$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft File: K7fm9k6JPZEwSosliGA1DWdQVK0.mft (raw, json) Hash identifier: qzYZYDzvM5PqgS0gFXYVV73AvcKofz5zVfYXkIJa0jU= Subject key identifier: AF:EB:1D:9F:F2:90:22:EE:14:9E:AD:34:AC:44:AB:3C:DC:AB:B5:78 Authority key identifier: 2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD Certificate issuer: /CN=A91F08D9/serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft Manifest number: 89 Signing time: Mon 11 May 2026 07:44:15 +0000 Manifest this update: Mon 11 May 2026 07:44:15 +0000 Manifest next update: Mon 18 May 2026 07:44:15 +0000 Files and hashes: 1: K7fm9k6JPZEwSosliGA1DWdQVK0.crl (hash: UqTQiHk66TjDpPZDDnOMUc0SDI9asHL/AjRbIHYW3wg=) 2: 87B1CF3484AB11F08EC73477C4F9AE02.roa (hash: wj3CysiZUbw6+gol3WXIUNIf6f/KPaKD87i7kYiUu3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08D9, serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Validity Not Before: May 11 07:44:15 2026 GMT Not After : May 18 07:44:15 2026 GMT Subject: CN=6a0188cf-d8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:96:bf:5f:f5:5d:f2:f1:ee:65:c9:17:c6:54: a4:78:f9:2b:fa:7a:00:b4:58:eb:54:60:02:6e:7f: cb:ea:29:88:7a:a8:4c:7c:fd:f8:67:89:1b:0f:fa: a9:94:3e:42:33:a6:c8:20:b4:a3:c1:8b:0a:68:4f: 52:0b:94:49:58:f9:7a:b4:66:fa:9a:64:0a:f9:84: ab:4f:e1:e8:1b:d7:79:83:b9:6a:e7:d0:a0:be:8b: 5f:7b:cf:cc:e4:e0:6a:84:61:e9:22:4a:6c:ff:63: 56:e6:ab:0e:08:2e:df:59:a0:d8:f7:08:4e:13:76: 63:00:e9:db:6a:63:88:60:ea:5f:01:d3:d6:1a:f3: 4d:f8:90:2a:24:ef:31:de:0e:f3:41:03:b1:ee:d2: 05:10:f1:9c:dc:a8:49:dc:4e:0e:72:39:15:6f:ea: 11:3c:7b:d4:51:cb:35:3c:30:42:e8:4d:2c:c9:22: da:04:9a:b8:9f:2a:72:85:b0:c5:3e:97:1b:f3:48: 7f:1c:05:3c:cd:8d:c1:3a:32:a8:18:ce:99:7d:f2: b0:17:5d:53:77:87:0a:0c:58:c5:07:5a:d4:a1:06: 51:13:3a:1e:15:79:b9:71:18:75:1d:05:7c:41:d2: e2:d8:50:75:81:a4:83:bc:78:95:e6:66:f9:c2:0d: f0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EB:1D:9F:F2:90:22:EE:14:9E:AD:34:AC:44:AB:3C:DC:AB:B5:78 X509v3 Authority Key Identifier: keyid:2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:6c:84:c2:66:a1:32:6a:0b:f4:4d:b1:ea:5e:43:96:10:82: 67:05:ae:fd:21:2f:26:69:c1:67:63:75:fd:79:e2:e9:1f:40: a0:0d:57:34:24:83:63:91:03:0d:a7:fc:09:4f:26:b7:68:3b: a1:92:5a:cb:83:cc:76:e6:8b:10:05:c3:34:22:e2:e4:04:c5: 7c:7d:ea:15:46:36:4c:83:1f:0f:d0:06:78:6d:e3:a2:b5:25: 14:57:73:4d:ff:e9:26:cb:7d:ea:26:0f:93:0d:40:63:fd:e8: 12:15:84:0d:f3:08:15:f5:af:49:28:0a:88:dd:f4:ba:c8:17: 27:a1:d7:a5:88:00:a4:d5:93:70:49:d1:51:5f:fb:36:26:1c: e8:89:22:22:7c:0d:3b:f3:18:08:d9:f4:1c:ae:23:c6:87:8e: ab:86:39:40:92:0f:3b:9b:07:2b:b4:98:32:e3:9d:42:d1:2c: 97:6f:25:fd:50:0e:c7:af:bf:10:45:76:57:8b:73:f1:a3:83: 63:d1:bb:cb:65:32:a8:04:19:9d:ce:80:2c:bd:50:b6:04:60: 96:2e:77:36:15:ea:34:a5:c8:cb:da:63:8c:6b:f2:66:9a:fe: b8:70:2b:36:4c:04:bc:13:2c:ac:0e:f8:01:6c:34:0f:3a:d2: fc:ce:e3:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA4RDkxMTAvBgNVBAUTKDJCQjdFNkY2NEU4OTNEOTEzMDRBOEIyNTg4NjAzNTBE Njc1MDU0QUQwHhcNMjYwNTExMDc0NDE1WhcNMjYwNTE4MDc0NDE1WjAYMRYwFAYD VQQDEw02YTAxODhjZi1kOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5a/X/Vd8vHuZckXxlSkePkr+noAtFjrVGACbn/L6imIeqhMfP34Z4kbD/qp lD5CM6bIILSjwYsKaE9SC5RJWPl6tGb6mmQK+YSrT+HoG9d5g7lq59Cgvotfe8/M 5OBqhGHpIkps/2NW5qsOCC7fWaDY9whOE3ZjAOnbamOIYOpfAdPWGvNN+JAqJO8x 3g7zQQOx7tIFEPGc3KhJ3E4OcjkVb+oRPHvUUcs1PDBC6E0sySLaBJq4nypyhbDF Ppcb80h/HAU8zY3BOjKoGM6ZffKwF11Td4cKDFjFB1rUoQZREzoeFXm5cRh1HQV8 QdLi2FB1gaSDvHiV5mb5wg3wsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/rHZ/y kCLuFJ6tNKxEqzzcq7V4MB8GA1UdIwQYMBaAFCu35vZOiT2RMEqLJYhgNQ1nUFSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDhEOS8wRkQ2QUI1Mjgx NzExMUYwOUIxMEFFNTZDNEY5QUUwMi9LN2ZtOWs2SlBaRXdTb3NsaUdBMURXZFFW SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s3Zm05azZKUFpFd1Nvc2xpR0ExRFdkUVZLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDhEOS8wRkQ2QUI1MjgxNzExMUYwOUIxMEFFNTZDNEY5QUUwMi9LN2ZtOWs2SlBa RXdTb3NsaUdBMURXZFFWSzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI2yEwmahMmoL9E2x6l5DlhCCZwWu/SEvJmnBZ2N1/Xni6R9AoA1XNCSDY5ED Daf8CU8mt2g7oZJay4PMduaLEAXDNCLi5ATFfH3qFUY2TIMfD9AGeG3jorUlFFdz Tf/pJst96iYPkw1AY/3oEhWEDfMIFfWvSSgKiN30usgXJ6HXpYgApNWTcEnRUV/7 NiYc6IkiInwNO/MYCNn0HK4jxoeOq4Y5QJIPO5sHK7SYMuOdQtEsl28l/VAOx6+/ EEV2V4tz8aODY9G7y2UyqAQZnc6ALL1QtgRgli53NhXqNKXIy9pjjGvyZpr+uHAr NkwEvBMsrA74AWw0DzrS/M7jOg== -----END CERTIFICATE-----Generated at Wed May 13 07:18:51 2026 by rpki-client