$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: IfXTFL9cgU8XchL53p+sUUkajf2id4pDTv+XwvyEv+8= Subject key identifier: 7A:86:E8:E1:F6:B0:43:EA:FA:A4:3F:50:9C:FD:88:95:C8:E6:94:CE Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 01AA Signing time: Mon 11 May 2026 04:09:07 +0000 Manifest this update: Mon 11 May 2026 04:09:07 +0000 Manifest next update: Mon 18 May 2026 04:09:07 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: VPMRcjm3uPEJERktMEWm5ILahRiKXNZk1aZmQDBjhHo=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: b/pfyAz5rp6mzw6WWGb7CmVVosPd7X9N4rdBir+XR2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: May 11 04:09:07 2026 GMT Not After : May 18 04:09:07 2026 GMT Subject: CN=6a015663-c3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:fe:4c:0c:e5:0c:44:21:38:69:7a:e7:a3:1d: e2:df:a5:53:8e:a5:3a:a8:2f:f1:eb:9b:7c:88:48: 0c:34:be:a6:fd:b8:db:d2:34:2b:fe:c6:82:b6:2e: 6d:f6:4e:55:6d:73:1b:a2:a0:04:93:b4:9e:9b:5e: be:b4:d6:03:7f:28:4d:00:b3:4a:6c:18:a1:0a:bd: 59:66:a9:53:fa:ea:ac:b6:3e:c2:69:d7:e2:95:e1: da:95:0b:40:0f:7c:71:3a:da:21:a7:4d:e4:11:a5: dc:46:95:df:06:7b:a2:0a:54:a9:f5:d7:59:ed:93: 8b:d5:fc:7e:e4:96:e2:f1:d1:9a:e1:20:01:c6:ed: 9e:dd:1e:eb:13:ba:1c:ab:4e:96:68:83:72:de:7f: d8:89:9b:c2:98:9b:33:45:6b:90:34:b7:87:32:56: 03:a3:40:d5:6c:39:8a:00:8f:68:2c:53:ff:fd:93: b7:f0:9e:7e:ba:a1:34:f0:02:ce:8d:db:af:73:a1: 6a:53:88:10:c8:87:2c:31:61:9a:90:67:e7:10:e5: 26:f5:f4:df:45:2b:bc:20:1c:b3:d7:10:df:e8:31: 38:ee:f2:9a:65:78:f5:da:a7:ce:8a:15:53:1b:54: c5:b6:67:e4:ea:65:4d:de:88:4e:91:c5:44:2c:33: 7e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:86:E8:E1:F6:B0:43:EA:FA:A4:3F:50:9C:FD:88:95:C8:E6:94:CE X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:6d:9c:97:1c:e2:03:87:9a:8b:2c:af:e5:00:62:06:10:b5: 72:ac:70:02:8a:52:9b:db:08:82:ac:c3:b5:2f:c0:a0:46:5e: e8:43:32:33:57:99:a1:c5:df:56:96:99:7f:ad:02:f4:1b:b1: 07:ea:f7:d8:40:fe:fa:45:56:f2:29:28:2d:6f:f7:69:16:78: 98:9a:75:ea:71:32:b5:9e:97:6b:fc:49:90:8c:0b:f2:7b:f0: f4:d3:0b:54:87:6a:96:52:fd:89:a4:ec:ec:dc:b4:d7:48:43: 62:58:c7:f8:c5:e7:5d:1e:56:dc:ca:1e:ff:72:aa:ee:8f:9c: 3b:d8:31:27:09:46:6a:69:9a:7e:a3:93:1b:76:ba:90:4f:79: cc:83:26:bb:66:05:c1:45:9a:8a:9b:aa:0e:c9:d1:da:14:ec: 06:c0:44:49:c9:23:57:61:c1:20:8e:1d:2b:6f:09:09:54:cc: 53:ed:6f:d2:7c:f6:5a:3f:f2:f4:f7:f1:36:9d:68:e4:61:6c: 0c:15:f7:d0:8d:77:44:97:62:e4:41:d5:47:ba:a4:ec:fd:c1: a5:2d:8c:b8:56:41:4e:ac:f9:70:8d:90:52:30:55:cc:8e:34: f4:82:45:99:48:54:84:25:5c:6d:a3:e0:5c:e1:ac:3c:cc:01: 05:19:ff:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjYwNTExMDQwOTA3WhcNMjYwNTE4MDQwOTA3WjAYMRYwFAYD VQQDEw02YTAxNTY2My1jM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjv5MDOUMRCE4aXrnox3i36VTjqU6qC/x65t8iEgMNL6m/bjb0jQr/saCti5t 9k5VbXMboqAEk7Sem16+tNYDfyhNALNKbBihCr1ZZqlT+uqstj7CadfileHalQtA D3xxOtohp03kEaXcRpXfBnuiClSp9ddZ7ZOL1fx+5Jbi8dGa4SABxu2e3R7rE7oc q06WaINy3n/YiZvCmJszRWuQNLeHMlYDo0DVbDmKAI9oLFP//ZO38J5+uqE08ALO jduvc6FqU4gQyIcsMWGakGfnEOUm9fTfRSu8IByz1xDf6DE47vKaZXj12qfOihVT G1TFtmfk6mVN3ohOkcVELDN+TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHqG6OH2 sEPq+qQ/UJz9iJXI5pTOMB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABW2clxziA4eaiyyv5QBiBhC1cqxwAopSm9sIgqzDtS/AoEZe6EMyM1eZocXf VpaZf60C9BuxB+r32ED++kVW8ikoLW/3aRZ4mJp16nEytZ6Xa/xJkIwL8nvw9NML VIdqllL9iaTs7Ny010hDYljH+MXnXR5W3Moe/3Kq7o+cO9gxJwlGammafqOTG3a6 kE95zIMmu2YFwUWaipuqDsnR2hTsBsBESckjV2HBII4dK28JCVTMU+1v0nz2Wj/y 9PfxNp1o5GFsDBX30I13RJdi5EHVR7qk7P3BpS2MuFZBTqz5cI2QUjBVzI409IJF mUhUhCVcbaPgXOGsPMwBBRn/tQ== -----END CERTIFICATE-----Generated at Wed May 13 06:34:04 2026 by rpki-client