$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: O0wzRhDONbnuHKnfe1oMPBRalPE2eJ+V1qLYRBcvDRc= Subject key identifier: 43:A4:50:8B:F2:75:C1:23:68:61:33:C1:25:36:00:EB:2A:80:25:1D Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 0148 Signing time: Wed 13 May 2026 05:15:29 +0000 Manifest this update: Wed 13 May 2026 05:15:29 +0000 Manifest next update: Wed 20 May 2026 05:15:29 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: BB1p8vliGUSs+gQIqteoVUwQ9gox3nmUKigsKXOIRHg=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: rKKs75f3Fq0WXiFUQVZhwV3/C+6KDS0+3S6WBSvsbeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: May 13 05:15:29 2026 GMT Not After : May 20 05:15:29 2026 GMT Subject: CN=6a0408f1-110f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:95:46:9d:be:57:9d:a5:83:d7:40:a3:44:d8: c7:cd:96:1b:ba:51:9f:a1:bb:36:29:7b:bd:01:cb: 1e:44:bf:db:4e:e9:e4:8d:6f:a5:57:95:e1:63:81: bc:e8:64:44:1d:cb:d0:c6:99:f6:47:89:a3:ae:a8: 2b:cc:44:f8:5c:e3:77:bc:d7:45:d1:ae:67:70:b6: 63:fc:a6:6c:d7:51:05:df:df:d3:ba:d3:07:e7:bb: e0:b3:e5:47:e9:4c:18:ee:a2:c1:83:bf:6d:0a:62: e9:aa:df:91:d5:eb:23:a1:58:23:d8:24:c2:06:0e: 6f:92:c7:d1:34:a6:57:24:2f:f4:dc:63:f6:0d:2a: 71:0b:82:16:4f:e0:8b:4b:df:50:26:a0:43:59:c5: 8b:f7:b6:a9:a1:e2:68:b6:cc:33:c9:55:22:c5:ce: 7b:7e:0e:4d:a4:ef:94:02:01:93:73:5d:07:3d:81: 6b:c4:8e:77:e0:3b:e4:a8:f1:fe:cc:96:46:08:38: 9d:b5:8e:b8:d3:68:77:1f:c4:3d:8b:73:0d:b1:c0: 0c:84:d0:41:a8:4e:b9:22:e2:d2:1e:72:bf:16:c3: b7:be:b0:46:9c:3e:14:e2:ec:c0:5c:db:58:52:04: 17:a2:f0:65:bd:2f:ac:27:1d:ed:11:c1:7f:3d:f0: ab:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A4:50:8B:F2:75:C1:23:68:61:33:C1:25:36:00:EB:2A:80:25:1D X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:fd:e0:3c:97:1f:95:af:08:d2:d9:6a:11:64:bd:f3:b7:ad: 17:81:b8:f8:88:40:76:4d:b4:ca:5a:70:fd:96:20:e6:67:81: d9:88:b0:a0:bf:86:ee:ef:7a:74:60:a8:35:56:b5:e3:b2:7c: c5:e5:44:40:f1:a4:c9:65:fa:91:97:11:71:e7:6d:86:c7:d3: 6e:0f:5a:e4:8d:70:a0:08:34:21:a1:1d:7b:97:bc:b3:b0:99: cd:cd:21:67:64:30:dc:25:c3:47:f6:dd:0e:cb:a3:64:03:5b: 5e:4c:92:bd:d4:27:b7:8a:b5:dd:04:3a:1a:40:6e:e1:c9:6f: e2:21:1b:90:24:ac:5d:62:b2:72:d2:2a:29:ad:97:4b:21:ef: 75:51:82:d8:e8:0f:01:00:20:52:2c:9c:56:e8:6c:2b:bc:81: 8e:f9:29:77:51:cf:ff:5b:bd:61:dd:84:e6:67:c1:8f:3e:19: 65:1c:c5:e0:67:7e:0d:fe:84:4e:83:0c:b5:f7:2c:17:6c:d5: 37:26:fc:89:c9:06:21:91:e9:c6:c7:60:f0:dd:34:37:0c:a1: 70:7c:ce:49:2a:8d:9e:0b:59:da:1a:a3:5d:14:12:a2:17:a3: e0:9a:f7:43:68:57:d9:d5:66:f1:24:4a:c3:28:c8:56:8b:36: 22:7d:86:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjYwNTEzMDUxNTI5WhcNMjYwNTIwMDUxNTI5WjAYMRYwFAYD VQQDEw02YTA0MDhmMS0xMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJVGnb5XnaWD10CjRNjHzZYbulGfobs2KXu9AcseRL/bTunkjW+lV5XhY4G8 6GREHcvQxpn2R4mjrqgrzET4XON3vNdF0a5ncLZj/KZs11EF39/TutMH57vgs+VH 6UwY7qLBg79tCmLpqt+R1esjoVgj2CTCBg5vksfRNKZXJC/03GP2DSpxC4IWT+CL S99QJqBDWcWL97apoeJotswzyVUixc57fg5NpO+UAgGTc10HPYFrxI534DvkqPH+ zJZGCDidtY6402h3H8Q9i3MNscAMhNBBqE65IuLSHnK/FsO3vrBGnD4U4uzAXNtY UgQXovBlvS+sJx3tEcF/PfCrzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEOkUIvy dcEjaGEzwSU2AOsqgCUdMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEf3gPJcfla8I0tlqEWS987etF4G4+IhAdk20ylpw/ZYg5meB2YiwoL+G7u96 dGCoNVa147J8xeVEQPGkyWX6kZcRcedthsfTbg9a5I1woAg0IaEde5e8s7CZzc0h Z2Qw3CXDR/bdDsujZANbXkySvdQnt4q13QQ6GkBu4clv4iEbkCSsXWKyctIqKa2X SyHvdVGC2OgPAQAgUiycVuhsK7yBjvkpd1HP/1u9Yd2E5mfBjz4ZZRzF4Gd+Df6E ToMMtfcsF2zVNyb8ickGIZHpxsdg8N00NwyhcHzOSSqNngtZ2hqjXRQSohej4Jr3 Q2hX2dVm8SRKwyjIVos2In2G2A== -----END CERTIFICATE-----Generated at Wed May 13 13:51:33 2026 by rpki-client