$ rpki-client -vvf rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft File: 8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft (raw, json) Hash identifier: ZHYfbnicjRHgO5BgQ1+bob8/9cHfs2hNh9MZXJUpiG8= Subject key identifier: E2:9A:B0:91:B1:F8:37:91:69:B4:0C:63:EA:96:70:40:08:2D:87:B3 Authority key identifier: F2:32:40:84:85:CC:1A:40:38:BD:B3:1B:FA:F3:26:15:40:31:09:50 Certificate issuer: /CN=A91E855B/serialNumber=F232408485CC1A4038BDB31BFAF3261540310950 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8jJAhIXMGkA4vbMb-vMmFUAxCVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft Manifest number: 41 Signing time: Mon 11 May 2026 08:37:08 +0000 Manifest this update: Mon 11 May 2026 08:37:07 +0000 Manifest next update: Mon 18 May 2026 08:37:07 +0000 Files and hashes: 1: 8jJAhIXMGkA4vbMb-vMmFUAxCVA.crl (hash: IBtzUHzJDipLKlCFQSFHYosCIKM5+S2nelQhDR7jFH4=) 2: 2D933FE8EF6711F0AD461381586F56BC.roa (hash: WqJt9JtnWtmIMdrj3ZxaQ9KA33C7zxy15e8t9pWBnaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.crl rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8jJAhIXMGkA4vbMb-vMmFUAxCVA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E855B, serialNumber=F232408485CC1A4038BDB31BFAF3261540310950 Validity Not Before: May 11 08:37:07 2026 GMT Not After : May 18 08:37:07 2026 GMT Subject: CN=6a019534-7f63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:08:14:5b:fc:68:2f:87:9e:9d:9d:07:14:70: 82:5e:e2:fc:22:dd:1c:46:02:e4:98:0d:33:b6:34: cc:7c:2b:23:b2:86:dc:ac:75:58:6a:b6:b9:00:8d: 6a:9a:3b:2d:82:93:8d:7e:35:c2:c0:e9:83:22:cb: 46:51:9a:d6:06:4f:d3:64:df:94:4c:05:32:2c:60: 13:02:e8:cd:43:03:c3:bb:44:bb:4c:f6:db:9a:4b: e9:05:10:50:9d:46:10:28:98:23:4a:42:8d:12:13: 2a:6c:9b:9b:d3:35:96:3b:43:82:95:e8:1c:e4:01: 52:a3:99:12:69:44:5e:b7:7b:45:f8:93:9f:cc:8a: b4:2b:3c:aa:2e:80:1d:a6:54:61:74:f5:84:12:df: 40:fe:bc:ff:91:c5:3a:3d:42:e9:37:57:9f:dd:3e: 0c:95:3a:8d:f5:ed:63:27:ea:6e:00:6d:37:35:b3: cf:77:cc:2f:8e:59:7e:aa:d6:44:6c:ad:ad:15:3f: ae:2f:8f:06:49:95:64:f9:d8:c6:6d:84:a5:82:47: 0d:c4:29:17:c3:e5:6b:55:c4:e4:bf:66:a0:55:25: 62:b0:a4:c2:4c:7e:50:20:ed:66:29:14:18:0f:bc: 96:9e:80:68:7c:96:bb:37:4d:67:98:4d:21:67:83: ff:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9A:B0:91:B1:F8:37:91:69:B4:0C:63:EA:96:70:40:08:2D:87:B3 X509v3 Authority Key Identifier: