$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: MtfCF+GNSO7nfKyzs4r6Ax65q1K7veQSqyq073KZbeM= Subject key identifier: 33:DE:BA:FC:6A:64:D9:F6:50:47:B3:70:47:58:BF:EB:BF:1E:88:33 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 020A Signing time: Wed 13 May 2026 03:09:00 +0000 Manifest this update: Wed 13 May 2026 03:09:00 +0000 Manifest next update: Wed 20 May 2026 03:09:00 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: xC+4fQJcVQF/OJ18/aAT/HXGI5jMjz1AvuCt+ekHpd0=) 2: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: jNN3fj+EEW25PsG0U4HYziuBqb6momTUfcic3hWWRvY=) 3: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: p66IPaewmPaRtnsQS2xZgpPBnKkLdaVzEfPus9nU9is=) 4: 838096CA3BD311EE84056461C4F9AE02.roa (hash: cQLsMYqSdIJcG0uBESraAoEm5/hK8Y0/eizzGvwT5QU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: May 13 03:09:00 2026 GMT Not After : May 20 03:09:00 2026 GMT Subject: CN=6a03eb4c-3435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9c:17:e1:93:46:2d:23:b2:ea:cb:67:0f:e4: e3:cf:20:37:9f:db:d8:e7:e8:d4:db:df:4f:d3:50: a0:8e:fe:ed:41:3f:21:4c:ab:e3:7f:d9:2e:4d:9a: a7:d2:b4:0f:c3:73:99:34:35:1e:4e:1f:4b:96:c5: 5e:54:3c:2d:ff:8b:fe:c5:76:e8:f1:be:10:4f:6b: 55:25:17:da:9c:7d:97:d7:dd:fd:54:b9:d9:da:21: e6:14:e7:81:f0:aa:04:06:9a:c6:62:16:f3:36:f3: 1a:ee:8c:0e:9d:b3:1d:c6:81:53:87:47:f8:d1:57: a4:ba:16:35:fe:0c:74:4c:bd:81:b3:34:da:60:47: c3:c6:5c:cf:16:b6:eb:0d:a8:7a:e3:6f:6e:16:ef: 7d:2c:29:6a:53:0f:e3:cc:df:69:4b:b8:17:70:29: 7c:d1:c6:fa:a6:24:4f:d7:16:7c:49:03:56:84:d3: 9c:96:a4:ab:9a:0c:0d:e2:5c:23:40:f8:a5:13:02: da:5d:d0:81:fa:3c:b8:10:95:00:7f:ea:6d:bb:f4: 2e:bd:ef:bc:bb:40:f5:39:5c:fa:fb:47:1b:dd:17: 85:95:4f:31:a8:b4:fc:c6:df:73:ca:dd:9d:6d:78: 22:ad:c7:8a:8b:af:e4:c5:48:32:d3:c1:2c:4b:e2: e5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DE:BA:FC:6A:64:D9:F6:50:47:B3:70:47:58:BF:EB:BF:1E:88:33 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:02:9a:65:d8:1f:50:36:79:d3:1d:80:af:6b:f2:fe:f2:33: d2:99:4f:2b:75:4e:bc:cf:7e:bc:e2:99:e9:37:e7:d3:f2:31: 98:3d:45:4f:a8:45:0b:75:78:a1:8f:52:ea:36:ef:5d:aa:ba: 98:dc:43:c1:75:30:46:6b:e6:71:8c:82:83:5d:b1:48:c9:1c: 82:f3:b3:73:f9:3b:ea:b2:38:d4:81:dd:14:79:ba:7c:d9:fd: 87:02:71:45:0a:8d:de:bd:30:90:cb:e5:b4:a1:4d:d1:1b:e7: 57:34:ec:fc:d0:9f:05:97:9e:5d:43:7f:b6:6a:9e:7e:b5:9c: 16:9a:77:25:c8:71:88:05:87:ee:6f:31:3c:5d:a9:ab:ec:c5: d2:65:ec:29:b8:68:0f:ec:9b:45:a2:4a:0b:ff:ad:67:a5:91: 52:c0:9d:d8:e6:f1:e1:97:ee:aa:93:e6:4a:08:ff:62:38:ab: 8a:aa:2c:e5:00:29:5d:44:6f:2a:c4:b0:24:21:06:43:c8:35: 62:4a:29:e1:c1:f8:d3:2b:36:66:52:89:10:59:9d:a9:e9:c8: 78:cf:89:82:f8:52:73:93:64:cf:ae:43:1c:f6:da:ff:7f:c3: 99:bf:58:36:4f:e5:61:f2:ec:f3:0e:f8:98:6f:02:cd:3b:0a: 96:1c:eb:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjYwNTEzMDMwOTAwWhcNMjYwNTIwMDMwOTAwWjAYMRYwFAYD VQQDEw02YTAzZWI0Yy0zNDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZwX4ZNGLSOy6stnD+TjzyA3n9vY5+jU299P01Cgjv7tQT8hTKvjf9kuTZqn 0rQPw3OZNDUeTh9LlsVeVDwt/4v+xXbo8b4QT2tVJRfanH2X1939VLnZ2iHmFOeB 8KoEBprGYhbzNvMa7owOnbMdxoFTh0f40VekuhY1/gx0TL2BszTaYEfDxlzPFrbr Dah6429uFu99LClqUw/jzN9pS7gXcCl80cb6piRP1xZ8SQNWhNOclqSrmgwN4lwj QPilEwLaXdCB+jy4EJUAf+ptu/Quve+8u0D1OVz6+0cb3ReFlU8xqLT8xt9zyt2d bXgirceKi6/kxUgy08EsS+LlxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDPeuvxq ZNn2UEezcEdYv+u/HogzMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAggKaZdgfUDZ50x2Ar2vy/vIz0plPK3VOvM9+vOKZ6Tfn0/IxmD1FT6hFC3V4 oY9S6jbvXaq6mNxDwXUwRmvmcYyCg12xSMkcgvOzc/k76rI41IHdFHm6fNn9hwJx RQqN3r0wkMvltKFN0RvnVzTs/NCfBZeeXUN/tmqefrWcFpp3JchxiAWH7m8xPF2p q+zF0mXsKbhoD+ybRaJKC/+tZ6WRUsCd2Obx4ZfuqpPmSgj/Yjiriqos5QApXURv KsSwJCEGQ8g1Ykop4cH40ys2ZlKJEFmdqenIeM+JgvhSc5Nkz65DHPba/3/Dmb9Y Nk/lYfLs8w74mG8CzTsKlhzrxg== -----END CERTIFICATE-----Generated at Wed May 13 08:58:06 2026 by rpki-client