$ rpki-client -vvf rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft File: o0Zki0rfT8W0d8faLPBbFoQ3210.mft (raw, json) Hash identifier: DpnwgUtkOHmSMthx3OEiji2lyAO+kqeEzOPspPo0ZLk= Subject key identifier: 89:25:14:CF:C9:C2:50:6E:AD:AC:A7:8B:9E:AD:DE:BB:63:CD:57:D5 Authority key identifier: A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D Certificate issuer: /CN=A91F78E2/serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft Manifest number: 34 Signing time: Mon 11 May 2026 08:52:04 +0000 Manifest this update: Mon 11 May 2026 08:52:04 +0000 Manifest next update: Mon 18 May 2026 08:52:04 +0000 Files and hashes: 1: o0Zki0rfT8W0d8faLPBbFoQ3210.crl (hash: 9C/vBpgmIRZ3dHkP3AijwHervTJLV46Ayeg6F+rr/l4=) 2: 825697D20F7911F1809984312C3D8C67.roa (hash: zwLj1p60QJZhGqM9OFrvvmZ63ABgfQGgbVPoX25wiFA=) 3: 836B482A0F7911F1809984312C3D8C67.roa (hash: TwW5dd+M0PGrRvNWJtYRZ8DHnqNKe/MUb3Dt0nluACA=) 4: 82DA388A0F7911F1809984312C3D8C67.roa (hash: DwV5RyDcCjRsx1pQK6SE6C7k8xmybS0fqEBWiL5+TBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F78E2, serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Validity Not Before: May 11 08:52:04 2026 GMT Not After : May 18 08:52:04 2026 GMT Subject: CN=6a0198b4-238c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:10:7c:bc:f6:e7:4f:90:4f:b0:25:81:81:3f: 95:10:37:44:6c:7c:32:ba:47:0d:5c:6f:00:c8:16: 5a:67:8b:aa:48:35:2d:ab:12:57:06:b6:85:bb:1d: 24:72:ff:e2:2d:70:1f:e4:87:0e:b2:d4:29:c6:e2: 96:3f:3b:65:8f:fb:ea:bb:1f:06:f9:3b:89:1b:0e: 2a:aa:89:19:c5:a7:fe:f9:99:f5:4e:56:a7:4e:1e: cf:ab:7e:96:9a:70:23:5e:26:c1:62:45:3b:d7:60: 1b:5d:eb:ec:11:ed:ba:4d:97:5b:70:26:01:80:d8: 84:9f:82:8b:52:30:a5:34:de:ba:89:8e:5a:a8:dc: ec:2c:06:59:db:c4:3b:b0:14:1f:34:a9:1f:75:3a: 64:de:0b:1d:b4:63:7c:90:24:f6:8f:4a:ad:cb:fd: ad:5a:b3:99:6d:03:6b:8b:e4:26:7c:82:22:72:4a: 19:2f:51:94:39:ff:4e:f7:13:1e:36:8f:65:91:38: 26:02:f6:41:d9:bb:78:6b:47:8a:40:f8:8c:3b:2f: ea:c4:98:e4:e1:a4:3e:d4:5f:54:53:f3:7c:7f:81: 96:ee:e8:85:cb:c4:ad:07:c1:9c:16:71:40:15:ea: c0:3a:e0:a5:5b:ce:4f:8a:3c:db:f5:e5:d7:ea:6d: b2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:25:14:CF:C9:C2:50:6E:AD:AC:A7:8B:9E:AD:DE:BB:63:CD:57:D5 X509v3 Authority Key Identifier: keyid:A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:14:57:9e:12:02:80:4f:b6:8a:99:be:bf:6c:62:ea:f9:87: 