$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: jNYzGC/p+0ZVVkllmd9SRGBo0fi4xp+ftyQmv7ShA/8= Subject key identifier: AE:72:43:05:42:14:57:79:42:C6:6D:4A:2C:3C:69:B4:61:9F:4E:7D Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: D8 Signing time: Fri 15 May 2026 06:48:43 +0000 Manifest this update: Fri 15 May 2026 06:48:42 +0000 Manifest next update: Fri 22 May 2026 06:48:42 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: zd2ndo7mp0UZQTZXKT3TBpHAeklEDwAR2vIqXLrAmhQ=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: jRuHimWgQS+tjLR9bDCVnhmy0GeAXCUN8m6ZV5rJabM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 02:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: May 15 06:48:42 2026 GMT Not After : May 22 06:48:42 2026 GMT Subject: CN=6a06c1ca-1b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:bd:7f:3c:6e:3b:fb:2f:ed:cc:b1:e9:4c: 4f:02:16:13:09:ac:74:02:a1:20:9f:47:c8:3a:b6: bd:74:bc:80:3d:3d:c1:d0:02:ce:c1:8b:a4:0c:bf: 21:6a:38:2b:1c:e0:07:e8:01:86:a6:cb:8b:bf:af: c5:3f:50:23:28:18:06:06:b2:c6:0d:b3:62:99:69: 17:43:d7:23:15:36:61:57:01:a9:94:6b:6c:36:a7: 69:b3:11:e9:41:16:88:14:dd:36:1a:80:b0:37:6f: 9a:6d:e1:07:8f:bf:b1:e6:6a:2b:4f:99:00:6b:89: bf:0c:b8:83:5d:1a:e2:f3:3c:b9:63:48:59:89:cc: 2c:b7:47:13:b1:d3:20:40:38:3f:5e:96:91:99:e7: 6e:49:9b:cf:ee:79:a0:72:84:ab:c5:5c:4c:70:12: 36:4e:6c:cb:1d:a5:05:b0:77:c6:ab:53:05:f5:96: cc:09:e1:af:28:39:bf:ae:f0:62:d1:8f:0f:85:b3: 96:98:91:19:bf:a0:f9:ff:e2:3b:c6:2f:af:b0:3c: 9a:34:6a:7f:97:d8:6b:dc:fa:3d:6a:9b:06:7b:aa: 03:96:a7:ed:d0:61:57:e8:85:75:90:92:c1:93:aa: fa:9c:46:b4:14:89:e4:44:7c:8c:11:6d:af:7e:b7: 88:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:72:43:05:42:14:57:79:42:C6:6D:4A:2C:3C:69:B4:61:9F:4E:7D X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:9a:5e:68:c4:c8:b1:27:89:1e:81:3d:34:bf:e6:28:d9:2b: fc:03:98:ff:69:0e:b0:38:c6:41:15:64:09:3b:c4:3a:13:51: a3:67:f7:e5:eb:2e:51:61:0f:48:06:3f:b9:b0:e2:aa:6b:2b: 94:1a:b1:bd:19:59:aa:8f:31:c3:81:87:96:c5:02:2a:af:05: 3d:88:db:33:2b:01:e6:17:33:05:35:a3:82:d6:d2:6a:fb:5f: 64:d7:54:b8:cd:56:fe:0c:cb:d7:3f:d7:e5:5f:c9:6a:41:e6: 3f:ad:56:67:9e:e6:e8:28:be:51:9a:2f:fd:9b:5f:04:5a:4d: 30:83:c0:08:30:91:52:bc:35:cf:6c:7c:78:38:55:9a:8f:09: 58:a2:15:1e:bc:68:60:64:e2:33:82:32:5d:98:ce:b3:b1:ce: 66:54:4b:04:52:8b:09:00:b0:f8:67:ad:f1:5d:9c:e2:e4:9e: 0f:e2:db:1a:42:93:7f:b3:74:03:a0:f1:fd:a5:87:c0:2a:ad: a4:04:5e:c0:10:14:e8:5c:9f:b7:99:39:2d:20:0c:04:78:d4: 54:f5:f9:73:4d:a8:56:7e:95:08:86:ad:cf:0d:6d:31:85:8e: 74:c2:9e:67:66:ab:d0:18:95:4e:6d:a5:ec:c6:b2:52:1a:53: cf:ff:8b:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjYwNTE1MDY0ODQyWhcNMjYwNTIyMDY0ODQyWjAYMRYwFAYD VQQDEw02YTA2YzFjYS0xYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYi9fzxuO/sv7cyx6UxPAhYTCax0AqEgn0fIOra9dLyAPT3B0ALOwYukDL8h ajgrHOAH6AGGpsuLv6/FP1AjKBgGBrLGDbNimWkXQ9cjFTZhVwGplGtsNqdpsxHp QRaIFN02GoCwN2+abeEHj7+x5morT5kAa4m/DLiDXRri8zy5Y0hZicwst0cTsdMg QDg/XpaRmeduSZvP7nmgcoSrxVxMcBI2TmzLHaUFsHfGq1MF9ZbMCeGvKDm/rvBi 0Y8PhbOWmJEZv6D5/+I7xi+vsDyaNGp/l9hr3Po9apsGe6oDlqft0GFX6IV1kJLB k6r6nEa0FInkRHyMEW2vfreIHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK5yQwVC FFd5QsZtSiw8abRhn059MB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACZpeaMTIsSeJHoE9NL/mKNkr/AOY/2kOsDjGQRVkCTvEOhNRo2f35esuUWEP SAY/ubDiqmsrlBqxvRlZqo8xw4GHlsUCKq8FPYjbMysB5hczBTWjgtbSavtfZNdU uM1W/gzL1z/X5V/JakHmP61WZ57m6Ci+UZov/ZtfBFpNMIPACDCRUrw1z2x8eDhV mo8JWKIVHrxoYGTiM4IyXZjOs7HOZlRLBFKLCQCw+Get8V2c4uSeD+LbGkKTf7N0 A6Dx/aWHwCqtpARewBAU6Fyft5k5LSAMBHjUVPX5c02oVn6VCIatzw1tMYWOdMKe Z2ar0BiVTm2l7MayUhpTz/+LVw== -----END CERTIFICATE-----Generated at Fri May 15 16:04:58 2026 by rpki-client