$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: WfDlJRg+qeCr4VueItyTyxQ9EMSmvc8HuMeV4cyFDE8= Subject key identifier: 66:88:56:EA:5E:27:3E:94:B5:9E:D6:CA:E7:18:E0:C4:C0:91:26:49 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0B1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0ACF Signing time: Tue 12 May 2026 19:30:09 +0000 Manifest this update: Tue 12 May 2026 19:30:09 +0000 Manifest next update: Tue 19 May 2026 19:30:09 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: ooueKJoHO+BRHKK6oYQCuU3weKfbi0o6iaN2pFlWeIs=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: fFsNR12R3pP/AJUsoiljuBLUKnPB5wu9KTa5f+JWnzE=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: 3zmhoqDN3914HCGCg2WBUkiHp98MLEWrF9AHJiv1VWs=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: 2CxBlSEZ4s9h+CG+sdkPtbZiMyYV71gXHZ/DNWmS4OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: May 12 19:30:09 2026 GMT Not After : May 19 19:30:09 2026 GMT Subject: CN=6a037fc1-ce8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:dd:ad:31:9c:8a:e5:90:7d:9e:61:d9:2c:b5: 54:87:f8:e3:97:77:61:f8:e1:8c:83:48:29:31:2b: df:78:a0:0f:c6:6b:1e:21:b7:b6:e9:46:0d:8c:8b: 90:d5:53:99:cf:38:52:0d:b8:c8:3c:8b:ff:f9:37: 9d:d7:1a:28:8e:c2:5e:d3:4e:da:46:c0:f7:cd:80: 73:e1:15:10:d8:77:47:c0:25:53:15:9c:0d:e8:de: 1b:05:d7:d0:f6:f7:71:c2:13:ad:79:b3:cf:dc:c3: 61:9c:ca:dc:26:3a:75:c8:f0:59:f1:d9:e2:91:8b: 91:5b:80:e2:78:87:d2:55:14:c2:e0:b3:68:94:f6: 24:c0:40:a9:76:ba:99:5d:2c:54:da:0f:aa:9f:53: 54:dc:5f:6b:71:2e:46:a9:e6:de:69:6e:b5:8f:04: c6:2b:af:66:1b:a9:e6:98:ed:ec:62:95:9b:e5:d2: 46:d3:b6:17:ad:66:b3:61:9b:3d:16:8e:d5:f4:e2: 6c:8c:5e:ca:68:88:94:f4:74:fc:70:fd:b6:d3:eb: 4a:16:68:f5:a0:fd:ad:43:f3:00:93:e4:ca:98:12: 36:1d:96:c5:e0:4a:79:b9:df:79:ed:19:e3:4a:0b: 05:a1:a2:55:78:fd:89:15:81:1e:fb:03:7d:23:f6: 52:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:88:56:EA:5E:27:3E:94:B5:9E:D6:CA:E7:18:E0:C4:C0:91:26:49 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:21:85:74:88:13:07:5e:49:30:c5:bc:ce:18:1c:88:7e:b4: 23:dd:9f:7d:19:ae:88:2f:93:17:21:aa:aa:51:44:0c:e7:33: d1:8a:09:d9:3d:e6:70:97:7f:0a:23:53:75:bc:99:b7:fc:a3: b2:6c:1e:a0:56:a1:83:33:a3:39:59:a0:97:16:c2:b0:99:47: a2:0e:fc:90:71:bc:0f:7f:83:b1:9d:42:f1:f0:54:e0:8f:ba: 69:2c:79:1c:df:0d:cc:6f:cf:bb:c6:42:8c:13:18:84:61:26: 3d:0d:9b:d9:3a:c2:c1:d6:dc:76:aa:aa:0b:f2:ee:04:43:31: 9a:c7:8b:17:a4:85:c9:55:ab:a5:45:44:d6:1e:3f:54:f1:83: 18:15:fd:a0:33:14:3e:b1:54:48:d3:71:0a:dc:b0:b5:e2:1b: c2:5e:58:6b:ce:bc:b1:99:6d:54:33:0f:63:80:e8:4b:e9:8c: eb:a6:7b:e4:bb:39:64:53:14:90:16:5c:f7:84:f1:25:f1:c8: b8:68:f6:fb:89:15:d8:6d:44:21:54:a1:b1:6f:1b:04:9d:15: 6a:e4:95:b0:26:0f:7b:81:7e:87:3a:92:3b:0c:92:56:00:07: 23:9e:7b:35:3b:26:37:38:b4:96:e5:00:bc:7c:71:8b:37:25: a4:21:09:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjYwNTEyMTkzMDA5WhcNMjYwNTE5MTkzMDA5WjAYMRYwFAYD VQQDEw02YTAzN2ZjMS1jZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N2tMZyK5ZB9nmHZLLVUh/jjl3dh+OGMg0gpMSvfeKAPxmseIbe26UYNjIuQ 1VOZzzhSDbjIPIv/+Ted1xoojsJe007aRsD3zYBz4RUQ2HdHwCVTFZwN6N4bBdfQ 9vdxwhOtebPP3MNhnMrcJjp1yPBZ8dnikYuRW4DieIfSVRTC4LNolPYkwECpdrqZ XSxU2g+qn1NU3F9rcS5GqebeaW61jwTGK69mG6nmmO3sYpWb5dJG07YXrWazYZs9 Fo7V9OJsjF7KaIiU9HT8cP220+tKFmj1oP2tQ/MAk+TKmBI2HZbF4Ep5ud957Rnj SgsFoaJVeP2JFYEe+wN9I/ZSBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGaIVupe Jz6UtZ7WyucY4MTAkSZJMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATyGFdIgTB15JMMW8zhgciH60I92ffRmuiC+TFyGqqlFEDOcz0YoJ2T3mcJd/ CiNTdbyZt/yjsmweoFahgzOjOVmglxbCsJlHog78kHG8D3+DsZ1C8fBU4I+6aSx5 HN8NzG/Pu8ZCjBMYhGEmPQ2b2TrCwdbcdqqqC/LuBEMxmseLF6SFyVWrpUVE1h4/ VPGDGBX9oDMUPrFUSNNxCtywteIbwl5Ya868sZltVDMPY4DoS+mM66Z75Ls5ZFMU kBZc94TxJfHIuGj2+4kV2G1EIVShsW8bBJ0VauSVsCYPe4F+hzqSOwySVgAHI557 NTsmNzi0luUAvHxxizclpCEJKA== -----END CERTIFICATE-----Generated at Wed May 13 04:49:20 2026 by rpki-client