$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: d62MEUebic1cG7ZhjOLiKM9FZP7TgRFdPhgN5Z2g6lI= Subject key identifier: 2E:BD:E6:0E:98:50:71:14:7E:E5:CC:20:A1:C7:74:5D:F8:D8:50:FD Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 1071 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 1034 Signing time: Tue 12 May 2026 17:26:58 +0000 Manifest this update: Tue 12 May 2026 17:26:58 +0000 Manifest next update: Tue 19 May 2026 17:26:58 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: to20L59UVo3BthK/80YW75EJ1f5Dnb0QcxA2g3rNJ+k=) 2: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 80Ux/s/8WUCan4xcWTLCy1IlA/aIHlyIXja+HwSVmTA=) 3: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: pi9NZFpg2W35Xj028DFUf+bBTXg7p56S2YuHU9tcYNM=) 4: B490CD0621C911EB991D562EC4F9AE02.roa (hash: rBg1NOWyi7cxpOlSxmQbpoGz0c8wacC//ksLpStwuPw=) 5: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: vZn4a83LgoBkLAitNmLPLEgXCeUoidc71kLwF4uh0Ss=) 6: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: JScxZgQ7KHa2YwnDATSzd+qyDGdda+UIVKkiOWFhtkE=) 7: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: r2MdZppnN10Iz6ZoKzDOm3Ycw6FnJTulCC5wJr2SXjs=) 8: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: iazb4pmo2Q4EahE0KZo433djiT5R4KAgrFuLP/vvuqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4209 (0x1071) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 12 17:26:58 2026 GMT Not After : May 19 17:26:58 2026 GMT Subject: CN=6a0362e2-7619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0f:8f:26:fc:2f:b2:bf:64:08:e4:27:0b:9e: cc:95:0d:e6:62:c6:d1:22:c6:8d:0b:01:00:53:26: 31:ae:3c:60:38:1e:dd:19:b5:4b:e5:03:14:84:05: 63:fb:eb:5b:32:f4:99:63:e5:b7:ca:9f:e5:31:f9: c3:6b:da:34:eb:36:53:29:d2:38:ab:72:b9:c5:0b: 83:4c:81:67:6f:16:03:e4:e4:4a:8e:7f:ee:43:83: fc:2b:2a:1f:3d:4f:7d:7c:00:5a:3a:20:bf:bf:0d: 47:2c:ae:e1:57:c7:44:af:ac:76:f7:fd:22:02:b5: d4:6c:d0:d2:bf:bf:33:d6:98:77:ab:13:91:fd:d6: 43:e4:5c:d7:8e:ed:5b:cd:56:de:4f:1b:84:ce:29: f3:8f:07:d1:79:fb:7a:2f:53:2f:3a:d1:57:a9:d4: 25:f9:10:f7:69:8f:3a:15:e4:ab:61:39:e7:7a:24: ed:83:20:fb:d6:61:63:50:1f:41:7c:f6:c3:99:09: 6a:59:69:25:0a:94:e7:b1:06:ae:05:de:2f:74:23: 0d:da:d8:c7:8d:29:ea:4b:62:e5:95:7f:75:df:89: be:c7:9e:81:37:81:e8:66:98:ac:f8:86:6f:5a:b1: a3:8f:ef:c2:88:12:5b:47:ad:91:aa:9b:e1:63:25: 40:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BD:E6:0E:98:50:71:14:7E:E5:CC:20:A1:C7:74:5D:F8:D8:50:FD X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:12:bf:ad:07:b9:24:ec:6a:37:cb:0a:85:11:28:7a:4e:76: 04:57:2f:29:ab:57:46:a2:7a:21:58:24:94:ea:eb:33:e9:94: 4c:14:af:5c:38:fa:69:6d:59:40:75:31:ed:d0:2f:44:4e:7f: bc:25:2e:87:c5:62:c0:a4:75:e0:15:b5:42:07:57:83:4d:b2: ec:9b:cc:90:42:1a:fa:bf:9b:aa:f3:59:7a:2b:3a:3b:1b:1e: e2:10:6e:2f:66:a1:b2:76:da:92:46:69:12:36:89:b4:10:50: 00:fc:73:97:e1:42:d0:fb:3d:c0:5b:66:14:d8:03:4e:e3:70: 7d:e9:9b:a5:49:ae:5f:72:2b:9e:40:c0:c7:a8:b0:53:c9:c0: 17:3d:4f:f0:7a:f2:ea:0d:0f:a3:33:31:c9:b2:f9:93:78:a8: 8d:64:46:d4:de:57:03:f8:ed:55:7d:32:31:93:a6:6d:a0:90: 6f:5d:6c:a0:cc:83:53:37:1b:4c:67:27:4c:7e:e5:f7:8a:e7: da:60:03:f7:26:94:ac:70:7c:0d:13:be:70:85:84:7d:fb:fb: 75:9c:e0:e4:7c:d2:9c:fa:4b:57:96:0f:e9:fa:d9:b5:3a:24: 35:a4:df:d0:bb:58:e6:1e:a2:6c:02:65:4b:aa:f9:ed:5d:25: 5a:83:ff:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjYwNTEyMTcyNjU4WhcNMjYwNTE5MTcyNjU4WjAYMRYwFAYD VQQDEw02YTAzNjJlMi03NjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlg+PJvwvsr9kCOQnC57MlQ3mYsbRIsaNCwEAUyYxrjxgOB7dGbVL5QMUhAVj ++tbMvSZY+W3yp/lMfnDa9o06zZTKdI4q3K5xQuDTIFnbxYD5ORKjn/uQ4P8Kyof PU99fABaOiC/vw1HLK7hV8dEr6x29/0iArXUbNDSv78z1ph3qxOR/dZD5FzXju1b zVbeTxuEzinzjwfReft6L1MvOtFXqdQl+RD3aY86FeSrYTnneiTtgyD71mFjUB9B fPbDmQlqWWklCpTnsQauBd4vdCMN2tjHjSnqS2LllX9134m+x56BN4HoZpis+IZv WrGjj+/CiBJbR62RqpvhYyVA0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC695g6Y UHEUfuXMIKHHdF342FD9MB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABRK/rQe5JOxqN8sKhREoek52BFcvKatXRqJ6IVgklOrrM+mUTBSvXDj6aW1Z QHUx7dAvRE5/vCUuh8ViwKR14BW1QgdXg02y7JvMkEIa+r+bqvNZeis6Oxse4hBu L2ahsnbakkZpEjaJtBBQAPxzl+FC0Ps9wFtmFNgDTuNwfembpUmuX3IrnkDAx6iw U8nAFz1P8Hry6g0PozMxybL5k3iojWRG1N5XA/jtVX0yMZOmbaCQb11soMyDUzcb TGcnTH7l94rn2mAD9yaUrHB8DRO+cIWEffv7dZzg5HzSnPpLV5YP6frZtTokNaTf 0LtY5h6ibAJlS6r57V0lWoP/Qg== -----END CERTIFICATE-----Generated at Wed May 13 03:57:26 2026 by rpki-client