$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: YLBaoFR4zguZv3WFXyNhMu2nkFo68u5Sui28rvFLlHY= Subject key identifier: 19:6B:0F:EF:0C:05:94:90:BD:2F:46:58:28:E9:19:D5:B7:3E:06:76 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 012D Signing time: Mon 11 May 2026 05:48:37 +0000 Manifest this update: Mon 11 May 2026 05:48:36 +0000 Manifest next update: Mon 18 May 2026 05:48:36 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: xfOrz5WznQc0l/35w/SD6j1ndu27gI3MoYi9toC2jWo=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 7w241TOLyyucLUDf7OQQ+XxJH6J8zBk8QcqnEOt6c80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: May 11 05:48:36 2026 GMT Not After : May 18 05:48:36 2026 GMT Subject: CN=6a016db5-eb38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fc:2a:c4:7b:99:1d:f1:ee:42:a8:fd:76:46: 2b:8f:8b:42:5c:d8:bc:d8:1e:77:b4:3e:b4:e6:ed: 0d:df:67:58:c2:cf:f7:33:b8:f3:e3:94:f8:82:31: f4:b8:6f:a8:29:e0:a1:88:ff:99:45:bc:b9:c2:0a: 13:de:db:02:c9:2a:0b:0e:ad:0c:a9:3c:c3:6e:ff: 72:83:2d:d9:e5:46:fc:1b:a4:0c:b9:ce:79:5f:fd: 53:b7:00:73:04:72:95:41:e1:76:0c:26:f3:a6:23: 14:9c:63:2b:aa:ff:e9:21:b1:a6:ff:cd:19:f8:bb: de:7b:2e:f4:57:04:28:68:a5:4f:5b:7b:2d:3b:70: 6c:1d:10:be:d5:af:3b:47:ac:11:8d:52:3e:e3:fd: 46:d7:ec:36:f8:29:ff:5e:21:f5:1a:f9:d8:80:82: 38:e7:76:b7:24:fe:33:3a:53:51:08:13:19:f0:88: dc:9a:8d:47:fe:6b:a7:82:c4:b1:d8:5e:50:7f:4e: 35:10:dc:30:65:bf:f5:a8:fe:c5:16:6a:9d:89:0f: f6:12:89:cf:2f:6a:0a:f3:7c:30:5e:1a:ef:3f:b3: f6:46:85:7d:62:77:a0:67:0e:42:9c:a8:2c:e1:97: 30:3e:37:8f:07:73:37:d7:3c:12:f5:8f:7b:c2:40: 50:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6B:0F:EF:0C:05:94:90:BD:2F:46:58:28:E9:19:D5:B7:3E:06:76 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7e:57:98:a2:93:f4:db:d7:84:71:b8:81:b2:ec:34:df:d1: 18:85:b4:f4:25:da:fd:7b:97:d2:3b:24:8a:1e:42:04:2b:81: d6:1a:bf:f1:c0:57:97:50:32:d1:40:9f:e9:81:14:d1:e8:8a: a4:a4:13:3d:44:de:eb:1d:9a:78:a4:57:43:46:ca:ef:2f:05: e3:70:89:ff:1e:ab:1e:c7:ac:7d:a7:b4:c6:75:41:23:28:11: c3:45:1e:b8:07:95:aa:a5:39:9b:9b:cc:d6:6f:26:b4:a1:09: 6e:38:5b:32:11:64:70:0a:8f:4b:ef:8a:b2:82:5d:7e:51:8d: 38:60:45:7f:49:25:6e:38:f6:7e:bb:3a:0d:d9:1f:60:92:d4: 9f:d5:09:7f:d6:cb:be:2b:4b:48:6f:16:e5:a1:6a:85:e6:98: ac:98:44:11:88:b6:1f:a9:75:d0:44:77:d2:6a:aa:73:31:f3: a0:00:0c:93:42:3b:34:e2:ed:48:fe:c5:33:37:28:bb:1f:1c: c7:1a:9c:68:a7:13:70:57:13:f0:7f:27:d8:44:9e:39:f9:5b: 86:da:69:d9:b6:93:a7:25:ff:be:84:32:a7:82:61:4d:fa:b8: 66:2e:a9:41:91:ad:81:f6:93:6a:77:02:7a:ac:93:03:76:ff: 17:ac:0c:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjYwNTExMDU0ODM2WhcNMjYwNTE4MDU0ODM2WjAYMRYwFAYD VQQDEw02YTAxNmRiNS1lYjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/wqxHuZHfHuQqj9dkYrj4tCXNi82B53tD605u0N32dYws/3M7jz45T4gjH0 uG+oKeChiP+ZRby5wgoT3tsCySoLDq0MqTzDbv9ygy3Z5Ub8G6QMuc55X/1TtwBz BHKVQeF2DCbzpiMUnGMrqv/pIbGm/80Z+Lveey70VwQoaKVPW3stO3BsHRC+1a87 R6wRjVI+4/1G1+w2+Cn/XiH1GvnYgII453a3JP4zOlNRCBMZ8Ijcmo1H/mungsSx 2F5Qf041ENwwZb/1qP7FFmqdiQ/2EonPL2oK83wwXhrvP7P2RoV9YnegZw5CnKgs 4ZcwPjePB3M31zwS9Y97wkBQxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBlrD+8M BZSQvS9GWCjpGdW3PgZ2MB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZH5XmKKT9NvXhHG4gbLsNN/RGIW09CXa/XuX0jskih5CBCuB1hq/8cBXl1Ay 0UCf6YEU0eiKpKQTPUTe6x2aeKRXQ0bK7y8F43CJ/x6rHsesfae0xnVBIygRw0Ue uAeVqqU5m5vM1m8mtKEJbjhbMhFkcAqPS++KsoJdflGNOGBFf0klbjj2frs6Ddkf YJLUn9UJf9bLvitLSG8W5aFqheaYrJhEEYi2H6l10ER30mqqczHzoAAMk0I7NOLt SP7FMzcoux8cxxqcaKcTcFcT8H8n2ESeOflbhtpp2baTpyX/voQyp4JhTfq4Zi6p QZGtgfaTancCeqyTA3b/F6wMtg== -----END CERTIFICATE-----Generated at Wed May 13 03:05:01 2026 by rpki-client