$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: YXkt9qOMEuXDtq3jPW60ZCqusI/zTVk2rt6JZ03nKUk= Subject key identifier: C1:D7:BA:B0:55:F8:D9:09:97:09:3B:C8:E4:8A:77:11:9E:17:27:97 Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2AC1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2AB4 Signing time: Tue 12 May 2026 14:24:04 +0000 Manifest this update: Tue 12 May 2026 14:24:04 +0000 Manifest next update: Tue 19 May 2026 14:24:04 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: BtGfcK+Un8tYMv7C8UA5oHlRmXyaQsgpIAjzhnItsqQ=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: qeOImN/OPXFrmVSnTa/uFkjmKzAD8SUjcGoXbzqtLu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10945 (0x2ac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: May 12 14:24:04 2026 GMT Not After : May 19 14:24:04 2026 GMT Subject: CN=6a033804-e567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:34:9b:a1:75:c1:6e:b9:2f:24:65:55:69:55: 25:0e:92:ff:5d:6d:5a:63:7a:0b:a3:5b:a8:73:b3: 27:44:69:df:f0:c0:e5:31:05:e9:30:58:55:43:28: e5:11:b7:bf:dc:cc:28:ed:b8:1f:df:0c:19:ce:84: 9d:cc:3e:ea:4c:4b:35:4e:ad:2d:68:d0:8b:0c:c7: d7:f9:b9:4d:7b:41:e2:68:df:b6:93:51:22:70:79: 24:c8:df:51:a5:69:cb:83:8d:74:95:b2:c4:b6:89: 91:c1:91:02:46:df:47:c3:59:d2:34:4c:82:c3:b3: f5:f8:97:d6:9d:72:e1:85:ce:0e:cc:93:fa:8d:68: f3:3d:c2:7a:c9:56:58:61:f9:4d:32:7c:60:ea:90: 6d:b6:f5:85:dd:85:00:1b:d1:49:cb:14:f0:9a:bb: 62:b4:5e:aa:1a:ed:80:01:16:e2:6d:bb:11:0a:6b: 8c:63:f4:14:3d:ed:66:9e:f6:84:0e:40:27:75:63: 53:5a:5a:c5:81:f6:fc:89:22:bb:56:8a:78:cc:6a: 49:c8:df:aa:75:67:55:cc:36:18:6c:2d:81:8e:71: e4:fb:f4:5e:d9:ce:48:d0:ac:35:ad:35:b4:11:2f: 05:ae:bc:88:76:e8:01:86:4a:bb:f1:b0:28:69:81: f7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D7:BA:B0:55:F8:D9:09:97:09:3B:C8:E4:8A:77:11:9E:17:27:97 X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d1:27:b0:26:20:0c:79:de:48:ff:01:3b:70:12:8b:76:4c: 00:07:d7:d9:40:e5:56:24:0e:89:e2:0f:81:d2:10:04:58:ca: 0d:75:6e:73:84:d9:dd:ea:76:1d:4e:1d:3b:7c:e4:50:4f:c1: 13:18:4a:5a:39:de:14:2b:38:f8:6f:bc:34:b5:f5:d0:c0:43: 68:8a:7b:74:57:ae:39:b8:ca:bd:3f:da:7e:3e:ae:7d:ec:29: 0d:87:c2:c2:f6:1f:47:a5:e8:04:4c:b8:37:aa:e4:df:65:20: e0:7f:48:8b:2b:69:d3:b0:45:bb:8c:e1:b3:75:9d:0e:81:dc: 68:53:6e:4f:3f:ee:67:ff:e0:ef:8c:1a:49:d2:07:3c:24:97: 36:3b:33:31:91:09:6b:86:7e:0a:b4:c0:bc:ac:94:37:e9:01: c9:7c:01:3e:ed:d6:d8:3b:88:f3:e6:93:c5:ca:e5:5a:cb:11: cb:dc:d7:4a:af:fd:a4:2d:c2:39:51:dd:70:36:b2:1e:92:6f: 0d:07:5a:64:11:c5:87:45:07:0a:0c:16:f9:a5:84:5e:b6:22: b4:0a:13:af:9c:3c:07:11:43:fe:20:cf:82:cc:a0:cf:4a:1b: 2c:b3:e3:0e:1d:22:78:1e:00:8d:f8:2a:3c:37:c6:be:95:2b: c6:5d:50:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjYwNTEyMTQyNDA0WhcNMjYwNTE5MTQyNDA0WjAYMRYwFAYD VQQDEw02YTAzMzgwNC1lNTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjSboXXBbrkvJGVVaVUlDpL/XW1aY3oLo1uoc7MnRGnf8MDlMQXpMFhVQyjl Ebe/3Mwo7bgf3wwZzoSdzD7qTEs1Tq0taNCLDMfX+blNe0HiaN+2k1EicHkkyN9R pWnLg410lbLEtomRwZECRt9Hw1nSNEyCw7P1+JfWnXLhhc4OzJP6jWjzPcJ6yVZY YflNMnxg6pBttvWF3YUAG9FJyxTwmrtitF6qGu2AARbibbsRCmuMY/QUPe1mnvaE DkAndWNTWlrFgfb8iSK7Vop4zGpJyN+qdWdVzDYYbC2BjnHk+/Re2c5I0Kw1rTW0 ES8FrryIdugBhkq78bAoaYH32QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMHXurBV +NkJlwk7yOSKdxGeFyeXMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAENEnsCYgDHneSP8BO3ASi3ZMAAfX2UDlViQOieIPgdIQBFjKDXVuc4TZ3ep2 HU4dO3zkUE/BExhKWjneFCs4+G+8NLX10MBDaIp7dFeuObjKvT/afj6ufewpDYfC wvYfR6XoBEy4N6rk32Ug4H9Iiytp07BFu4zhs3WdDoHcaFNuTz/uZ//g74waSdIH PCSXNjszMZEJa4Z+CrTAvKyUN+kByXwBPu3W2DuI8+aTxcrlWssRy9zXSq/9pC3C OVHdcDayHpJvDQdaZBHFh0UHCgwW+aWEXrYitAoTr5w8BxFD/iDPgsygz0obLLPj Dh0ieB4AjfgqPDfGvpUrxl1QKw== -----END CERTIFICATE-----Generated at Wed May 13 15:15:03 2026 by rpki-client