$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft File: XOe82cbkE4HMCvkJkN2gNpOF5lU.mft (raw, json) Hash identifier: tHVip/rWi9vFSnjagnWpc+ep3eQp0zz4VOJgOI2C2cI= Subject key identifier: D9:F5:F0:5A:6C:D5:D6:AB:C3:89:20:6C:B7:D1:68:CE:97:C0:32:C1 Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft Manifest number: 051B Signing time: Tue 12 May 2026 23:41:48 +0000 Manifest this update: Tue 12 May 2026 23:41:47 +0000 Manifest next update: Tue 19 May 2026 23:41:47 +0000 Files and hashes: 1: XOe82cbkE4HMCvkJkN2gNpOF5lU.crl (hash: DiB35RmFgYVpmfjVr+lPaRUAonGy77nyUWL/Gu7l2Rw=) 2: 10A8D0E263F611ECB344F979C4F9AE02.roa (hash: SmcwGq0dD9iTZhV8jdPLgAp8Fs3hII4+H1WFKJpXd7c=) 3: C71919900BEE11EDBB84E711C4F9AE02.roa (hash: kY65kJ7Z3Mu7QEVILrGdTmAvqTkSFv9BjhpNLh4YUPY=) 4: 11330A4663F611ECB344F979C4F9AE02.roa (hash: 3M+74bn/sA2p4TiZmfBp8pwqRm0NY6QA2mPOgZx57gA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8, serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: May 12 23:41:47 2026 GMT Not After : May 19 23:41:47 2026 GMT Subject: CN=6a03babc-a8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e1:70:68:f6:b6:10:bc:cf:ca:77:e1:03:2e: af:c7:0b:85:9a:fa:79:f4:da:53:eb:7f:be:25:74: 6a:5d:53:19:ad:1d:b5:7f:e3:50:95:e2:3b:6e:78: 5d:9c:8f:6d:c6:76:4f:a0:64:7c:f6:15:3c:74:5f: 2d:3f:fc:f2:3a:ae:56:31:dd:90:ca:86:a9:06:e6: 41:67:39:09:2a:cb:cf:4e:91:a5:91:58:87:20:50: 3f:b1:cf:a7:c9:ca:a2:6c:e1:13:de:18:1f:b1:d0: 26:bd:23:58:4a:b6:40:12:af:70:4f:23:37:fb:fb: 40:83:a7:c4:38:7a:b8:83:02:55:7a:d4:16:19:eb: 66:06:23:71:04:17:a6:cb:99:8e:c2:cd:a4:34:17: 27:2d:3f:98:6c:60:20:72:2a:1d:b7:31:f2:69:22: 3f:85:c6:11:52:e1:ef:6a:83:a4:98:70:5c:8c:88: 74:a0:9c:64:65:8f:dc:70:78:b5:24:94:f9:3b:af: ae:1d:4a:48:98:37:2d:c4:be:1f:b3:c5:4c:48:28: c5:06:bd:ab:28:37:1d:b6:87:4e:26:e8:18:3c:84: 75:3f:9d:df:3e:87:ba:c8:78:89:26:bb:7c:3a:09: 30:70:e9:07:ad:e0:08:59:0c:ce:28:4b:e9:3e:83: a9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F5:F0:5A:6C:D5:D6:AB:C3:89:20:6C:B7:D1:68:CE:97:C0:32:C1 X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:69:9a:86:7a:12:7c:92:74:b6:2b:50:21:95:c6:1b:e9:3b: 1b:10:50:e8:55:40:8d:e4:6b:93:14:83:68:0b:42:9d:40:eb: 26:27:f4:89:0a:58:3b:f9:36:05:b3:90:14:7c:07:55:0f:e2: ff:28:24:c7:5d:4a:7e:31:8f:0d:b0:2e:49:a0:89:5b:74:f5: 71:31:8a:2e:89:11:ca:ec:0e:16:31:77:3f:45:58:55:c2:06: cd:d1:22:b1:5e:1a:84:8b:42:ac:03:65:37:3e:99:c1:95:3c: 09:0e:22:1a:d7:dc:31:44:e6:3b:09:6f:9f:a5:54:24:3f:df: 2e:5a:38:08:eb:9e:33:f5:49:d8:82:ee:01:db:30:1f:ae:2d: a8:23:b4:2b:25:6d:e9:77:a0:90:a8:4e:4c:bd:0a:07:46:64: 9c:61:c3:b5:a3:5d:6c:52:c4:04:4c:17:dd:c8:9a:3c:18:72: 43:4e:34:fb:b4:3d:bd:47:48:2e:62:0e:1d:6c:6e:67:52:5c: d6:43:43:78:b6:8e:ca:ed:ff:f8:74:41:78:fe:bb:b2:f1:1d: 0f:86:dc:3e:75:2e:4a:e0:b4:b1:aa:ec:3d:c8:64:34:04:88: 33:27:87:50:56:60:fb:a5:bf:3d:a9:21:0b:cb:87:fa:e8:de: 5e:fd:c3:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjYwNTEyMjM0MTQ3WhcNMjYwNTE5MjM0MTQ3WjAYMRYwFAYD VQQDEw02YTAzYmFiYy1hOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+FwaPa2ELzPynfhAy6vxwuFmvp59NpT63++JXRqXVMZrR21f+NQleI7bnhd nI9txnZPoGR89hU8dF8tP/zyOq5WMd2QyoapBuZBZzkJKsvPTpGlkViHIFA/sc+n ycqibOET3hgfsdAmvSNYSrZAEq9wTyM3+/tAg6fEOHq4gwJVetQWGetmBiNxBBem y5mOws2kNBcnLT+YbGAgciodtzHyaSI/hcYRUuHvaoOkmHBcjIh0oJxkZY/ccHi1 JJT5O6+uHUpImDctxL4fs8VMSCjFBr2rKDcdtodOJugYPIR1P53fPoe6yHiJJrt8 OgkwcOkHreAIWQzOKEvpPoOphQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNn18Fps 1darw4kgbLfRaM6XwDLBMB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNBOC8yMUZBMDI3MjRDNkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0 SE1DdmtKa04yZ05wT0Y1bFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQmmahnoSfJJ0titQIZXGG+k7GxBQ6FVAjeRrkxSDaAtCnUDrJif0iQpYO/k2 BbOQFHwHVQ/i/ygkx11KfjGPDbAuSaCJW3T1cTGKLokRyuwOFjF3P0VYVcIGzdEi sV4ahItCrANlNz6ZwZU8CQ4iGtfcMUTmOwlvn6VUJD/fLlo4COueM/VJ2ILuAdsw H64tqCO0KyVt6XegkKhOTL0KB0ZknGHDtaNdbFLEBEwX3ciaPBhyQ040+7Q9vUdI LmIOHWxuZ1Jc1kNDeLaOyu3/+HRBeP67svEdD4bcPnUuSuC0sarsPchkNASIMyeH UFZg+6W/PakhC8uH+ujeXv3DTg== -----END CERTIFICATE-----Generated at Wed May 13 05:04:30 2026 by rpki-client