$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: 1LL+gXBOM33mnp/Rqg3OMJXJrMfk3G9mvIkWk/2Pdl0= Subject key identifier: 81:97:89:C9:1E:A0:CF:7B:96:6F:A6:CE:17:A1:73:33:7A:C5:4E:A4 Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0D05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0CF5 Signing time: Tue 12 May 2026 18:21:25 +0000 Manifest this update: Tue 12 May 2026 18:21:24 +0000 Manifest next update: Tue 19 May 2026 18:21:24 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: T+BVcXhY/TlenU7lDPgmaUFhlHRuLTp5L9eUZADEqJU=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: J461cEphYF9ExJLG4WmmjdszJJ1c691Yg3Tpfr+lnes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3333 (0xd05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: May 12 18:21:24 2026 GMT Not After : May 19 18:21:24 2026 GMT Subject: CN=6a036fa5-fa55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:de:93:c5:c6:85:fd:04:d1:d6:7f:40:53:c5: 55:45:44:ed:bc:49:f0:a5:1d:b4:84:25:13:a1:35: 1a:3c:f9:f5:76:fa:98:a1:1b:6b:7e:61:34:a7:0e: 26:e5:c3:be:06:a3:b1:cf:89:f4:73:c0:4c:e8:52: 35:ae:3e:d3:e7:a3:8f:37:90:43:fb:99:a9:1a:68: 4b:16:1a:e1:6f:6a:e7:c0:d9:77:44:bb:84:11:7f: 93:41:fc:3c:82:09:cf:6a:80:7c:b2:be:32:da:42: 94:10:94:89:36:ab:57:ae:d8:9e:52:0b:69:e5:6d: 47:f9:98:f6:39:1f:0d:f4:b0:41:7a:68:26:17:0d: 2b:7f:58:a7:02:b1:80:af:c1:74:3e:f3:d8:c9:58: cb:b5:9d:56:20:70:d0:12:2e:b4:16:cd:04:25:06: 09:96:df:18:47:90:39:32:16:40:80:f4:4d:16:94: 74:d5:12:b4:1d:61:4d:c4:e6:54:d5:63:22:aa:57: a0:94:a5:16:9b:86:6a:e4:4e:7c:21:a9:a4:65:88: ff:a5:1e:33:ba:f3:52:de:74:92:c0:ee:51:87:d5: 80:04:a2:e6:97:00:e3:d0:93:c9:fa:97:04:a8:3f: 7c:84:11:ba:2d:32:51:d6:3d:8d:dd:ac:1d:bc:18: e5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:97:89:C9:1E:A0:CF:7B:96:6F:A6:CE:17:A1:73:33:7A:C5:4E:A4 X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:d0:8c:6c:4a:79:34:0a:2f:c9:2d:39:d3:1e:24:0b:be:1e: 34:ae:d1:53:eb:10:37:eb:24:e8:75:ed:ba:53:e9:5b:2b:69: b0:d6:03:8d:18:47:63:cc:12:40:3f:6b:9c:f8:99:0e:91:c7: b8:37:1f:9c:8b:c7:c4:9b:96:2c:7b:a5:3e:bb:c2:4b:12:3d: 83:b4:58:34:70:27:cb:c2:b0:06:e7:42:17:8c:8c:44:6b:c4: 2e:43:e3:7c:62:c9:2d:ec:c3:b0:d9:4a:22:68:f2:0a:f7:34: 01:91:89:f2:fa:da:2f:da:85:62:31:fa:87:ee:91:20:4f:d4: 0c:ce:1d:2c:c0:14:52:26:18:5e:ab:8d:19:97:c6:37:d6:f2: 50:0f:14:ae:c0:fd:39:02:b7:7a:0a:1f:14:c9:d3:10:3b:cf: f4:eb:43:e8:ed:13:64:d7:01:f1:44:8c:3d:db:5d:be:9a:4e: a2:66:e7:74:b3:0f:95:31:f6:33:e6:a3:ae:f3:c5:50:ef:c8: 0e:6c:72:09:58:d3:ef:b0:6b:a1:16:6b:b6:1d:64:2d:8c:6c: 86:f2:88:43:2f:67:a7:e6:b8:a2:a0:a3:e2:24:f5:aa:36:a8: e7:b9:d9:b6:35:07:81:dd:7f:9a:8e:fd:32:65:69:06:27:78: 7e:c8:65:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjYwNTEyMTgyMTI0WhcNMjYwNTE5MTgyMTI0WjAYMRYwFAYD VQQDEw02YTAzNmZhNS1mYTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2t6TxcaF/QTR1n9AU8VVRUTtvEnwpR20hCUToTUaPPn1dvqYoRtrfmE0pw4m 5cO+BqOxz4n0c8BM6FI1rj7T56OPN5BD+5mpGmhLFhrhb2rnwNl3RLuEEX+TQfw8 ggnPaoB8sr4y2kKUEJSJNqtXrtieUgtp5W1H+Zj2OR8N9LBBemgmFw0rf1inArGA r8F0PvPYyVjLtZ1WIHDQEi60Fs0EJQYJlt8YR5A5MhZAgPRNFpR01RK0HWFNxOZU 1WMiqleglKUWm4Zq5E58IamkZYj/pR4zuvNS3nSSwO5Rh9WABKLmlwDj0JPJ+pcE qD98hBG6LTJR1j2N3awdvBjl/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIGXicke oM97lm+mzhehczN6xU6kMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACtCMbEp5NAovyS050x4kC74eNK7RU+sQN+sk6HXtulPpWytpsNYDjRhHY8wS QD9rnPiZDpHHuDcfnIvHxJuWLHulPrvCSxI9g7RYNHAny8KwBudCF4yMRGvELkPj fGLJLezDsNlKImjyCvc0AZGJ8vraL9qFYjH6h+6RIE/UDM4dLMAUUiYYXquNGZfG N9byUA8UrsD9OQK3egofFMnTEDvP9OtD6O0TZNcB8USMPdtdvppOombndLMPlTH2 M+ajrvPFUO/IDmxyCVjT77BroRZrth1kLYxshvKIQy9np+a4oqCj4iT1qjao57nZ tjUHgd1/mo79MmVpBid4fshlTA== -----END CERTIFICATE-----Generated at Wed May 13 17:34:38 2026 by rpki-client