$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: +L5G6I6TzH1Wvjol+WcpTcTEY8a59WzNPE7ggP7iht8= Subject key identifier: D6:0C:3B:85:FA:58:96:A5:F6:A5:17:88:B1:21:82:51:2C:C1:91:F7 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0CC7 Signing time: Tue 12 May 2026 18:32:19 +0000 Manifest this update: Tue 12 May 2026 18:32:18 +0000 Manifest next update: Tue 19 May 2026 18:32:18 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: jWGktFvN0KvwHLG+FRBnWQSVvLQLCTEr9M4+EjwHDGQ=) 2: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: qPZmqhPtG1orNWgO21O3wlBwiZAj4EQWTBy6up25D/I=) 3: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: 0ui+SiQ/c3MRovj/aJJcziARwvWd2KxwKuQ6NFEu4OA=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: OehBxOplI/UOZ/b2d9DDqACV634wRHZsLO+l8ckQwQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3302 (0xce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: May 12 18:32:18 2026 GMT Not After : May 19 18:32:18 2026 GMT Subject: CN=6a037233-98b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f6:cb:44:94:ad:92:74:15:0a:ad:32:d7:03: 9a:00:8a:a7:20:c7:51:79:e4:d8:f9:bd:e2:a9:0d: c0:5a:1f:2b:be:5d:e3:c0:cb:83:3d:d7:68:e8:50: 14:1c:9c:9e:ef:09:07:ac:a7:28:c4:7d:93:43:bd: 92:72:81:20:1a:54:80:98:45:43:ae:2d:3f:53:3c: 2c:32:7a:4c:0a:5f:2b:77:e9:17:81:a1:59:0f:3c: 48:0e:21:fd:f3:1e:7e:74:0c:b4:44:f7:fa:93:6a: 6c:97:ae:53:8f:49:57:93:c5:4c:8a:84:2a:38:f4: fe:ba:63:76:9f:58:15:ce:44:58:e7:a9:9b:f4:ba: f3:51:a3:10:0f:4f:af:bc:5c:fb:8d:24:7d:c4:a8: 9b:7d:2f:55:1c:4a:89:8f:11:5e:d7:6d:72:66:f7: 71:7d:e7:31:f3:0e:08:e9:3c:5d:a2:5a:c7:89:a9: 72:38:31:c5:26:e0:d8:65:57:39:78:04:6b:7f:be: 33:ec:56:1a:a5:3f:01:7f:23:f5:d5:c1:3c:de:12: 99:f2:28:c2:c1:04:eb:aa:c3:a0:54:88:b0:c9:58: 8b:ce:08:6c:c1:eb:ed:d6:fa:64:dd:d6:ea:7f:84: 35:5a:43:49:e7:f4:90:fb:64:d3:ed:28:42:5f:eb: 12:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0C:3B:85:FA:58:96:A5:F6:A5:17:88:B1:21:82:51:2C:C1:91:F7 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:27:38:00:ee:d5:1d:18:ab:ff:36:36:51:4b:b6:51:29:1e: 27:b4:75:90:0e:a8:85:c3:75:ca:b8:6e:92:dd:44:af:ea:cc: a3:de:45:78:c6:75:e6:f1:a6:eb:48:bc:2e:c8:cb:6a:13:1d: 4e:c7:af:2c:1c:73:43:ab:2b:bd:71:b2:fb:6d:0a:9a:5e:b7: 9c:7a:88:b0:0c:0a:07:cb:4f:ad:8d:53:65:8a:e5:d4:b2:1a: ff:16:b1:7b:6b:0d:d8:1d:71:b8:ea:e3:fe:5d:6a:c8:c3:b1: 12:d1:6a:a4:d1:e0:74:92:68:8c:f5:10:0a:cc:c6:33:c3:e3: ae:b9:dc:d7:b4:e7:34:dc:03:1d:57:0d:f9:3e:02:28:bf:62: 79:e3:8b:3c:10:32:a7:16:1f:bb:9b:16:6d:d2:4f:51:01:7a: e6:40:00:dc:44:12:6f:21:ac:be:64:b1:6c:ba:bd:2a:f4:30: da:47:5f:48:91:95:5f:69:81:2a:08:f0:cf:e8:13:af:fc:9e: 1e:30:d9:60:ba:49:a7:0d:c6:34:f3:f8:4d:0e:1d:9a:52:89: c7:78:7a:9f:a1:bb:12:2a:48:c1:83:de:d8:14:f7:34:1f:47: 72:77:68:70:03:eb:0a:f5:f0:30:af:5a:03:46:0c:4b:e8:92: d1:04:6b:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwNTEyMTgzMjE4WhcNMjYwNTE5MTgzMjE4WjAYMRYwFAYD VQQDEw02YTAzNzIzMy05OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vbLRJStknQVCq0y1wOaAIqnIMdReeTY+b3iqQ3AWh8rvl3jwMuDPddo6FAU HJye7wkHrKcoxH2TQ72ScoEgGlSAmEVDri0/UzwsMnpMCl8rd+kXgaFZDzxIDiH9 8x5+dAy0RPf6k2psl65Tj0lXk8VMioQqOPT+umN2n1gVzkRY56mb9LrzUaMQD0+v vFz7jSR9xKibfS9VHEqJjxFe121yZvdxfecx8w4I6TxdolrHialyODHFJuDYZVc5 eARrf74z7FYapT8BfyP11cE83hKZ8ijCwQTrqsOgVIiwyViLzghswevt1vpk3dbq f4Q1WkNJ5/SQ+2TT7ShCX+sSbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNYMO4X6 WJal9qUXiLEhglEswZH3MB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhic4AO7VHRir/zY2UUu2USkeJ7R1kA6ohcN1yrhukt1Er+rMo95FeMZ15vGm 60i8LsjLahMdTsevLBxzQ6srvXGy+20Kml63nHqIsAwKB8tPrY1TZYrl1LIa/xax e2sN2B1xuOrj/l1qyMOxEtFqpNHgdJJojPUQCszGM8Pjrrnc17TnNNwDHVcN+T4C KL9ieeOLPBAypxYfu5sWbdJPUQF65kAA3EQSbyGsvmSxbLq9KvQw2kdfSJGVX2mB Kgjwz+gTr/yeHjDZYLpJpw3GNPP4TQ4dmlKJx3h6n6G7EipIwYPe2BT3NB9Hcndo cAPrCvXwMK9aA0YMS+iS0QRr3Q== -----END CERTIFICATE-----Generated at Wed May 13 09:21:16 2026 by rpki-client