$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: yS/axgjNfLBMY4opC/+iJqqpHGufoFcrQ5hFu3GJz0w= Subject key identifier: A7:EF:01:B9:E9:7D:19:9C:6E:C3:38:CD:58:65:96:3B:D2:A9:9A:5B Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1E6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1E53 Signing time: Wed 20 May 2026 16:04:24 +0000 Manifest this update: Wed 20 May 2026 16:04:24 +0000 Manifest next update: Wed 27 May 2026 16:04:24 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: smrddMS5mI4dbU7By0NRPacBrlaPGbeHa8kzClrssqE=) 2: 1D57FF40A01311E684546521C4F9AE02.roa (hash: lNaIu73lqivuKf4impc1RoL9Iorynr8Oq1i414eOVLY=) 3: 4865DD00A13B11E687921078C4F9AE02.roa (hash: ct9I/aMYPGYqo53jKTnyxK/j3JeT25nkuXtpX13/eJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7790 (0x1e6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: May 20 16:04:24 2026 GMT Not After : May 27 16:04:24 2026 GMT Subject: CN=6a0ddb88-c189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0e:21:a7:f3:c9:47:63:0b:c4:93:b5:86:59: a3:1e:25:70:59:00:3c:da:0e:f9:a0:b6:4a:69:de: a8:6d:4e:cc:59:ef:d6:48:2b:0b:bb:5d:a0:12:a2: a0:c8:88:75:76:78:3d:bb:bb:03:c9:98:cb:23:de: 3d:34:68:ab:be:83:39:13:85:8c:da:ce:c3:9e:7e: 1e:b1:e1:13:8a:de:36:1b:0e:4b:cc:e8:ed:41:a0: 9f:5d:b5:81:b6:a3:26:99:01:71:e9:39:be:be:76: 34:92:68:df:bf:e9:63:62:75:1f:21:e0:a9:58:b3: 50:02:de:b8:e5:d7:d5:8c:b8:b3:6e:e0:49:bc:02: b4:59:21:3b:20:70:67:86:fa:13:29:3e:a1:63:65: db:b0:cc:81:8f:07:98:a7:cd:ff:ef:13:5a:a3:58: 4d:f3:f1:65:f2:8d:0c:d4:b0:dd:7c:06:f6:8b:53: b5:da:fb:8c:ec:3e:f2:64:74:fa:9e:4f:18:49:10: 71:ac:ba:5c:94:1a:b5:a2:89:ae:72:49:05:87:a2: c4:54:b6:16:41:a4:e0:9b:02:b8:70:36:e1:bf:64: 0a:a2:f5:d6:d3:b0:08:c1:c6:fa:51:3f:5a:9e:1a: 82:2e:68:9e:3c:2c:31:97:24:51:ab:6e:74:cd:a0: 9d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EF:01:B9:E9:7D:19:9C:6E:C3:38:CD:58:65:96:3B:D2:A9:9A:5B X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:4c:54:ee:34:8f:69:16:f9:61:e1:6b:c5:67:47:bb:d3:bc: 3e:a1:f5:ec:dd:96:74:23:bf:f1:8f:ab:81:e7:73:53:01:17: bc:18:a5:94:27:0a:dc:7c:b2:9f:40:1c:bb:fd:b3:fc:3f:20: ef:50:a9:b9:b8:f5:6d:8b:b1:3a:3c:69:5d:73:d2:cb:28:66: f3:26:2c:4e:bd:1d:8f:a7:57:5c:7b:72:58:7a:50:6c:ee:18: 8d:e9:1b:5c:43:a8:44:c4:19:26:28:83:43:8d:1a:56:03:64: ad:97:0f:d7:90:62:72:4b:df:84:a5:27:81:68:30:4b:6d:5a: 5d:34:3f:06:c8:a5:4c:bc:e5:50:66:9f:f2:88:32:2c:cd:06: 2c:e3:54:0e:9b:85:36:a6:46:5e:9a:94:0d:43:6c:0d:ae:1d: f7:aa:09:06:b9:3f:74:f3:5e:3d:c3:a7:4f:5e:e5:9f:39:31: c3:7c:8d:77:ea:88:fe:44:b6:bb:c6:1d:85:14:b0:ee:9c:8c: 3a:05:c7:73:a2:4b:48:92:e5:15:1f:88:74:fc:49:0f:d6:0a: d1:b7:80:c1:0f:f8:a7:1f:1c:03:52:c1:0f:90:7c:d4:77:5f: a6:d4:63:21:48:c6:37:73:73:f2:28:c6:c4:6b:13:94:c2:da: 2f:45:15:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjYwNTIwMTYwNDI0WhcNMjYwNTI3MTYwNDI0WjAYMRYwFAYD VQQDEw02YTBkZGI4OC1jMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Q4hp/PJR2MLxJO1hlmjHiVwWQA82g75oLZKad6obU7MWe/WSCsLu12gEqKg yIh1dng9u7sDyZjLI949NGirvoM5E4WM2s7Dnn4eseETit42Gw5LzOjtQaCfXbWB tqMmmQFx6Tm+vnY0kmjfv+ljYnUfIeCpWLNQAt645dfVjLizbuBJvAK0WSE7IHBn hvoTKT6hY2XbsMyBjweYp83/7xNao1hN8/Fl8o0M1LDdfAb2i1O12vuM7D7yZHT6 nk8YSRBxrLpclBq1oomuckkFh6LEVLYWQaTgmwK4cDbhv2QKovXW07AIwcb6UT9a nhqCLmiePCwxlyRRq250zaCdfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKfvAbnp fRmcbsM4zVhlljvSqZpbMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAokxU7jSPaRb5YeFrxWdHu9O8PqH17N2WdCO/8Y+rgedzUwEXvBillCcK3Hyy n0Acu/2z/D8g71Cpubj1bYuxOjxpXXPSyyhm8yYsTr0dj6dXXHtyWHpQbO4Yjekb XEOoRMQZJiiDQ40aVgNkrZcP15BickvfhKUngWgwS21aXTQ/BsilTLzlUGaf8ogy LM0GLONUDpuFNqZGXpqUDUNsDa4d96oJBrk/dPNePcOnT17lnzkxw3yNd+qI/kS2 u8YdhRSw7pyMOgXHc6JLSJLlFR+IdPxJD9YK0beAwQ/4px8cA1LBD5B81HdfptRj IUjGN3Nz8ijGxGsTlMLaL0UV5Q== -----END CERTIFICATE-----Generated at Thu May 21 12:25:54 2026 by rpki-client