$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: WOSLN1Hvvz8hbyG1CLzK1/6VlTEv+nETWDtb5QwMGhQ= Subject key identifier: 2E:C8:00:60:1D:D3:C8:4C:D3:B5:5A:D3:F7:7E:21:25:B2:E2:9D:86 Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 0A6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 0A58 Signing time: Tue 12 May 2026 19:45:12 +0000 Manifest this update: Tue 12 May 2026 19:45:11 +0000 Manifest next update: Tue 19 May 2026 19:45:11 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: K/j1DLMjoEu0Mtg4LqS7cQkx0NgtzGB+xj/hbGiqeUs=) 2: 49484A22DDBE11F0A59AB1524A6F56BC.roa (hash: EUoTZeexjkbb7zufCQtahAm8AEeFMiE7APDK7et0hJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2668 (0xa6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: May 12 19:45:11 2026 GMT Not After : May 19 19:45:11 2026 GMT Subject: CN=6a038348-a503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:30:7a:9d:54:06:eb:bf:95:0f:4d:12:7f:94: 4a:8f:0d:4e:89:9c:86:35:a9:da:2e:2c:7b:b3:7b: aa:32:23:8f:7e:4b:02:09:93:a7:39:94:b4:2a:5c: 26:cb:b2:19:37:21:22:71:96:f4:25:4a:40:b7:18: 2e:f4:65:45:fb:c5:83:6f:49:3d:7a:a1:a4:09:5b: cb:e7:0d:18:d5:84:3d:14:f3:5d:5c:87:e9:9f:6c: 8b:03:8f:4a:a4:a3:a9:f1:e7:8d:e9:32:a7:85:59: f8:6a:e8:17:f6:ec:e5:bf:49:64:d4:c8:19:dc:5d: 61:01:0a:80:11:c8:02:95:a3:fd:73:0e:da:cf:af: 72:f1:03:57:a2:f8:15:58:47:43:97:47:b8:05:72: 41:85:61:6d:e7:e3:89:46:6e:43:df:5d:43:07:87: a3:01:34:88:d1:83:01:e2:b2:e9:fb:20:2f:ea:48: 49:7a:07:a9:2c:60:cc:2d:5c:99:1e:a1:df:cb:3f: e7:7d:37:44:63:d8:17:ac:d3:15:f0:85:ff:59:ba: 21:4b:ce:97:48:dd:70:f7:e0:ef:a8:b9:9c:14:03: 46:3c:a2:f8:93:20:e6:07:d4:5e:3b:75:6e:b8:9c: 06:1d:35:6a:3d:de:e1:d9:88:c7:c6:ad:f1:8f:d3: 4f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C8:00:60:1D:D3:C8:4C:D3:B5:5A:D3:F7:7E:21:25:B2:E2:9D:86 X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:bb:c7:f6:b1:83:fe:2b:35:13:87:7b:64:15:39:e9:84:bd: fa:68:44:62:7f:78:16:a3:71:02:aa:ac:52:53:4f:cc:b8:77: 95:13:02:71:bc:ad:3d:3e:9f:0e:77:0a:96:0d:8b:dd:d8:81: 1b:cd:e1:03:e8:a0:18:4b:ad:85:00:4d:62:18:af:16:0b:7e: b1:19:af:52:49:2d:40:4a:84:cd:b6:a6:97:8a:f2:91:5e:f5: 94:3e:85:06:99:90:69:84:e5:94:e0:3c:fd:71:a3:d5:fd:4c: 0e:f3:04:6e:9b:72:3a:01:80:6a:96:ba:9a:98:a9:2a:82:c3: dc:4a:bb:47:b7:52:85:c6:8b:27:01:99:f9:a8:d7:04:25:fe: f8:31:74:2d:7d:0d:e7:e6:2f:39:cb:e2:bb:42:31:9d:27:08: fa:9f:13:29:eb:98:2c:2e:d8:5c:f1:69:75:44:8c:8e:ec:56: 9c:9a:b5:c8:d7:1d:d0:f3:2a:59:4c:d9:74:ee:1e:8d:3d:65: 60:60:94:95:ba:ca:5f:70:c8:f0:59:12:4a:21:78:ad:34:3a: bc:20:71:bd:fb:85:85:93:e4:7a:f8:1f:40:52:20:1a:7c:76: 0b:e4:26:2f:cf:b6:c7:74:8a:fa:b0:51:58:61:3d:46:dd:d4: 06:14:34:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjYwNTEyMTk0NTExWhcNMjYwNTE5MTk0NTExWjAYMRYwFAYD VQQDEw02YTAzODM0OC1hNTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DB6nVQG67+VD00Sf5RKjw1OiZyGNanaLix7s3uqMiOPfksCCZOnOZS0Klwm y7IZNyEicZb0JUpAtxgu9GVF+8WDb0k9eqGkCVvL5w0Y1YQ9FPNdXIfpn2yLA49K pKOp8eeN6TKnhVn4augX9uzlv0lk1MgZ3F1hAQqAEcgClaP9cw7az69y8QNXovgV WEdDl0e4BXJBhWFt5+OJRm5D311DB4ejATSI0YMB4rLp+yAv6khJegepLGDMLVyZ HqHfyz/nfTdEY9gXrNMV8IX/WbohS86XSN1w9+DvqLmcFANGPKL4kyDmB9ReO3Vu uJwGHTVqPd7h2YjHxq3xj9NPSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC7IAGAd 08hM07Va0/d+ISWy4p2GMB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAELvH9rGD/is1E4d7ZBU56YS9+mhEYn94FqNxAqqsUlNPzLh3lRMCcbytPT6f DncKlg2L3diBG83hA+igGEuthQBNYhivFgt+sRmvUkktQEqEzbaml4rykV71lD6F BpmQaYTllOA8/XGj1f1MDvMEbptyOgGAapa6mpipKoLD3Eq7R7dShcaLJwGZ+ajX BCX++DF0LX0N5+YvOcviu0IxnScI+p8TKeuYLC7YXPFpdUSMjuxWnJq1yNcd0PMq WUzZdO4ejT1lYGCUlbrKX3DI8FkSSiF4rTQ6vCBxvfuFhZPkevgfQFIgGnx2C+Qm L8+2x3SK+rBRWGE9Rt3UBhQ0yw== -----END CERTIFICATE-----Generated at Wed May 13 13:36:07 2026 by rpki-client