keyid:F2:32:40:84:85:CC:1A:40:38:BD:B3:1B:FA:F3:26:15:40:31:09:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8jJAhIXMGkA4vbMb-vMmFUAxCVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:7f:f6:dc:7e:35:f9:48:41:f3:91:7c:55:1d:ec:f0:92:b2: 76:18:e1:38:81:49:37:0c:50:93:09:e8:66:fe:ae:c5:1e:3c: 99:49:8a:7c:47:57:c2:c5:48:9d:ba:3a:44:cb:c5:83:17:19: 21:d6:d0:b1:9c:2e:24:22:26:19:47:c0:a6:d1:14:1b:cf:9c: ee:05:b0:ad:5a:a2:fe:e3:92:74:35:8f:19:fd:52:bb:c7:f6: 26:e1:f1:a3:f4:9d:cb:55:c5:3d:d0:21:9d:c3:1b:c7:3d:3b: 13:42:25:58:3a:d1:f3:11:64:fe:c6:e4:17:07:b8:34:dc:ce: 77:3c:8f:37:0b:04:41:dd:36:01:c6:8e:fc:e7:1f:5b:2f:89: 72:21:fe:bc:38:13:81:b9:3e:44:3e:ea:82:3a:ce:88:d1:47: d6:b9:80:f7:ea:61:54:2c:d7:5c:5b:99:46:e0:85:a9:f6:04: 9d:15:37:c2:8e:6f:1a:1c:f7:d3:17:af:e8:a9:2b:a1:53:4e: 4a:29:25:94:df:44:02:92:2d:96:f9:42:f4:3c:01:ee:77:57: c9:d3:9c:64:f1:a4:10:b6:51:f4:3a:81:a3:2c:58:b6:9a:55: 2e:62:89:60:42:6d:dd:98:e7:0c:8c:03:24:3b:45:be:43:28: 3f:55:8e:80 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODU1QjExMC8GA1UEBRMoRjIzMjQwODQ4NUNDMUE0MDM4QkRCMzFCRkFGMzI2MTU0 MDMxMDk1MDAeFw0yNjA1MTEwODM3MDdaFw0yNjA1MTgwODM3MDdaMBgxFjAUBgNV BAMTDTZhMDE5NTM0LTdmNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnCBRb/Ggvh56dnQcUcIJe4vwi3RxGAuSYDTO2NMx8KyOyhtysdVhqtrkAjWqa Oy2Ck41+NcLA6YMiy0ZRmtYGT9Nk35RMBTIsYBMC6M1DA8O7RLtM9tuaS+kFEFCd RhAomCNKQo0SEypsm5vTNZY7Q4KV6BzkAVKjmRJpRF63e0X4k5/MirQrPKougB2m VGF09YQS30D+vP+RxTo9Quk3V5/dPgyVOo317WMn6m4AbTc1s893zC+OWX6q1kRs ra0VP64vjwZJlWT52MZthKWCRw3EKRfD5WtVxOS/ZqBVJWKwpMJMflAg7WYpFBgP vJaegGh8lrs3TWeYTSFng/8RAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU4pqwkbH4 N5FptAxj6pZwQAgth7MwHwYDVR0jBBgwFoAU8jJAhIXMGkA4vbMb+vMmFUAxCVAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NTVCLzY4MDVDMTI0RUY2 NjExRjA4MzNEN0IyNjU4NkY1NkJDLzhqSkFoSVhNR2tBNHZiTWItdk1tRlVBeENW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGpKQWhJWE1Ha0E0dmJNYi12TW1GVUF4Q1ZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NTVCLzY4MDVDMTI0RUY2NjExRjA4MzNEN0IyNjU4NkY1NkJDLzhqSkFoSVhNR2tB NHZiTWItdk1tRlVBeENWQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBXf/bcfjX5SEHzkXxVHezwkrJ2GOE4gUk3DFCTCehm/q7FHjyZSYp8R1fCxUid ujpEy8WDFxkh1tCxnC4kIiYZR8Cm0RQbz5zuBbCtWqL+45J0NY8Z/VK7x/Ym4fGj 9J3LVcU90CGdwxvHPTsTQiVYOtHzEWT+xuQXB7g03M53PI83CwRB3TYBxo785x9b L4lyIf68OBOBuT5EPuqCOs6I0UfWuYD36mFULNdcW5lG4IWp9gSdFTfCjm8aHPfT F6/oqSuhU05KKSWU30QCki2W+UL0PAHud1fJ05xk8aQQtlH0OoGjLFi2mlUuYolg Qm3dmOcMjAMkO0W+Qyg/VY6A -----END CERTIFICATE-----Generated at Wed May 13 03:06:39 2026 by rpki-client