$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: S2X70hynqrUnRd2RCP5EDw/WKt0Z2PGr+XPGpo28Fio= Subject key identifier: 5B:19:D6:22:57:1D:DC:87:0A:82:15:93:53:86:3B:90:84:4F:B2:FD Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 01F1 Signing time: Thu 21 May 2026 03:26:10 +0000 Manifest this update: Thu 21 May 2026 03:26:09 +0000 Manifest next update: Thu 28 May 2026 03:26:09 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: 0UvjM8kunNzUmT5tgHTqVpcP3vmsFYcxlAUrOOYX51c=) 2: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: vugsK16sJjvSr8OK0LSYKyoQkwn8bb1O/z7sIhYr5Cs=) 3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: ViCudgIPygezvAtMJaZKmsZPceBqOw4Pvj8wkwoWduE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: May 21 03:26:09 2026 GMT Not After : May 28 03:26:09 2026 GMT Subject: CN=6a0e7b52-7565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5b:87:75:78:24:0a:7a:0d:f7:c7:7f:1e:f0: 70:97:cf:7f:c3:6f:d8:0f:0e:0d:8b:73:75:95:c1: 71:43:c7:21:3e:04:44:53:d1:2b:19:8e:ce:f8:58: 1c:da:15:11:5f:df:47:44:11:96:0d:ba:b1:10:e6: 46:37:7c:b2:98:92:c1:6f:13:c0:3b:58:11:90:c4: d3:d5:20:ff:03:3a:0d:35:e3:48:96:fd:8d:d1:6d: 31:44:97:0f:c4:36:f0:90:71:c1:21:9c:d7:84:6c: a3:45:6a:6f:8c:ae:dc:45:84:91:12:d1:e2:c0:31: 12:59:eb:fd:8d:10:a8:1e:8d:28:77:1d:aa:75:25: 9a:9a:d8:87:54:38:d5:87:c5:3e:ac:a1:04:03:d6: 6b:e3:83:9e:e0:b5:9d:42:c8:45:4d:7f:e8:04:72: 14:3a:e6:17:4e:09:5a:97:4f:b6:75:8f:61:2c:d7: a9:4e:33:95:8c:a6:ad:4a:4d:a3:05:32:60:c8:ea: 4b:b0:86:c0:4c:87:7c:b2:90:7a:98:d8:3d:d4:dc: 2d:b3:76:3e:3e:84:79:1e:fd:32:a0:a5:d9:ca:fe: c6:4d:d5:16:24:55:c1:b6:45:fb:c8:fc:39:6b:52: eb:1c:c0:17:28:c1:56:40:90:91:24:dc:fb:60:d7: 7a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:19:D6:22:57:1D:DC:87:0A:82:15:93:53:86:3B:90:84:4F:B2:FD X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8a:e2:c9:38:72:33:4f:9f:2b:65:4a:a1:a3:97:85:21:b8: 83:bf:18:94:0c:51:fe:45:31:f1:08:bb:78:14:67:02:a4:d0: db:e1:b4:7c:f9:e9:82:35:46:e1:b8:f0:26:9f:86:15:08:d4: 76:f4:4f:75:e0:cf:3d:d6:6c:b0:a1:42:05:6a:66:63:a6:c5: b1:f8:ca:cb:b3:ec:27:6c:fa:23:56:31:b6:6d:c2:0d:eb:92: 8b:79:d2:cc:71:a9:4b:f9:9b:d3:a2:ce:1b:11:85:28:e0:07: d0:0b:6b:ca:40:8f:f4:66:f2:84:88:87:4c:f6:8b:3c:76:f0: 05:39:6b:50:17:e0:1a:28:06:9f:97:d0:19:d4:bf:e2:1d:91: cb:0a:fc:aa:9c:99:74:1d:60:25:23:2f:da:da:1e:78:ef:bd: eb:41:0c:52:d1:b5:8b:30:6d:2c:f8:7d:67:07:65:38:c0:10: 00:87:d7:fb:c0:4e:cc:21:e8:dd:52:b4:99:bb:9b:5d:23:bb: 2b:3a:c6:17:5b:f4:1e:b4:12:2c:80:2e:f5:54:22:37:92:9a: 61:8a:7d:59:c9:45:7b:6a:a8:45:3c:e4:df:2b:e8:09:6e:b4: d4:a7:63:9d:6f:e4:85:23:0a:31:7c:7b:17:7a:4c:29:c6:04: e6:1a:2f:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjYwNTIxMDMyNjA5WhcNMjYwNTI4MDMyNjA5WjAYMRYwFAYD VQQDEw02YTBlN2I1Mi03NTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FuHdXgkCnoN98d/HvBwl89/w2/YDw4Ni3N1lcFxQ8chPgREU9ErGY7O+Fgc 2hURX99HRBGWDbqxEOZGN3yymJLBbxPAO1gRkMTT1SD/AzoNNeNIlv2N0W0xRJcP xDbwkHHBIZzXhGyjRWpvjK7cRYSREtHiwDESWev9jRCoHo0odx2qdSWamtiHVDjV h8U+rKEEA9Zr44Oe4LWdQshFTX/oBHIUOuYXTglal0+2dY9hLNepTjOVjKatSk2j BTJgyOpLsIbATId8spB6mNg91Nwts3Y+PoR5Hv0yoKXZyv7GTdUWJFXBtkX7yPw5 a1LrHMAXKMFWQJCRJNz7YNd61wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFsZ1iJX HdyHCoIVk1OGO5CET7L9MB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEYriyThyM0+fK2VKoaOXhSG4g78YlAxR/kUx8Qi7eBRnAqTQ2+G0fPnpgjVG 4bjwJp+GFQjUdvRPdeDPPdZssKFCBWpmY6bFsfjKy7PsJ2z6I1Yxtm3CDeuSi3nS zHGpS/mb06LOGxGFKOAH0AtrykCP9GbyhIiHTPaLPHbwBTlrUBfgGigGn5fQGdS/ 4h2Rywr8qpyZdB1gJSMv2toeeO+960EMUtG1izBtLPh9ZwdlOMAQAIfX+8BOzCHo 3VK0mbubXSO7KzrGF1v0HrQSLIAu9VQiN5KaYYp9WclFe2qoRTzk3yvoCW601Kdj nW/khSMKMXx7F3pMKcYE5hovZA== -----END CERTIFICATE-----Generated at Thu May 21 10:27:41 2026 by rpki-client