$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: MDYdshQLo0Pu4rjfZTMEomRRjIxioaZByukuI2rzMRM= Subject key identifier: EA:C4:5D:3D:72:D2:2C:D5:00:25:87:2A:37:6D:31:86:76:CE:14:B3 Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 0AD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 0AB9 Signing time: Wed 20 May 2026 19:32:21 +0000 Manifest this update: Wed 20 May 2026 19:32:21 +0000 Manifest next update: Wed 27 May 2026 19:32:21 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: zve4yJd/iNtjfyLoUsVtd7GBjkpP/WRhhOY0Ob5Qs4U=) 2: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: /vzrtqQCcQVSvHagWxuB+gMULE9rVx3mbboeBNca//A=) 3: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: Qr7OnU5cwXgYQ6DyrDnDHL3zNQ6VCMQTENBCUIMJfFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2771 (0xad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: May 20 19:32:21 2026 GMT Not After : May 27 19:32:21 2026 GMT Subject: CN=6a0e0c45-6fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:28:b7:71:38:3c:18:bd:fa:60:74:b6:b9: 9e:60:d8:7a:0a:bf:cd:84:05:35:70:89:ad:84:ff: a1:26:20:04:4d:8b:72:af:3a:a7:ef:13:18:a2:59: 25:3a:94:25:10:96:91:39:56:ab:b4:60:93:ad:bd: 49:1e:d5:80:57:26:64:b7:1f:f8:16:98:7f:33:3b: 3c:d6:66:6f:9a:27:15:00:d0:85:5f:df:5b:4f:cf: ca:2c:a2:63:21:83:73:0e:89:ba:8f:09:1c:80:d2: 96:7a:cd:ff:8f:1d:e5:2f:07:f7:7d:e4:48:f9:44: de:e9:1e:06:01:ec:01:49:0c:aa:5f:70:e9:51:f5: b1:8f:1d:a6:13:bb:53:4f:00:c3:cf:c3:60:83:48: 06:70:1a:38:b8:01:d6:93:57:33:9e:d7:b9:77:6e: 88:77:3b:55:ef:46:01:db:1f:60:2c:91:a5:b6:81: 1d:fe:5d:be:9a:22:45:51:f0:95:1b:51:31:92:40: de:bf:4f:1e:0b:79:96:bc:6d:35:54:75:ce:aa:52: bd:d1:d3:b6:3a:79:36:9e:f8:65:1d:37:c9:ac:d8: d8:57:e3:6a:ca:7e:21:45:5a:cd:9a:73:51:d3:33: 09:3b:69:af:ac:b6:c4:9c:20:89:ef:23:4f:e5:7d: 49:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C4:5D:3D:72:D2:2C:D5:00:25:87:2A:37:6D:31:86:76:CE:14:B3 X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:38:59:19:dd:4b:cd:3b:b2:4c:ae:d9:ae:7c:f2:9f:91:ff: 1c:1c:73:42:ff:0d:31:a5:57:19:6a:cb:49:3c:e1:9c:43:a7: 20:79:e6:fb:d6:bf:f9:6b:b0:f8:29:8b:c6:54:08:65:1b:95: b0:3e:24:97:9b:48:fd:cb:c2:ab:7d:d4:56:09:7d:68:b1:c3: a8:d6:1e:ed:54:db:1f:2a:f3:39:77:49:d9:1d:4f:6c:3f:f8: ba:5a:b7:e5:30:c6:66:0d:07:7c:c8:89:8f:ab:cb:d7:63:24: f5:aa:be:7d:34:6e:97:79:32:54:77:cb:91:3f:50:75:9d:86: 5e:c7:20:ed:4a:af:52:57:98:a3:0c:43:4a:93:7d:bd:8c:5d: c3:52:44:55:a4:57:84:a6:2e:9f:d1:a4:7d:66:0f:23:4f:fb: 13:e4:84:00:94:aa:3e:2c:70:4c:66:a7:6e:75:03:d4:f5:be: 6b:ea:fe:5c:02:f5:42:13:7b:31:12:58:f3:fa:91:a2:a3:d1: e6:3b:9e:dc:90:d7:86:a0:ce:c1:b6:cb:87:05:9c:49:73:fb: a2:1b:a0:89:b2:21:dd:60:c5:78:59:d1:83:79:4d:de:f0:20: 9a:2b:54:67:07:ea:94:6a:71:df:18:ad:2c:1b:2a:02:f5:d7: 57:96:bb:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjYwNTIwMTkzMjIxWhcNMjYwNTI3MTkzMjIxWjAYMRYwFAYD VQQDEw02YTBlMGM0NS02ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbMot3E4PBi9+mB0trmeYNh6Cr/NhAU1cImthP+hJiAETYtyrzqn7xMYolkl OpQlEJaROVartGCTrb1JHtWAVyZktx/4Fph/Mzs81mZvmicVANCFX99bT8/KLKJj IYNzDom6jwkcgNKWes3/jx3lLwf3feRI+UTe6R4GAewBSQyqX3DpUfWxjx2mE7tT TwDDz8Ngg0gGcBo4uAHWk1cznte5d26IdztV70YB2x9gLJGltoEd/l2+miJFUfCV G1ExkkDev08eC3mWvG01VHXOqlK90dO2Onk2nvhlHTfJrNjYV+Nqyn4hRVrNmnNR 0zMJO2mvrLbEnCCJ7yNP5X1JMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrEXT1y 0izVACWHKjdtMYZ2zhSzMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfjhZGd1LzTuyTK7Zrnzyn5H/HBxzQv8NMaVXGWrLSTzhnEOnIHnm+9a/+Wuw +CmLxlQIZRuVsD4kl5tI/cvCq33UVgl9aLHDqNYe7VTbHyrzOXdJ2R1PbD/4ulq3 5TDGZg0HfMiJj6vL12Mk9aq+fTRul3kyVHfLkT9QdZ2GXscg7UqvUleYowxDSpN9 vYxdw1JEVaRXhKYun9GkfWYPI0/7E+SEAJSqPixwTGanbnUD1PW+a+r+XAL1QhN7 MRJY8/qRoqPR5jue3JDXhqDOwbbLhwWcSXP7ohugibIh3WDFeFnRg3lN3vAgmitU ZwfqlGpx3xitLBsqAvXXV5a78Q== -----END CERTIFICATE-----Generated at Thu May 21 09:37:26 2026 by rpki-client