$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: C65XYjjgm/7rOLRr5vd+T10NGgPYIaryPmZg2bJEHxk= Subject key identifier: B0:50:E9:5B:D7:AB:19:A1:46:22:D8:34:18:76:2A:2F:B2:85:B8:1B Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0BA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B89 Signing time: Thu 14 May 2026 19:10:46 +0000 Manifest this update: Thu 14 May 2026 19:10:45 +0000 Manifest next update: Thu 21 May 2026 19:10:45 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: 8mFByFIgj8x+eLyHnqH9K2hpckFMctQ6kXCoPcwLtXQ=) 2: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: bw6V3e8uxgz/w4mVGTTnR4lCFXMSeabuBZrROz8xFwc=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: nvrbL4K8UTuSHUzb0sameKGMaeUHHtqeYardPlMzhKY=) 4: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: NYJZvZPzyDgeHzpdsKVjfnf0vb6jVGfn+iXWogNI5w0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 19:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: May 14 19:10:45 2026 GMT Not After : May 21 19:10:45 2026 GMT Subject: CN=6a061e36-06ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d5:6e:f9:aa:9e:75:0b:0c:5c:99:17:21:db: 27:bc:b2:f2:3e:ac:4f:09:c1:16:ef:39:b4:a6:89: 39:60:b1:60:14:f2:5e:6e:c9:e5:80:85:46:27:cb: 14:86:26:23:6c:63:1a:ad:fd:71:1f:bc:8e:20:28: 55:ae:56:9d:a9:50:8d:8b:f8:5f:f2:b9:58:7b:23: d2:4f:72:5b:ea:2a:8c:22:0d:de:04:be:ac:79:29: b4:0d:5c:d6:be:fb:e8:54:20:b2:57:be:65:c5:24: f5:e6:02:28:f6:d8:a9:04:ee:dd:ac:6c:a6:96:ad: 8f:23:33:b1:84:52:6c:d3:7d:02:d7:54:a2:67:7e: 8c:fd:6a:f8:88:67:b9:79:a7:c6:78:30:b3:31:b0: bb:ac:b8:f5:40:33:df:61:94:58:62:e5:e9:c7:d1: ac:a6:70:72:ef:04:84:68:66:22:ea:a4:1d:3f:b7: 2a:8f:fe:57:07:fd:cf:46:4d:a3:89:87:d5:e5:7c: 19:cb:3d:04:15:19:f0:a2:29:ae:80:71:96:07:9c: ad:b1:55:ea:12:63:f9:a7:96:26:4c:4a:79:64:d9: f4:c0:b0:df:4e:f8:c0:b1:2d:b5:5a:c2:18:83:44: d4:c5:4a:fa:d4:a3:32:e1:44:cf:3c:da:de:7f:8a: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:50:E9:5B:D7:AB:19:A1:46:22:D8:34:18:76:2A:2F:B2:85:B8:1B X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:bd:36:65:00:35:e1:0a:ab:b8:48:4d:8e:c3:aa:e6:b4:50: 3b:76:4b:4a:36:e8:b1:f4:81:f0:a1:1f:e8:e6:f1:00:b6:d3: e2:c6:eb:96:bf:28:5e:63:32:dc:34:77:9d:d9:03:d0:48:c5: 15:11:b8:36:d4:13:81:6c:ab:fa:e0:f1:3f:83:2d:e9:88:f4: 59:b1:e2:9d:03:f1:e6:93:34:97:d2:fd:58:f7:21:31:71:51: 74:a0:7f:1f:2c:2b:07:6e:8c:29:5d:a2:3d:12:aa:67:75:98: 77:16:de:0f:11:f7:5c:63:44:f0:71:57:67:84:ed:4f:b1:0f: 3a:c8:94:54:75:6d:0d:d9:d5:06:3e:a1:75:e8:0a:bf:91:ff: 98:15:21:e5:5c:5e:c5:ec:ef:0f:7a:4f:f0:25:13:0e:38:1f: af:c2:fd:1e:a1:e3:a4:f2:00:0e:9b:68:d3:4e:22:6c:1e:4b: 7d:ed:7f:d4:0c:dc:d0:e5:f2:51:8c:db:ef:d2:1f:bc:c1:ff: 8c:62:5d:3b:8f:8f:67:42:20:f5:f9:bd:06:58:4a:65:b1:eb: bd:c0:bf:71:19:a1:4e:c3:1f:69:46:49:d1:8e:f6:64:68:d9: aa:ec:f7:14:70:ba:ff:e4:63:07:bb:bc:a4:c8:90:08:33:24: 73:c3:62:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjYwNTE0MTkxMDQ1WhcNMjYwNTIxMTkxMDQ1WjAYMRYwFAYD VQQDEw02YTA2MWUzNi0wNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9Vu+aqedQsMXJkXIdsnvLLyPqxPCcEW7zm0pok5YLFgFPJebsnlgIVGJ8sU hiYjbGMarf1xH7yOIChVrladqVCNi/hf8rlYeyPST3Jb6iqMIg3eBL6seSm0DVzW vvvoVCCyV75lxST15gIo9tipBO7drGymlq2PIzOxhFJs030C11SiZ36M/Wr4iGe5 eafGeDCzMbC7rLj1QDPfYZRYYuXpx9GspnBy7wSEaGYi6qQdP7cqj/5XB/3PRk2j iYfV5XwZyz0EFRnwoimugHGWB5ytsVXqEmP5p5YmTEp5ZNn0wLDfTvjAsS21WsIY g0TUxUr61KMy4UTPPNref4q5oQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLBQ6VvX qxmhRiLYNBh2Ki+yhbgbMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf702ZQA14QqruEhNjsOq5rRQO3ZLSjbosfSB8KEf6ObxALbT4sbrlr8oXmMy 3DR3ndkD0EjFFRG4NtQTgWyr+uDxP4Mt6Yj0WbHinQPx5pM0l9L9WPchMXFRdKB/ HywrB26MKV2iPRKqZ3WYdxbeDxH3XGNE8HFXZ4TtT7EPOsiUVHVtDdnVBj6hdegK v5H/mBUh5VxexezvD3pP8CUTDjgfr8L9HqHjpPIADpto004ibB5Lfe1/1Azc0OXy UYzb79IfvMH/jGJdO4+PZ0Ig9fm9BlhKZbHrvcC/cRmhTsMfaUZJ0Y72ZGjZquz3 FHC6/+RjB7u8pMiQCDMkc8NiRQ== -----END CERTIFICATE-----Generated at Fri May 15 20:46:36 2026 by rpki-client