$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json) Hash identifier: J6V32wQW5m8xS9bSezBdS2o83rhhWCA7kZSpZ6Sxf/k= Subject key identifier: 4A:55:80:EE:A5:A7:B7:A3:A8:73:7D:21:9A:FF:2F:E8:22:4D:18:5C Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft Manifest number: 0BC9 Signing time: Sat 16 May 2026 18:59:03 +0000 Manifest this update: Sat 16 May 2026 18:59:02 +0000 Manifest next update: Sat 23 May 2026 18:59:02 +0000 Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: Wu+X6ZVb9I4bdactg1UQTRgK0/CAqojx4PUtjolYo6Q=) 2: 5F47B232DF0711F0899AA5EF5C6F56BC.roa (hash: RljGAjjwZ/pe6/m6sE6jioJluQgFaLFt64ScvocrVSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 18:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: May 16 18:59:02 2026 GMT Not After : May 23 18:59:02 2026 GMT Subject: CN=6a08be76-5d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3b:b4:0f:74:21:e4:a9:45:68:0b:8a:aa:c9: a1:77:79:48:a0:2a:83:34:b9:86:e6:f5:15:bf:f5: 6e:11:ee:7d:7c:54:04:34:95:ef:8a:3e:62:be:7f: 2f:a8:25:c9:40:53:29:38:e9:62:3a:0d:2a:9c:9a: bd:31:a0:3e:3d:5a:3e:5d:02:0f:20:16:fd:2c:91: ef:48:36:04:53:0a:ab:8e:ca:e8:bf:11:34:d3:30: df:7a:8f:fe:77:75:d3:7b:c6:9d:15:00:fb:be:c5: c1:9e:06:5e:df:72:4a:b2:06:bc:d0:3d:11:dc:26: 09:eb:fb:d6:c9:90:93:32:36:7c:28:7a:40:b1:1e: a7:99:b2:37:0a:0d:57:d8:aa:02:a4:12:8e:0f:31: 26:13:90:7f:fd:d8:af:a5:0b:cb:e6:70:0b:db:98: d2:e9:88:16:50:49:1d:21:25:b2:63:9d:75:2e:01: 58:9b:27:c4:15:72:ae:1b:42:43:dc:15:d4:20:ec: e8:72:35:5a:02:02:7f:b1:90:ee:8a:2f:34:24:8d: 92:ab:c2:f4:ee:c2:43:e3:d8:70:af:e4:8f:0e:45: 78:1f:be:35:56:5d:d0:5d:5b:e8:fe:f1:ec:93:cd: 1e:e0:30:61:73:5b:0e:4a:56:8a:d5:f0:fb:c0:8b: f5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:55:80:EE:A5:A7:B7:A3:A8:73:7D:21:9A:FF:2F:E8:22:4D:18:5C X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:99:d9:12:d0:a4:0a:38:9e:9a:cc:dd:bc:f6:e8:92:73:d5: e1:77:cd:fd:1e:16:2a:d1:c0:cf:18:d1:1f:95:9b:e9:08:3e: c6:85:27:5a:d4:95:dc:fd:8c:ad:9e:8c:af:07:19:d9:4d:b1: 53:ad:67:20:d0:1e:a8:63:ba:ac:e6:c0:67:2d:b8:c5:d0:ab: 00:1a:6b:74:fd:f4:90:58:a5:e6:b0:16:76:c3:11:85:6a:8c: dc:39:c8:58:d9:ad:0b:25:c7:9a:73:f5:c2:87:ee:61:0f:1b: d7:5d:ed:ba:a7:39:f0:70:19:3c:26:fa:67:8b:b0:5d:26:3b: e4:83:27:5e:7f:c9:d0:74:ce:89:a1:37:77:a6:0b:a3:71:5d: 50:9d:12:6d:75:c7:02:bd:70:43:df:b1:74:3d:6d:1d:4c:ab: 4c:73:b5:72:39:c7:91:18:6e:7c:ad:53:ba:6e:5d:00:ee:ec: 19:96:a5:d2:74:a8:06:09:88:06:bc:3b:a7:18:d8:c8:e4:b1: 23:c9:9c:bb:58:bc:4b:59:bf:d5:f2:50:bc:5e:ea:f5:d7:28: 49:92:91:1b:bb:a1:07:74:8d:f2:f8:3f:e1:15:2d:63:5e:b5: 7f:28:6d:54:51:a9:7d:91:c9:2a:7e:ee:a7:15:89:f0:cb:24: 45:7a:01:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjYwNTE2MTg1OTAyWhcNMjYwNTIzMTg1OTAyWjAYMRYwFAYD VQQDEw02YTA4YmU3Ni01ZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzu0D3Qh5KlFaAuKqsmhd3lIoCqDNLmG5vUVv/VuEe59fFQENJXvij5ivn8v qCXJQFMpOOliOg0qnJq9MaA+PVo+XQIPIBb9LJHvSDYEUwqrjsrovxE00zDfeo/+ d3XTe8adFQD7vsXBngZe33JKsga80D0R3CYJ6/vWyZCTMjZ8KHpAsR6nmbI3Cg1X 2KoCpBKODzEmE5B//divpQvL5nAL25jS6YgWUEkdISWyY511LgFYmyfEFXKuG0JD 3BXUIOzocjVaAgJ/sZDuii80JI2Sq8L07sJD49hwr+SPDkV4H741Vl3QXVvo/vHs k80e4DBhc1sOSlaK1fD7wIv1lwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEpVgO6l p7ejqHN9IZr/L+giTRhcMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVEQy80NjEyRDUxRTQzMTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4 MjQxX1JNYnh6UlBuUEM4akEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi5nZEtCkCjiemszdvPboknPV4XfN/R4WKtHAzxjRH5Wb6Qg+xoUnWtSV3P2M rZ6MrwcZ2U2xU61nINAeqGO6rObAZy24xdCrABprdP30kFil5rAWdsMRhWqM3DnI WNmtCyXHmnP1wofuYQ8b113tuqc58HAZPCb6Z4uwXSY75IMnXn/J0HTOiaE3d6YL o3FdUJ0SbXXHAr1wQ9+xdD1tHUyrTHO1cjnHkRhufK1Tum5dAO7sGZal0nSoBgmI Brw7pxjYyOSxI8mcu1i8S1m/1fJQvF7q9dcoSZKRG7uhB3SN8vg/4RUtY161fyht VFGpfZHJKn7upxWJ8MskRXoBBQ== -----END CERTIFICATE-----Generated at Sun May 17 05:02:35 2026 by rpki-client