$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft File: 0NbEemjLQdEG6wQtcma5y7_Bpzs.mft (raw, json) Hash identifier: 3tLtSPk4oauzee8nPbW2cVuUMYmmMM4ks8Vnr0aKzwU= Subject key identifier: C4:DE:A8:EF:4D:6D:6C:3F:C2:51:16:8D:0F:95:A2:5A:56:4D:E9:D4 Authority key identifier: D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B Certificate issuer: /CN=A91EBF76/serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Certificate serial: 0715 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft Manifest number: 070D Signing time: Tue 12 May 2026 22:03:28 +0000 Manifest this update: Tue 12 May 2026 22:03:27 +0000 Manifest next update: Tue 19 May 2026 22:03:27 +0000 Files and hashes: 1: 0NbEemjLQdEG6wQtcma5y7_Bpzs.crl (hash: YY+osyVv4eHLu+drp822Mf83+WxElGXBNS4WHGfGJsA=) 2: 5FBDA400853011EBA1AF1D76C4F9AE02.roa (hash: 2cGQ0cYN6rxm/5CfWmmTTZtEMPdc416gyQEzwHIqQ5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1813 (0x715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF76, serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Validity Not Before: May 12 22:03:27 2026 GMT Not After : May 19 22:03:27 2026 GMT Subject: CN=6a03a3b0-52e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:6b:db:12:6e:0f:54:63:15:21:af:2f:fa: e6:42:0d:67:7f:c1:11:87:4b:db:45:39:b1:fe:21: 64:29:99:0e:eb:2a:eb:f2:5e:79:23:f0:43:00:72: 73:85:e3:c2:49:4f:26:d4:b5:a1:45:b4:fe:a6:30: bf:66:9a:36:36:d7:65:85:2c:37:c2:e6:3c:ee:fc: 6c:91:fc:ad:67:36:3e:c1:9a:82:5b:74:c5:8d:26: 8e:8b:32:ef:99:6c:00:b9:64:78:5e:c1:a4:f6:fd: 23:02:30:c2:b2:eb:c2:3c:5e:fe:e0:0f:a5:92:f1: 6e:7d:08:5b:0b:af:8f:16:83:93:f8:6f:ad:b3:87: 44:23:0b:0d:f0:5e:99:8a:bb:d1:19:3e:ce:cf:d3: d4:8a:16:4b:fb:a5:c8:c5:38:79:9e:66:51:ba:bb: a9:2e:4a:5c:9d:77:a3:c7:92:be:7b:57:cb:69:f2: e2:d3:91:49:2b:cd:9a:c9:4b:35:cf:e8:87:83:8b: b3:05:9d:e9:57:09:f9:b4:22:b8:c8:08:b7:8e:46: 42:49:e1:c7:19:b0:35:52:4e:81:7c:62:e0:59:49: ee:f4:d5:6c:ee:17:ac:17:33:fd:2e:ae:ce:ce:d3: e6:17:3b:12:89:4a:7e:01:04:f5:55:3c:41:1f:e2: c5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DE:A8:EF:4D:6D:6C:3F:C2:51:16:8D:0F:95:A2:5A:56:4D:E9:D4 X509v3 Authority Key Identifier: keyid:D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:46:6c:af:6f:f1:a3:7d:91:07:d6:0f:9b:43:80:1d:d1:f8: 66:c3:3d:57:c9:0b:1c:e0:72:fe:c4:53:f6:2b:4e:c8:02:9d: ba:49:68:e0:30:f5:8b:8d:c2:36:b7:0d:5a:4c:54:f1:02:95: 92:40:bb:f3:b1:94:64:a8:66:1c:60:5b:4d:e2:84:4a:e8:b5: 00:20:ff:dc:81:40:66:1b:40:10:0f:a8:8e:d7:62:d0:88:ab: f6:de:eb:65:d2:7d:89:45:50:eb:fc:91:b5:b4:e9:1e:65:fb: 0b:88:f7:ca:82:c0:39:51:1e:84:ec:eb:6c:eb:4c:fd:09:a3: 01:22:2a:5d:d9:78:ea:af:c3:69:32:46:2f:d3:0b:ba:18:eb: 72:77:05:ce:d9:44:12:de:14:02:c4:dc:ae:eb:84:78:7f:3a: 2b:6d:3f:4e:df:fd:80:56:33:d0:41:ae:79:8a:fc:0c:61:60: 42:ec:9b:f5:8f:1c:d2:96:43:33:9a:b4:46:ae:27:80:95:80: 7f:8f:db:1a:b6:2d:04:72:12:ca:b6:14:28:e3:41:a6:ea:19: af:32:0f:38:ff:69:ed:75:2a:80:f5:8a:c5:e0:0e:83:98:7a: d7:ef:02:6d:46:9b:48:34:f0:43:b8:23:ed:32:77:83:09:61: fa:d0:a7:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGNzYxMTAvBgNVBAUTKEQwRDZDNDdBNjhDQjQxRDEwNkVCMDQyRDcyNjZCOUNC QkZDMUE3M0IwHhcNMjYwNTEyMjIwMzI3WhcNMjYwNTE5MjIwMzI3WjAYMRYwFAYD VQQDEw02YTAzYTNiMC01MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspRr2xJuD1RjFSGvL/rmQg1nf8ERh0vbRTmx/iFkKZkO6yrr8l55I/BDAHJz hePCSU8m1LWhRbT+pjC/Zpo2NtdlhSw3wuY87vxskfytZzY+wZqCW3TFjSaOizLv mWwAuWR4XsGk9v0jAjDCsuvCPF7+4A+lkvFufQhbC6+PFoOT+G+ts4dEIwsN8F6Z irvRGT7Oz9PUihZL+6XIxTh5nmZRurupLkpcnXejx5K+e1fLafLi05FJK82ayUs1 z+iHg4uzBZ3pVwn5tCK4yAi3jkZCSeHHGbA1Uk6BfGLgWUnu9NVs7hesFzP9Lq7O ztPmFzsSiUp+AQT1VTxBH+LFfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMTeqO9N bWw/wlEWjQ+VolpWTenUMB8GA1UdIwQYMBaAFNDWxHpoy0HRBusELXJmucu/wac7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkY3Ni9BNkRFMDk3Qzg1 MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFkRUc2d1F0Y21hNXk3X0Jw enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOYkVlbWpMUWRFRzZ3UXRjbWE1eTdfQnB6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkY3Ni9BNkRFMDk3Qzg1MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFk RUc2d1F0Y21hNXk3X0JwenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJUZsr2/xo32RB9YPm0OAHdH4ZsM9V8kLHOBy/sRT9itOyAKduklo4DD1i43C NrcNWkxU8QKVkkC787GUZKhmHGBbTeKESui1ACD/3IFAZhtAEA+ojtdi0Iir9t7r ZdJ9iUVQ6/yRtbTpHmX7C4j3yoLAOVEehOzrbOtM/QmjASIqXdl46q/DaTJGL9ML uhjrcncFztlEEt4UAsTcruuEeH86K20/Tt/9gFYz0EGueYr8DGFgQuyb9Y8c0pZD M5q0Rq4ngJWAf4/bGrYtBHISyrYUKONBpuoZrzIPOP9p7XUqgPWKxeAOg5h61+8C bUabSDTwQ7gj7TJ3gwlh+tCn/Q== -----END CERTIFICATE-----Generated at Wed May 13 15:16:30 2026 by rpki-client