AJE8kc1 H8Mkk+r+s2goSXtp4+K0dodHqZ9zLk16jEv9PVpgTSafMlG1kXJ0YA4l04+kdF3G vwMs5nOBvvovyEPHYW2+Q/9LCWtheM0UZrzExOj2w2HMcK5q/fHzbVKc+4mUF8f9 HM0AbcICfsEQ6GgZUrzSRbULkeLyDAV2OlZnHSZ3HNmMHlYjqokILFpMddUHUKbe nfb2QNtUlFz9d3NU8IY3TVV+7w== -----END CERTIFICATE-----Generated at Wed May 13 10:53:56 2026 by rpki-client