$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: q1GkVd3KBP1FtLF8KUimBvWMX13uhEOemlgd9yExLdM= Subject key identifier: 39:C5:6F:51:B9:1A:26:2E:C9:7C:71:E4:C9:48:85:3E:E6:B2:6A:37 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0E32 Signing time: Tue 12 May 2026 17:53:27 +0000 Manifest this update: Tue 12 May 2026 17:53:26 +0000 Manifest next update: Tue 19 May 2026 17:53:26 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: Lg7SLqZwA34V6maTnJEkTb+PyNpY4sQVQLdo5F+a79Q=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: GS10eEt1MCcAl1eDM0DD66Q/CuCpMh/GfO+nM5nY1Wc=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: V7vJC1rGtCuOdSFWDJjdd3JhuVIPp/Zsx063dJpSpzo=) 4: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: r4+DOtWwyuCWCou7THCDzdNsPWvF2TgJVmwFVcXYJF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: May 12 17:53:26 2026 GMT Not After : May 19 17:53:26 2026 GMT Subject: CN=6a036917-0b5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:57:44:ca:94:f4:7f:1f:00:41:01:b5:80:46: 3d:a0:8c:77:26:9a:a2:47:55:00:1d:cb:6f:4c:e8: d5:4f:b9:78:ec:f4:40:0a:67:c8:b4:bd:d0:7e:32: 3e:1e:c0:89:bd:0d:c0:66:ed:2b:b8:ae:e2:ea:31: 03:7c:41:3a:33:a5:00:94:d3:31:11:74:50:28:e9: e9:7a:b1:12:e9:63:9d:79:9b:f7:9a:8e:ea:99:61: ae:01:91:f8:2b:c7:86:2d:c0:4e:a1:2a:a4:ae:ce: 4e:c7:08:2c:eb:f7:24:7a:65:c2:a4:f5:3b:bb:71: 81:1c:18:96:f2:8c:cc:12:db:8d:4e:47:12:99:7e: fc:38:4c:46:0f:b6:ad:ac:21:41:76:34:c6:d9:7d: 7a:3c:35:95:70:58:d0:b2:f4:4b:a7:08:3e:17:69: a4:99:6a:65:d2:d2:1a:6b:8b:2d:d0:d9:d6:47:e0: 1b:8f:f6:31:3f:ea:a8:9b:87:65:fd:34:e6:32:a1: a5:78:86:0f:0d:c2:e9:1b:80:83:35:22:29:26:0f: 1a:24:1d:71:8a:48:de:12:2d:84:94:c8:c7:61:13: df:4f:51:3a:86:4e:fb:91:e2:19:9b:e4:1f:bb:4b: d6:58:da:dd:76:bf:94:94:e6:70:cd:e2:9d:22:9f: ed:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C5:6F:51:B9:1A:26:2E:C9:7C:71:E4:C9:48:85:3E:E6:B2:6A:37 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:9e:02:20:fc:4b:af:e3:1b:a5:c7:2c:58:5e:36:dd:5e:92: f2:c6:82:b4:ed:ab:6c:4e:f9:56:94:c9:92:c3:73:dc:4f:15: 75:d5:be:1b:4f:21:52:d2:b3:cb:cc:c5:5a:b8:5f:59:7a:23: 61:cb:6f:a7:22:a7:9a:45:86:fe:97:d2:da:90:ac:48:26:ea: 89:e8:90:41:b0:18:dc:43:9f:e3:42:6f:9c:f3:cc:4d:33:d8: 9d:39:9c:75:ff:7d:0a:2d:7e:8a:da:5e:49:e8:c3:67:51:f7: f7:36:38:28:a6:51:64:9f:84:4c:95:13:14:8d:35:f7:a3:f5: 5d:8e:7c:0d:9a:e1:7d:d8:8c:0f:0f:ea:4b:ad:a0:b4:41:aa: fb:84:d1:a0:2c:a2:f0:1b:71:cd:bf:f9:2f:97:bf:47:6b:81: e5:98:fb:8b:6d:56:fe:52:29:0e:29:5e:bd:6a:db:66:15:86: 7f:30:ab:d0:11:55:10:58:40:e6:4d:f3:bf:50:fa:d3:da:9c: 51:c9:d2:7b:14:ab:79:be:7c:d7:a3:52:d6:82:f2:ac:d4:7b: 0e:f2:ce:b5:d8:0e:9f:93:3f:b2:11:b4:5b:5d:62:9c:ea:55: 33:b9:10:f5:92:70:c7:f9:de:91:72:38:7b:56:37:5f:b3:f5: ec:bb:8e:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwNTEyMTc1MzI2WhcNMjYwNTE5MTc1MzI2WjAYMRYwFAYD VQQDEw02YTAzNjkxNy0wYjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVdEypT0fx8AQQG1gEY9oIx3JpqiR1UAHctvTOjVT7l47PRACmfItL3QfjI+ HsCJvQ3AZu0ruK7i6jEDfEE6M6UAlNMxEXRQKOnperES6WOdeZv3mo7qmWGuAZH4 K8eGLcBOoSqkrs5Oxwgs6/ckemXCpPU7u3GBHBiW8ozMEtuNTkcSmX78OExGD7at rCFBdjTG2X16PDWVcFjQsvRLpwg+F2mkmWpl0tIaa4st0NnWR+Abj/YxP+qom4dl /TTmMqGleIYPDcLpG4CDNSIpJg8aJB1xikjeEi2ElMjHYRPfT1E6hk77keIZm+Qf u0vWWNrddr+UlOZwzeKdIp/t3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDnFb1G5 GiYuyXxx5MlIhT7msmo3MB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs54CIPxLr+MbpccsWF423V6S8saCtO2rbE75VpTJksNz3E8VddW+G08hUtKz y8zFWrhfWXojYctvpyKnmkWG/pfS2pCsSCbqieiQQbAY3EOf40JvnPPMTTPYnTmc df99Ci1+itpeSejDZ1H39zY4KKZRZJ+ETJUTFI0196P1XY58DZrhfdiMDw/qS62g tEGq+4TRoCyi8Btxzb/5L5e/R2uB5Zj7i21W/lIpDilevWrbZhWGfzCr0BFVEFhA 5k3zv1D609qcUcnSexSreb5816NS1oLyrNR7DvLOtdgOn5M/shG0W11inOpVM7kQ 9ZJwx/nekXI4e1Y3X7P17LuOUg== -----END CERTIFICATE-----Generated at Wed May 13 05:46:16 2026 by rpki-client