$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: YDl6Vd/jvHvY5vHxwe4jIZkTCOguKmlzNp7b+cT+CRE= Subject key identifier: BF:37:56:DE:00:AB:0F:C3:FE:6E:79:C9:06:2B:CC:17:27:9E:89:58 Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 19FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 2037 Signing time: Tue 12 May 2026 16:21:58 +0000 Manifest this update: Tue 12 May 2026 16:21:58 +0000 Manifest next update: Tue 19 May 2026 16:21:58 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: i6rhnfsvqMMoUqDKU8Yfv6YenBT0wbFf3bcEMANH+rs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6650 (0x19fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: May 12 16:21:58 2026 GMT Not After : May 19 16:21:58 2026 GMT Subject: CN=6a0353a6-e7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:bb:b7:5d:d3:ea:8c:49:45:9d:71:65:3c: 83:3b:96:4c:e9:4c:79:a0:9a:49:90:ad:75:28:37: 91:fa:15:a8:a0:5a:e1:83:f9:b1:84:6b:34:6b:8a: 59:43:90:d8:92:86:67:f0:b4:47:c3:53:9b:bf:59: e9:b4:ff:c3:29:46:e1:61:5f:84:dc:53:09:a5:a6: 24:18:75:09:36:1a:79:95:a4:b2:be:ca:ca:49:a5: 28:51:9c:cf:40:e1:16:72:81:64:d3:b2:6e:12:a0: 25:f2:b7:ca:1d:f7:be:cf:c1:09:84:f2:99:dc:9d: bf:5c:68:82:19:25:cd:c6:29:79:c9:0f:3c:be:eb: e4:30:e6:16:f5:36:cb:44:00:fe:18:46:8c:40:d4: 71:f0:21:b0:f8:16:c7:e8:75:cf:04:f8:b8:03:0a: 09:52:e9:df:3e:31:42:fe:70:af:d9:06:97:7f:87: 07:af:4c:b0:3a:5f:ad:bd:ac:81:ec:2f:a7:eb:71: 52:e1:32:fb:fe:cf:e2:85:e5:34:d7:74:f9:a2:fa: 15:1f:b0:2c:c4:90:77:27:36:49:04:7c:a9:ea:c9: a5:92:55:1d:e1:22:0d:73:70:67:a1:f5:5b:a1:78: 19:24:8c:e9:bc:b2:ed:0b:b5:c1:e7:85:30:c9:b6: 76:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:37:56:DE:00:AB:0F:C3:FE:6E:79:C9:06:2B:CC:17:27:9E:89:58 X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:cb:5f:9b:0c:cc:34:08:b0:89:03:09:3a:09:7c:da:18:6f: a6:83:53:27:12:0a:83:a6:48:a0:8b:4f:45:76:be:40:02:f0: 83:49:e5:ed:02:f3:e4:3e:7a:a9:be:20:ee:d8:dc:45:18:ec: 73:91:c3:37:17:5d:21:14:ae:20:ed:78:fd:1c:af:72:24:89: 3d:c5:fe:84:23:a0:e1:1b:db:95:85:58:b9:e8:ee:87:ed:6e: c5:d7:5b:54:c1:3b:13:f5:1d:e5:c3:0e:47:67:46:85:9b:60: 5e:7e:8b:e1:b1:f4:14:28:9c:1c:78:9b:ad:46:14:db:50:64: c7:af:46:4e:f4:e8:a3:d9:bc:9e:5e:52:6f:ba:a9:69:ce:93: 7f:b6:e1:d6:40:b3:22:25:c5:27:79:7e:b7:80:b0:6a:fe:3e: 84:0a:26:9f:63:79:5a:e0:ef:a5:e4:60:4b:82:f5:3e:dc:b1: 7b:c5:91:c0:25:82:df:4d:48:60:76:ba:83:3b:16:e3:24:ad: 91:ab:6f:d4:8b:92:8a:09:87:98:0d:93:62:03:2a:f8:54:f4: f7:1c:cb:30:9a:d1:17:5c:85:c5:2d:4d:be:f1:f0:cc:7e:d3: fe:f0:55:71:aa:33:1e:02:02:53:db:07:66:d3:06:2f:a6:9f: 58:84:6e:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjYwNTEyMTYyMTU4WhcNMjYwNTE5MTYyMTU4WjAYMRYwFAYD VQQDEw02YTAzNTNhNi1lN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwm7t13T6oxJRZ1xZTyDO5ZM6Ux5oJpJkK11KDeR+hWooFrhg/mxhGs0a4pZ Q5DYkoZn8LRHw1Obv1nptP/DKUbhYV+E3FMJpaYkGHUJNhp5laSyvsrKSaUoUZzP QOEWcoFk07JuEqAl8rfKHfe+z8EJhPKZ3J2/XGiCGSXNxil5yQ88vuvkMOYW9TbL RAD+GEaMQNRx8CGw+BbH6HXPBPi4AwoJUunfPjFC/nCv2QaXf4cHr0ywOl+tvayB 7C+n63FS4TL7/s/iheU013T5ovoVH7AsxJB3JzZJBHyp6smlklUd4SINc3BnofVb oXgZJIzpvLLtC7XB54UwybZ2/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL83Vt4A qw/D/m55yQYrzBcnnolYMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAectfmwzMNAiwiQMJOgl82hhvpoNTJxIKg6ZIoItPRXa+QALwg0nl7QLz5D56 qb4g7tjcRRjsc5HDNxddIRSuIO14/RyvciSJPcX+hCOg4RvblYVYuejuh+1uxddb VME7E/Ud5cMOR2dGhZtgXn6L4bH0FCicHHibrUYU21Bkx69GTvToo9m8nl5Sb7qp ac6Tf7bh1kCzIiXFJ3l+t4Cwav4+hAomn2N5WuDvpeRgS4L1Ptyxe8WRwCWC301I YHa6gzsW4yStkatv1IuSigmHmA2TYgMq+FT09xzLMJrRF1yFxS1NvvHwzH7T/vBV caozHgICU9sHZtMGL6afWIRuyg== -----END CERTIFICATE-----Generated at Wed May 13 11:01:41 2026 by rpki-client