$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: S16/ESqsCQI0Ty5uQY5SoloZZcFhjs1S5vUMZcrnl1c= Subject key identifier: FD:F5:36:EC:05:6D:54:CB:9C:11:63:E6:CC:A7:51:E0:20:AE:11:91 Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0EA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0E98 Signing time: Wed 20 May 2026 17:44:25 +0000 Manifest this update: Wed 20 May 2026 17:44:24 +0000 Manifest next update: Wed 27 May 2026 17:44:24 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: Qn3aYcvN8Gy+eJR+5lKIycEllKZ6b9d1sy2aVhfEP7A=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: k8KPSV6AIo1KPs7202z0z5rLKfEOuxcDMiUELQD0ouE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3746 (0xea2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9, serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: May 20 17:44:24 2026 GMT Not After : May 27 17:44:24 2026 GMT Subject: CN=6a0df2f8-8293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:24:e4:0a:79:e8:ce:41:11:db:0c:f2:51:5e: c2:43:20:e1:80:14:d2:2b:24:5b:2c:2c:c5:22:08: f8:a1:70:ca:1c:4e:38:8e:bc:72:d4:18:65:7c:87: bb:4d:b8:a2:ea:58:c4:ba:3d:1f:3a:2d:a6:2c:d3: bf:97:8e:d4:66:b5:20:68:06:38:38:85:71:c0:89: 2e:4d:41:7c:4f:53:ad:8f:39:82:85:f1:49:63:68: 92:c8:34:21:4b:b8:95:d7:0b:8c:9e:bc:04:fb:fe: 50:20:fa:f2:df:68:d0:5b:ff:b0:2b:b7:20:ef:ec: 83:8f:b5:ad:56:ba:0b:5f:3a:74:20:52:f3:5e:bc: 6e:ee:1b:a9:73:c4:bb:ba:a3:6f:6b:ba:75:55:a0: 6f:9b:2f:ff:95:60:18:33:69:a9:93:40:98:6e:18: 5d:16:25:e3:51:58:24:52:d1:03:60:b3:13:e8:78: 6d:96:4f:73:8e:bd:70:68:ea:16:9f:4e:85:fd:f2: de:60:94:37:2e:1b:b4:b5:41:a8:3b:00:61:0c:83: 9b:e7:d8:b1:69:5e:26:e0:a1:07:09:db:10:62:1e: 00:74:8a:28:a5:b4:a9:e5:b6:38:cd:f4:df:4f:10: 4d:e3:27:6e:80:2a:92:8f:ea:e8:15:2c:ad:67:98: 00:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F5:36:EC:05:6D:54:CB:9C:11:63:E6:CC:A7:51:E0:20:AE:11:91 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:f3:f3:75:c0:75:37:be:19:3e:11:a9:ea:c6:fa:02:81:f6: fe:f6:a3:a9:6a:a5:86:28:5e:51:f2:23:77:20:14:1e:77:ce: 85:08:bc:52:24:a2:8b:ab:56:20:fa:b7:a3:5c:14:98:99:ed: 96:ed:38:98:63:a1:8c:4d:de:eb:cf:5b:1e:e7:58:ab:44:2d: ee:40:45:be:54:a1:47:05:df:64:c8:c2:93:1a:f0:f9:74:50: d1:f0:bc:17:02:5a:33:f4:d8:c8:73:62:99:5a:4f:6e:02:e0: 60:91:ec:60:13:fa:f3:af:20:0f:3e:75:31:da:c2:07:5a:94: eb:2d:d7:d6:1e:36:ee:21:4a:ea:80:64:f3:29:7b:36:c2:8d: fa:00:a6:7c:2f:c1:06:5c:26:89:46:41:0f:46:70:50:b0:8c: d0:39:dd:80:29:18:63:87:2d:19:a6:44:10:73:5d:8b:00:8f: d8:6e:0c:66:ad:10:2b:d0:f6:e0:96:af:25:a9:d8:29:07:88: 50:cc:bb:e0:76:2a:a2:e1:71:b4:2e:58:85:dc:c3:9d:3e:e3: f8:0d:47:b2:f6:94:7f:b1:d2:c4:41:65:51:de:38:7d:de:85: a0:b5:6f:1a:cb:7b:4b:b8:84:82:68:56:50:9d:04:6d:03:64: 63:5d:78:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjYwNTIwMTc0NDI0WhcNMjYwNTI3MTc0NDI0WjAYMRYwFAYD VQQDEw02YTBkZjJmOC04MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCTkCnnozkER2wzyUV7CQyDhgBTSKyRbLCzFIgj4oXDKHE44jrxy1BhlfIe7 Tbii6ljEuj0fOi2mLNO/l47UZrUgaAY4OIVxwIkuTUF8T1OtjzmChfFJY2iSyDQh S7iV1wuMnrwE+/5QIPry32jQW/+wK7cg7+yDj7WtVroLXzp0IFLzXrxu7hupc8S7 uqNva7p1VaBvmy//lWAYM2mpk0CYbhhdFiXjUVgkUtEDYLMT6Hhtlk9zjr1waOoW n06F/fLeYJQ3Lhu0tUGoOwBhDIOb59ixaV4m4KEHCdsQYh4AdIoopbSp5bY4zfTf TxBN4ydugCqSj+roFSytZ5gAJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP31NuwF bVTLnBFj5synUeAgrhGRMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwfPzdcB1N74ZPhGp6sb6AoH2/vajqWqlhiheUfIjdyAUHnfOhQi8UiSii6tW IPq3o1wUmJntlu04mGOhjE3e689bHudYq0Qt7kBFvlShRwXfZMjCkxrw+XRQ0fC8 FwJaM/TYyHNimVpPbgLgYJHsYBP6868gDz51MdrCB1qU6y3X1h427iFK6oBk8yl7 NsKN+gCmfC/BBlwmiUZBD0ZwULCM0DndgCkYY4ctGaZEEHNdiwCP2G4MZq0QK9D2 4JavJanYKQeIUMy74HYqouFxtC5YhdzDnT7j+A1HsvaUf7HSxEFlUd44fd6FoLVv Gst7S7iEgmhWUJ0EbQNkY1147g== -----END CERTIFICATE-----Generated at Thu May 21 10:16:09 2026 by rpki-client