$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft File: 8eArOUb---b0ZPQ0jvIVX2HQehs.mft (raw, json) Hash identifier: YYTgxUfBqxmahqkbh5u73CrMBZKIvI2jA/NZ29tLWfA= Subject key identifier: 52:20:F6:61:72:6E:A0:AB:A9:A3:36:44:78:69:50:E7:B2:70:02:60 Authority key identifier: F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B Certificate issuer: /CN=A91FF4FC/serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Certificate serial: 0E96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft Manifest number: 0E8F Signing time: Tue 12 May 2026 17:46:06 +0000 Manifest this update: Tue 12 May 2026 17:46:06 +0000 Manifest next update: Tue 19 May 2026 17:46:06 +0000 Files and hashes: 1: 8eArOUb---b0ZPQ0jvIVX2HQehs.crl (hash: rbcubelDVciNVWwJcM8+uB1QZhtGjAIXIhy30XXCY0w=) 2: A280C1FCA06D11EB92FB3739C4F9AE02.roa (hash: S1LxRGAyN75MGVrx7zsjehrxoECJoknKKiFKcBA+GMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3734 (0xe96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF4FC, serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Validity Not Before: May 12 17:46:06 2026 GMT Not After : May 19 17:46:06 2026 GMT Subject: CN=6a03675e-1af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ce:1b:76:2a:c4:3f:88:2e:45:1f:bb:72:8b: d6:b5:4b:c7:9e:e3:72:d2:b0:ca:f4:df:76:fc:35: 31:ac:8a:6c:94:f4:fe:b6:87:da:f2:8b:99:ad:77: 18:bc:2a:81:51:88:7f:54:37:08:8f:c0:94:db:ed: 77:25:f4:37:f5:12:0b:29:ed:e3:bf:b7:72:e5:75: 4e:d0:a6:80:9c:32:75:a8:25:a0:ba:3f:1e:fc:d1: 95:52:18:22:aa:b4:20:50:4f:03:fa:83:e1:e5:fa: 9e:8a:51:d8:cf:19:ce:3a:12:a6:1a:88:78:86:58: 47:1e:81:9e:68:fe:18:b3:9c:31:12:ac:b8:99:35: b1:f2:9b:c8:d0:51:59:56:f3:d8:01:58:db:ab:64: e0:fc:9f:08:b4:0d:57:41:31:d1:73:ff:25:93:50: 70:c3:7a:6f:0b:97:ea:d4:10:79:08:85:a2:37:be: d7:6c:af:f4:7a:60:2e:47:57:a0:72:88:08:d6:dc: 61:f2:42:b2:1b:dd:16:03:40:c5:ac:93:3b:3d:9b: bd:ef:e1:99:97:42:1c:96:e8:12:46:7a:bd:cd:c6: 9c:6f:25:0c:89:70:07:26:e6:0e:8b:12:a7:ee:76: 4d:98:d8:4e:ef:51:17:a0:10:e0:77:68:3f:f4:ac: 33:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:20:F6:61:72:6E:A0:AB:A9:A3:36:44:78:69:50:E7:B2:70:02:60 X509v3 Authority Key Identifier: keyid:F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:dc:44:7a:7d:e3:22:b1:4f:2f:ea:f6:1b:42:fa:13:5c:23: 2d:7b:f9:40:97:ef:78:7c:5a:b9:97:88:21:17:a2:20:12:f1: ca:4f:2a:93:f3:9e:5d:b7:a9:b8:f2:bb:4e:7f:0a:61:d9:e5: 25:65:ac:1f:43:9c:b2:f5:a4:ea:ba:bd:04:62:e3:dd:f6:b5: 9d:9c:9e:f4:25:65:65:a8:9e:ee:15:cf:b2:78:3c:89:38:4e: 53:d5:c7:bf:4c:ed:13:22:bd:81:da:fc:fc:e2:6d:a7:58:1c: 7b:18:73:3d:c2:e2:0c:27:f1:31:af:b0:86:9f:0b:97:33:fd: 25:9d:1a:de:4c:ca:c3:28:ee:73:93:38:e4:c4:81:59:a8:0c: b6:59:bd:97:bd:f0:12:9f:7e:fd:8c:fb:9f:78:6f:07:87:b6: 83:62:3a:9e:f1:53:bf:44:01:d0:88:d1:0c:fe:44:01:d8:1c: de:0a:32:8c:2b:67:fe:51:8e:50:3c:d2:d7:18:24:8a:ad:31: 66:85:bd:1f:dd:8f:c2:95:32:61:b0:d2:e6:f9:26:aa:3b:f0: 6c:1e:1f:e8:48:4e:3c:c9:43:8f:ce:6d:a9:e3:80:82:2b:04: fb:c9:b6:79:89:fc:1c:dc:2e:9b:81:78:73:87:85:37:51:9d: ed:e7:fb:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY0RkMxMTAvBgNVBAUTKEYxRTAyQjM5NDZGRUZCRTZGNDY0RjQzNDhFRjIxNTVG NjFEMDdBMUIwHhcNMjYwNTEyMTc0NjA2WhcNMjYwNTE5MTc0NjA2WjAYMRYwFAYD VQQDEw02YTAzNjc1ZS0xYWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA584bdirEP4guRR+7covWtUvHnuNy0rDK9N92/DUxrIpslPT+tofa8ouZrXcY vCqBUYh/VDcIj8CU2+13JfQ39RILKe3jv7dy5XVO0KaAnDJ1qCWguj8e/NGVUhgi qrQgUE8D+oPh5fqeilHYzxnOOhKmGoh4hlhHHoGeaP4Ys5wxEqy4mTWx8pvI0FFZ VvPYAVjbq2Tg/J8ItA1XQTHRc/8lk1Bww3pvC5fq1BB5CIWiN77XbK/0emAuR1eg cogI1txh8kKyG90WA0DFrJM7PZu97+GZl0IclugSRnq9zcacbyUMiXAHJuYOixKn 7nZNmNhO71EXoBDgd2g/9KwzeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFIg9mFy bqCrqaM2RHhpUOeycAJgMB8GA1UdIwQYMBaAFPHgKzlG/vvm9GT0NI7yFV9h0Hob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjRGQy8zQjYzNEJCRUI0 NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0tYjBaUFEwanZJVlgySFFl aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhlQXJPVWItLS1iMFpQUTBqdklWWDJIUWVocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjRGQy8zQjYzNEJCRUI0NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0t YjBaUFEwanZJVlgySFFlaHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM9xEen3jIrFPL+r2G0L6E1wjLXv5QJfveHxauZeIIReiIBLxyk8qk/OeXbep uPK7Tn8KYdnlJWWsH0OcsvWk6rq9BGLj3fa1nZye9CVlZaie7hXPsng8iThOU9XH v0ztEyK9gdr8/OJtp1gcexhzPcLiDCfxMa+whp8LlzP9JZ0a3kzKwyjuc5M45MSB WagMtlm9l73wEp9+/Yz7n3hvB4e2g2I6nvFTv0QB0IjRDP5EAdgc3goyjCtn/lGO UDzS1xgkiq0xZoW9H92PwpUyYbDS5vkmqjvwbB4f6EhOPMlDj85tqeOAgisE+8m2 eYn8HNwum4F4c4eFN1Gd7ef7Ow== -----END CERTIFICATE-----Generated at Tue May 12 22:40:21 2026 by rpki-client