$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: xo1L8PfqNFUv+gr06RvkDvi/GMhI+a3GMTPOD2kFg10= Subject key identifier: 2F:3B:E1:29:77:D2:B2:A8:A2:FA:A8:A1:F4:B6:5F:FD:37:8A:BE:91 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1298 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 1277 Signing time: Tue 12 May 2026 17:06:42 +0000 Manifest this update: Tue 12 May 2026 17:06:41 +0000 Manifest next update: Tue 19 May 2026 17:06:41 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: wuGJijYYRvHAUfsuI2Utkd8EoEqmF1D5H43GpHDccMU=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Q8GHoeHbmqW7M4R7JqdbouyG47lAXEk2l5ZINQlZhUw=) 3: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: zTMcMU85Vfrv28bnOAwruUSVF1/v5V80nulZ37SkFAc=) 4: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: B4PjSBYjorfWxo1YSpPxhGaOBSD9dJ0o8/kl1/H4JCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4760 (0x1298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: May 12 17:06:41 2026 GMT Not After : May 19 17:06:41 2026 GMT Subject: CN=6a035e21-46b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:56:a8:01:64:87:70:ec:05:3a:18:0f:f8:0d: 6b:a9:0c:c3:92:5b:c3:36:f8:5c:6b:0c:64:f7:82: 6c:88:d5:63:9a:5e:6a:27:94:89:81:0a:13:68:9d: 34:81:71:fb:6b:d6:1f:8a:6b:af:1a:aa:09:24:af: e6:77:79:0a:a4:99:60:78:15:01:f1:2f:51:87:10: 4e:ea:25:aa:a0:d5:d0:29:dd:2f:38:43:56:43:0e: 36:58:31:c3:cf:1f:37:f0:aa:5a:87:5f:2f:1a:8f: 76:b4:b7:c5:b8:3e:a0:83:05:64:9b:aa:fd:b1:e8: e3:e4:f0:ac:90:2c:d0:0e:99:b8:4c:fc:d6:20:e8: 93:a4:0d:ec:a6:df:df:15:29:39:a1:31:b9:2b:a2: ac:4b:f2:e6:4b:e0:25:58:5e:91:30:cc:48:44:03: 59:d9:71:0b:04:0f:1f:a4:c5:fa:6b:08:cb:31:92: 9a:28:0a:10:ab:3a:f6:13:c8:a2:0e:42:b8:5b:93: f1:23:a6:15:a4:61:7a:b5:b5:6e:e6:58:50:72:7d: 45:a6:69:c0:71:7f:c8:a2:e6:7d:e0:8d:b5:5a:42: e6:f4:90:ec:5e:39:4e:e7:37:b2:e2:74:ae:b9:60: ea:50:93:de:1f:ff:b1:3f:d1:35:a0:04:19:d8:57: a0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:3B:E1:29:77:D2:B2:A8:A2:FA:A8:A1:F4:B6:5F:FD:37:8A:BE:91 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b7:ee:a7:94:e0:3c:d5:fc:41:76:60:06:64:80:e2:ca:26: 8e:96:d1:38:13:d6:c4:e1:76:23:c1:fd:bb:87:0d:a1:4d:e8: 50:a1:bd:da:c7:b7:19:39:3a:cd:4e:df:dd:57:ef:4a:c9:8f: 59:88:fe:c6:3d:55:67:26:0e:0c:50:d7:df:81:14:23:94:db: 61:96:d8:97:35:ba:a8:d5:2d:03:df:ba:9f:a3:f9:74:95:f6: fc:e5:fb:8b:97:73:58:20:f0:31:20:e7:81:52:f0:ca:43:20: 2d:e2:12:e6:da:4e:4a:4d:61:88:fb:68:5b:23:84:d2:33:94: 87:19:a5:af:06:ad:2e:cb:86:b7:44:94:ed:82:9f:09:69:ea: 6d:f0:13:3c:b8:cf:90:ac:56:95:19:44:d3:de:57:3e:4e:9d: a2:76:f3:02:c9:fa:5d:28:ea:a5:d5:35:c6:a8:a7:f3:f6:c8: 12:17:f8:ca:78:b8:cf:28:96:61:39:aa:d2:fc:7b:9a:f7:bd: 6d:10:9f:b9:a4:9b:1d:ed:84:12:1d:c2:fb:10:7c:74:df:80: bd:22:30:49:36:50:ab:cc:a5:c9:16:58:00:c3:05:41:5b:06: ae:66:fb:c8:e1:e7:f6:e0:6e:7f:d8:c6:7f:a2:9e:83:58:ce: 70:26:f9:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjYwNTEyMTcwNjQxWhcNMjYwNTE5MTcwNjQxWjAYMRYwFAYD VQQDEw02YTAzNWUyMS00NmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1aoAWSHcOwFOhgP+A1rqQzDklvDNvhcawxk94JsiNVjml5qJ5SJgQoTaJ00 gXH7a9YfimuvGqoJJK/md3kKpJlgeBUB8S9RhxBO6iWqoNXQKd0vOENWQw42WDHD zx838Kpah18vGo92tLfFuD6ggwVkm6r9sejj5PCskCzQDpm4TPzWIOiTpA3spt/f FSk5oTG5K6KsS/LmS+AlWF6RMMxIRANZ2XELBA8fpMX6awjLMZKaKAoQqzr2E8ii DkK4W5PxI6YVpGF6tbVu5lhQcn1FpmnAcX/IouZ94I21WkLm9JDsXjlO5zey4nSu uWDqUJPeH/+xP9E1oAQZ2FegowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC874Sl3 0rKoovqoofS2X/03ir6RMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdbfup5TgPNX8QXZgBmSA4somjpbROBPWxOF2I8H9u4cNoU3oUKG92se3GTk6 zU7f3VfvSsmPWYj+xj1VZyYODFDX34EUI5TbYZbYlzW6qNUtA9+6n6P5dJX2/OX7 i5dzWCDwMSDngVLwykMgLeIS5tpOSk1hiPtoWyOE0jOUhxmlrwatLsuGt0SU7YKf CWnqbfATPLjPkKxWlRlE095XPk6donbzAsn6XSjqpdU1xqin8/bIEhf4yni4zyiW YTmq0vx7mve9bRCfuaSbHe2EEh3C+xB8dN+AvSIwSTZQq8ylyRZYAMMFQVsGrmb7 yOHn9uBuf9jGf6Keg1jOcCb5MQ== -----END CERTIFICATE-----Generated at Wed May 13 03:10:00 2026 by rpki-client