$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft File: 1xhrKGW4YA1mKCKv65AVcAbg9BA.mft (raw, json) Hash identifier: 11pnv/tVeK+58olfxLzx20P0yz2W75dSstWXddj79Ys= Subject key identifier: BA:82:4C:01:55:4B:A6:FC:05:43:E5:2B:AC:65:53:E9:D9:D9:1B:91 Authority key identifier: D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 Certificate issuer: /CN=A91F428C/serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Certificate serial: 3545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft Manifest number: 353E Signing time: Tue 12 May 2026 15:03:53 +0000 Manifest this update: Tue 12 May 2026 15:03:52 +0000 Manifest next update: Tue 19 May 2026 15:03:52 +0000 Files and hashes: 1: 1xhrKGW4YA1mKCKv65AVcAbg9BA.crl (hash: 8mcCwNVlNDuag+zlYjvBAIslAe5GPYvF9xutgWmgjXs=) 2: B8201598BED111EC93B74C4FC4F9AE02.roa (hash: 2kB+l6pOb5zT/KlsA2xEtLzgFrgfMDCnlHiA1i2V1lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13637 (0x3545) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Validity Not Before: May 12 15:03:52 2026 GMT Not After : May 19 15:03:52 2026 GMT Subject: CN=6a034159-6d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:95:70:a2:57:1b:8b:75:d1:3b:4f:d1:f9:45: 6e:55:68:c9:4a:f5:1f:27:27:eb:c2:c1:ae:3b:c1: 08:0b:44:a8:fa:08:4d:8f:df:65:81:f8:71:ab:4c: d1:9b:ba:23:81:ee:c7:e7:e9:fe:ca:fb:0e:a7:5c: 62:b7:73:20:d1:66:ba:f4:c6:99:48:21:ac:cf:bd: 85:ce:04:79:82:a4:9e:20:46:cb:9b:6d:f9:a9:27: b2:f1:aa:52:84:6b:69:cf:5e:0b:8a:49:61:e4:a0: aa:a3:97:3a:02:72:9f:27:f8:84:c2:91:5d:fa:b0: 67:e1:d5:ff:ff:e8:9c:9c:2d:08:05:20:f2:75:c4: 6d:d2:c5:90:d5:b2:ab:2a:d9:b2:e1:cc:ff:1e:f2: 35:5e:b4:c7:c5:6e:2f:f2:32:7f:b0:96:72:be:a4: b6:62:dc:cb:26:70:d8:9c:f0:34:3f:b0:4e:b3:3a: 8b:26:94:0f:b8:a4:34:60:7e:5b:19:47:3d:a8:ef: bd:3c:51:36:0d:b0:35:87:bb:b3:c2:0a:56:da:b0: 00:ec:20:81:5f:17:56:1e:0d:5d:ca:0d:cd:87:ae: da:a9:e4:c1:88:50:93:7d:6b:40:e6:bf:d1:10:ae: 5b:4a:40:56:e5:96:cb:75:e1:62:1b:13:aa:b2:1c: d2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:82:4C:01:55:4B:A6:FC:05:43:E5:2B:AC:65:53:E9:D9:D9:1B:91 X509v3 Authority Key Identifier: keyid:D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:05:51:b8:5c:6e:f1:41:74:52:f2:e9:3e:6d:80:d8:8b:20: 71:75:04:75:19:9c:90:b7:0c:07:b1:c8:08:ec:58:01:b3:29: 47:b1:80:57:0f:ea:b2:3a:7d:d0:b4:33:ff:a6:23:71:f0:ed: 56:83:45:f9:d7:25:46:86:4f:c3:0f:30:96:7d:b7:2f:47:8a: 84:3b:04:33:07:13:90:22:76:13:3d:e0:61:f4:5f:67:2d:ef: 13:3a:e5:b2:66:d0:89:1d:52:ef:2f:19:f7:ca:61:47:65:ac: ec:1f:31:22:c4:a1:31:8d:da:9e:a3:95:10:84:66:de:02:1e: 31:05:c8:c6:79:b0:79:2f:0e:e0:19:62:d0:f6:c0:fa:f2:b4: 1c:cd:8e:05:81:68:18:69:c0:08:ce:d7:57:1b:60:31:58:4c: 51:85:32:07:88:68:f0:30:34:e9:5f:85:bb:0b:87:69:79:cd: 49:ed:84:4c:6d:e8:96:16:66:eb:a0:ec:5e:b0:5f:70:36:5a: 4d:0c:77:d6:dc:c0:33:bc:85:cd:b1:2d:34:44:fc:28:9f:e2: f8:dc:19:13:2c:fb:b3:82:31:59:33:3e:15:8b:95:26:60:c3: be:99:bf:d2:2a:9f:4d:bf:85:fb:56:ba:24:66:b9:48:81:38: 2c:32:31:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKEQ3MTg2QjI4NjVCODYwMEQ2NjI4MjJBRkVCOTAxNTcw MDZFMEY0MTAwHhcNMjYwNTEyMTUwMzUyWhcNMjYwNTE5MTUwMzUyWjAYMRYwFAYD VQQDEw02YTAzNDE1OS02ZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJVwolcbi3XRO0/R+UVuVWjJSvUfJyfrwsGuO8EIC0So+ghNj99lgfhxq0zR m7ojge7H5+n+yvsOp1xit3Mg0Wa69MaZSCGsz72FzgR5gqSeIEbLm235qSey8apS hGtpz14Liklh5KCqo5c6AnKfJ/iEwpFd+rBn4dX//+icnC0IBSDydcRt0sWQ1bKr Ktmy4cz/HvI1XrTHxW4v8jJ/sJZyvqS2YtzLJnDYnPA0P7BOszqLJpQPuKQ0YH5b GUc9qO+9PFE2DbA1h7uzwgpW2rAA7CCBXxdWHg1dyg3Nh67aqeTBiFCTfWtA5r/R EK5bSkBW5ZbLdeFiGxOqshzStwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLqCTAFV S6b8BUPlK6xlU+nZ2RuRMB8GA1UdIwQYMBaAFNcYayhluGANZigir+uQFXAG4PQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy81MkZDQzY0ODFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlBMW1LQ0t2NjVBVmNBYmc5 QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4aHJLR1c0WUExbUtDS3Y2NUFWY0FiZzlCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy81MkZDQzY0ODFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlB MW1LQ0t2NjVBVmNBYmc5QkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMQVRuFxu8UF0UvLpPm2A2IsgcXUEdRmckLcMB7HICOxYAbMpR7GAVw/qsjp9 0LQz/6YjcfDtVoNF+dclRoZPww8wln23L0eKhDsEMwcTkCJ2Ez3gYfRfZy3vEzrl smbQiR1S7y8Z98phR2Ws7B8xIsShMY3anqOVEIRm3gIeMQXIxnmweS8O4Bli0PbA +vK0HM2OBYFoGGnACM7XVxtgMVhMUYUyB4ho8DA06V+FuwuHaXnNSe2ETG3olhZm 66DsXrBfcDZaTQx31tzAM7yFzbEtNET8KJ/i+NwZEyz7s4IxWTM+FYuVJmDDvpm/ 0iqfTb+F+1a6JGa5SIE4LDIxHQ== -----END CERTIFICATE-----Generated at Wed May 13 00:23:57 2026 by rpki-client