$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft File: Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft (raw, json) Hash identifier: y8ZJeGRlCym/gm9eCOEVeBJEAOhBY5WcJM9EfnoARC0= Subject key identifier: 46:A4:16:97:21:B5:B8:54:5C:E1:B2:A3:DD:46:7C:89:8E:F3:D0:31 Authority key identifier: 49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 Certificate issuer: /CN=A91FDE13/serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft Manifest number: CA Signing time: Wed 13 May 2026 07:03:23 +0000 Manifest this update: Wed 13 May 2026 07:03:22 +0000 Manifest next update: Wed 20 May 2026 07:03:22 +0000 Files and hashes: 1: Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl (hash: /TO4CL+buJ+mLczDsH8LiSxF32Ni0bSicq4oWDXVy3o=) 2: 5B45D97C2A5611F0B7C8BB20C4F9AE02.roa (hash: ZAcnv2B2glJNz/amDzlP0oQS8f8IykGzbvOZt8DAQOY=) 3: 189D8FCE565D11F0B381417EC4F9AE02.roa (hash: V0jiGWcisCYeYKJhJdPZNpTEwuLUAeBQE/p7M60AP1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 07:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDE13, serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Validity Not Before: May 13 07:03:22 2026 GMT Not After : May 20 07:03:22 2026 GMT Subject: CN=6a04223b-a8b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7d:6b:a6:58:20:a9:a1:06:07:3c:cf:3d:62: 5c:0e:44:cd:b5:0f:91:74:05:25:77:6b:ae:65:01: 46:a1:8c:25:09:d9:43:c3:c9:e5:ac:0e:ab:2c:1e: a6:66:36:ff:a5:48:d1:1a:c6:e3:a1:a0:cf:92:6f: 43:ab:67:be:db:00:4e:ce:da:ae:70:ad:70:54:7b: 8d:70:ca:d4:69:80:7b:4b:e9:1a:bd:93:6d:e3:f1: c2:8f:2b:11:da:6a:94:7c:ce:42:19:4d:9f:51:21: af:94:03:9e:9e:eb:b1:f6:f0:50:41:89:de:0e:bf: 78:4d:67:df:36:15:94:f5:fb:01:36:e0:7d:cb:b8: bd:a1:eb:98:e7:44:f1:ca:5e:cc:e5:b2:d5:9e:62: 86:11:e4:22:da:e9:67:61:2f:bb:e6:eb:59:6e:44: 92:29:f2:46:32:13:19:01:8f:76:e2:0e:82:2d:8b: e7:c6:ca:20:b2:97:7f:4f:5e:6c:54:23:11:8d:27: 88:20:42:61:0a:6c:56:02:5f:a4:ab:12:e6:63:6e: 5e:68:3a:00:b4:3f:e5:b1:79:62:1e:4d:27:5d:ea: 34:12:a4:5c:78:cf:e9:c0:ac:1d:67:2b:da:0b:16: 91:46:b0:44:4c:51:00:7c:71:49:0e:ef:95:58:b3: d6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A4:16:97:21:B5:B8:54:5C:E1:B2:A3:DD:46:7C:89:8E:F3:D0:31 X509v3 Authority Key Identifier: keyid:49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ae:e3:42:18:cb:34:ad:76:34:c5:ea:e9:14:32:a0:5b:f9: c6:15:ba:68:cd:67:db:d2:41:fc:04:5d:05:5c:78:de:95:dd: 64:e9:dc:4c:94:6f:c7:28:c8:d7:c5:24:c9:50:44:53:64:6f: 96:6d:4b:0b:51:6c:ea:5d:56:78:ea:d4:9e:a5:88:61:1e:a4: 8c:16:17:ec:34:28:da:dd:e1:95:2f:b9:39:1d:9d:b8:85:ac: 35:4a:af:f8:12:12:df:32:0c:5f:1a:b3:19:d4:8c:19:b8:f6: f0:d4:92:7d:a0:86:8a:80:00:74:00:06:a0:c3:4a:bd:59:97: a0:91:7d:d3:27:18:07:6a:a4:83:f5:c2:90:46:04:93:12:63: eb:01:24:d0:d7:95:31:dd:ff:3b:bc:3d:f6:d4:22:3f:82:d3: f0:a5:29:31:a5:3b:24:d1:cd:ce:2f:08:50:a8:ec:39:33:82: fc:48:22:21:2f:20:d0:f1:ee:e9:64:85:b7:88:90:88:3d:11: c5:4f:9a:79:fc:2f:a9:70:bf:48:ce:35:64:03:37:26:bb:b3: 37:c2:bb:c1:61:00:a9:ff:4b:5e:d7:0b:43:20:e4:fa:5d:2b: a3:ca:25:a4:af:9b:d8:46:22:b9:86:8a:ca:92:96:54:27:4b: b7:da:86:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRFMTMxMTAvBgNVBAUTKDQ5RkQzM0Q2RjUxQUQ2QTQ5ODg0NDY5RkEzOUZFRjA0 MzIzMzZGODEwHhcNMjYwNTEzMDcwMzIyWhcNMjYwNTIwMDcwMzIyWjAYMRYwFAYD VQQDEw02YTA0MjIzYi1hOGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2X1rplggqaEGBzzPPWJcDkTNtQ+RdAUld2uuZQFGoYwlCdlDw8nlrA6rLB6m Zjb/pUjRGsbjoaDPkm9Dq2e+2wBOztqucK1wVHuNcMrUaYB7S+kavZNt4/HCjysR 2mqUfM5CGU2fUSGvlAOenuux9vBQQYneDr94TWffNhWU9fsBNuB9y7i9oeuY50Tx yl7M5bLVnmKGEeQi2ulnYS+75utZbkSSKfJGMhMZAY924g6CLYvnxsogspd/T15s VCMRjSeIIEJhCmxWAl+kqxLmY25eaDoAtD/lsXliHk0nXeo0EqRceM/pwKwdZyva CxaRRrBETFEAfHFJDu+VWLPWSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEakFpch tbhUXOGyo91GfImO89AxMB8GA1UdIwQYMBaAFEn9M9b1GtakmIRGn6Of7wQyM2+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREUxMy8xNTFGRTQ3RTJB NTYxMUYwQjg0RjUyMjBDNEY5QUUwMi9TZjB6MXZVYTFxU1loRWFmbzVfdkJESXpi NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NmMHoxdlVhMXFTWWhFYWZvNV92QkRJemI0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REUxMy8xNTFGRTQ3RTJBNTYxMUYwQjg0RjUyMjBDNEY5QUUwMi9TZjB6MXZVYTFx U1loRWFmbzVfdkJESXpiNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAia7jQhjLNK12NMXq6RQyoFv5xhW6aM1n29JB/ARdBVx43pXdZOncTJRvxyjI 18UkyVBEU2Rvlm1LC1Fs6l1WeOrUnqWIYR6kjBYX7DQo2t3hlS+5OR2duIWsNUqv +BIS3zIMXxqzGdSMGbj28NSSfaCGioAAdAAGoMNKvVmXoJF90ycYB2qkg/XCkEYE kxJj6wEk0NeVMd3/O7w99tQiP4LT8KUpMaU7JNHNzi8IUKjsOTOC/EgiIS8g0PHu 6WSFt4iQiD0RxU+aefwvqXC/SM41ZAM3JruzN8K7wWEAqf9LXtcLQyDk+l0ro8ol pK+b2EYiuYaKypKWVCdLt9qGHg== -----END CERTIFICATE-----Generated at Wed May 13 12:10:19 2026 by rpki-client