79:d9:05:b4:1d:db:8a:fd:05:5a:2d:20:1e:55:5b:57:6c:2a: 65:38:b2:65:dc:95:cc:03:73:41:43:14:ed:60:69:79:aa:5f: ad:b8:a4:df:47:e7:37:18:2d:d8:1b:ee:bc:de:bf:1a:b9:9f: 07:1d:b1:82:33:55:bd:0e:c9:fe:0a:30:8a:f8:b0:2e:3a:96: c4:98:11:b3:91:5d:ca:75:35:00:51:d1:04:bd:35:0e:5c:64: 98:40:f9:cc:7d:eb:d0:6f:ad:98:89:60:e7:7f:a8:af:8b:bf: 92:56:29:a0:9c:6a:d4:3c:09:25:b7:29:0a:9b:63:f5:f2:6c: d0:24:bf:93:c2:61:6f:1e:86:da:f7:25:7a:c6:4f:8e:9a:6e: c3:8b:1e:85:04:4c:6e:14:37:3e:f5:c9:92:f4:b6:33:77:fc: a0:53:6a:e6:26:8a:8e:4d:e4:fe:e6:28:ec:96:7b:24:44:3a: 66:83:92:c6:64:98:6a:0b:76:95:b0:e2:62:d1:02:42:4e:0e: ad:76:7b:06:e2:2b:97:90:48:1c:53:c6:7c:1b:8f:ee:d8:43: 3d:15:5e:ba:33:52:03:05:55:25:12:70:50:63:12:6b:a3:e6: 53:21:43:cb -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzhFMjExMC8GA1UEBRMoQTM0NjY0OEI0QURGNEZDNUI0NzdDN0RBMkNGMDVCMTY4 NDM3REI1RDAeFw0yNjA1MTEwODUyMDRaFw0yNjA1MTgwODUyMDRaMBgxFjAUBgNV BAMTDTZhMDE5OGI0LTIzOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtEHy89udPkE+wJYGBP5UQN0RsfDK6Rw1cbwDIFlpni6pINS2rElcGtoW7HSRy /+ItcB/khw6y1CnG4pY/O2WP++q7Hwb5O4kbDiqqiRnFp/75mfVOVqdOHs+rfpaa cCNeJsFiRTvXYBtd6+wR7bpNl1twJgGA2ISfgotSMKU03rqJjlqo3OwsBlnbxDuw FB80qR91OmTeCx20Y3yQJPaPSq3L/a1as5ltA2uL5CZ8giJyShkvUZQ5/073Ex42 j2WROCYC9kHZu3hrR4pA+Iw7L+rEmOThpD7UX1RT83x/gZbu6IXLxK0HwZwWcUAV 6sA64KVbzk+KPNv15dfqbbJtAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUiSUUz8nC UG6trKeLnq3eu2PNV9UwHwYDVR0jBBgwFoAUo0Zki0rfT8W0d8faLPBbFoQ3210w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3OEUyL0M4RjRBOEUyMDc5 OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhXMGQ4ZmFMUEJiRm9RMzIx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzBaa2kwcmZUOFcwZDhmYUxQQmJGb1EzMjEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3 OEUyL0M4RjRBOEUyMDc5OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhX MGQ4ZmFMUEJiRm9RMzIxMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQANFFeeEgKAT7aKmb6/bGLq+Yd52QW0HduK/QVaLSAeVVtXbCplOLJl3JXMA3NB QxTtYGl5ql+tuKTfR+c3GC3YG+683r8auZ8HHbGCM1W9Dsn+CjCK+LAuOpbEmBGz kV3KdTUAUdEEvTUOXGSYQPnMfevQb62YiWDnf6ivi7+SVimgnGrUPAkltykKm2P1 8mzQJL+TwmFvHoba9yV6xk+Omm7Dix6FBExuFDc+9cmS9LYzd/ygU2rmJoqOTeT+ 5ijslnskRDpmg5LGZJhqC3aVsOJi0QJCTg6tdnsG4iuXkEgcU8Z8G4/u2EM9FV66 M1IDBVUlEnBQYxJro+ZTIUPL -----END CERTIFICATE-----Generated at Wed May 13 08:16:20 2026 by rpki-client