$ rpki-client -vvf rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft File: DNkEx-s5CtGlXbr0_FAFTAhUbis.mft (raw, json) Hash identifier: HoPc7P792AotL5Z/3+1j7cERcM488zEjZOXbt70I+DA= Subject key identifier: 4F:54:88:C3:FD:1E:35:D7:FD:78:93:8A:59:3B:EE:A1:F6:E2:69:BC Authority key identifier: 0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B Certificate issuer: /CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft Manifest number: 01A6 Signing time: Thu 21 May 2026 04:10:23 +0000 Manifest this update: Thu 21 May 2026 04:10:22 +0000 Manifest next update: Thu 28 May 2026 04:10:22 +0000 Files and hashes: 1: DNkEx-s5CtGlXbr0_FAFTAhUbis.crl (hash: B2tZrHPWSc+jEvI5VGCY0mtDS6E95hn0UtMzBUqv4BM=) 2: D45022C8CEC211EE80F08B36C4F9AE02.roa (hash: iG/FIqaT6KtwO+xKsXOo+peJz09fYygQm2FEIezx1zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A47B6, serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Validity Not Before: May 21 04:10:22 2026 GMT Not After : May 28 04:10:22 2026 GMT Subject: CN=6a0e85ae-75e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c8:23:46:a5:de:88:36:28:6e:98:44:73:b9: de:41:65:7c:5a:23:98:34:2d:07:30:cc:60:18:d4: 7a:07:4c:ea:ba:fd:52:3b:40:14:68:16:12:9a:6b: 72:2f:0c:00:92:66:70:09:ac:e1:33:e3:b3:85:da: 57:e8:74:73:ba:bd:87:6f:8e:b3:71:fc:11:aa:e0: 9c:96:ef:aa:f5:64:44:57:c3:18:76:cd:9c:0c:d9: d8:a8:8c:80:c7:11:45:f4:a0:33:a4:c6:ba:6d:92: 26:09:18:dc:e5:80:c9:4c:ba:a0:ba:b9:a6:3a:1e: df:9f:8d:f6:0e:f3:3d:fb:6f:de:bf:0e:f7:5e:c1: 30:ce:01:e0:a7:f6:37:91:a8:f6:6a:36:2e:1b:99: df:77:22:d2:9a:5f:3d:5f:a7:52:13:ea:12:09:0a: 55:d1:22:2a:38:91:fe:4d:b9:19:18:2e:be:45:fd: 9e:75:24:9d:ed:29:1f:f9:4e:7d:f3:f2:65:b1:4e: 0c:7a:1e:1b:b7:19:1e:f6:f7:94:d9:8b:33:fe:68: cd:c3:cd:5f:46:6e:49:28:9f:f4:fe:7f:58:f4:c3: 79:06:ce:76:34:c1:32:8f:72:0b:9e:a1:96:92:a3: c1:5c:0f:83:3b:fb:b1:3e:be:01:af:cb:cc:a7:9f: e8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:54:88:C3:FD:1E:35:D7:FD:78:93:8A:59:3B:EE:A1:F6:E2:69:BC X509v3 Authority Key Identifier: keyid:0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:cc:5e:4c:4b:83:04:44:b8:38:a4:86:0a:94:16:8e:76:cf: dc:f1:13:ea:d7:c1:98:c4:c7:42:27:ac:45:1d:d9:0b:54:57: 20:39:10:79:78:58:26:9b:25:2b:d0:40:c7:78:ac:14:c3:99: b1:7c:45:61:9c:2b:a5:99:a6:56:51:53:97:82:a0:0b:e4:dd: b7:76:b5:12:c8:fe:95:2e:05:d3:44:85:a9:17:34:f7:02:37: 47:bd:dc:20:99:5e:e2:05:13:d4:7d:f3:12:07:d1:a7:11:c3: 1d:91:0a:5d:0f:02:0f:62:00:8b:b0:2f:45:79:6e:3d:3e:18: 2f:6e:bf:74:38:60:60:c1:a4:cc:49:53:4b:c4:8d:f7:8d:ae: 2b:35:51:28:08:8a:6f:b9:38:c1:92:9e:68:a4:73:5c:84:21: 06:41:cb:58:f6:83:a3:04:1a:95:24:3e:4f:cc:ba:90:2f:66: 54:4b:a4:ee:c8:9a:e3:90:b6:31:14:10:a2:ab:a9:04:d8:8d: 49:f3:39:9e:af:f6:2a:4a:fc:ff:24:bf:fd:00:b6:ef:7f:e5: e6:a0:bb:57:68:6f:c3:60:49:20:bb:7f:93:fb:be:40:44:53: 6c:f3:c7:67:98:4e:3b:13:39:1c:7f:ac:dc:9c:00:c4:53:c7: 6c:a0:a7:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ3QjYxMTAvBgNVBAUTKDBDRDkwNEM3RUIzOTBBRDFBNTVEQkFGNEZDNTAwNTRD MDg1NDZFMkIwHhcNMjYwNTIxMDQxMDIyWhcNMjYwNTI4MDQxMDIyWjAYMRYwFAYD VQQDEw02YTBlODVhZS03NWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cgjRqXeiDYobphEc7neQWV8WiOYNC0HMMxgGNR6B0zquv1SO0AUaBYSmmty LwwAkmZwCazhM+OzhdpX6HRzur2Hb46zcfwRquCclu+q9WREV8MYds2cDNnYqIyA xxFF9KAzpMa6bZImCRjc5YDJTLqgurmmOh7fn432DvM9+2/evw73XsEwzgHgp/Y3 kaj2ajYuG5nfdyLSml89X6dSE+oSCQpV0SIqOJH+TbkZGC6+Rf2edSSd7Skf+U59 8/JlsU4Meh4btxke9veU2Ysz/mjNw81fRm5JKJ/0/n9Y9MN5Bs52NMEyj3ILnqGW kqPBXA+DO/uxPr4Br8vMp5/oUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE9UiMP9 HjXX/XiTilk77qH24mm8MB8GA1UdIwQYMBaAFAzZBMfrOQrRpV269PxQBUwIVG4r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDdCNi85MDVEN0ZFRUNF QzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0R2xYYnIwX0ZBRlRBaFVi aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROa0V4LXM1Q3RHbFhicjBfRkFGVEFoVWJpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDdCNi85MDVEN0ZFRUNFQzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0 R2xYYnIwX0ZBRlRBaFViaXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJcxeTEuDBES4OKSGCpQWjnbP3PET6tfBmMTHQiesRR3ZC1RXIDkQeXhYJpsl K9BAx3isFMOZsXxFYZwrpZmmVlFTl4KgC+Tdt3a1Esj+lS4F00SFqRc09wI3R73c IJle4gUT1H3zEgfRpxHDHZEKXQ8CD2IAi7AvRXluPT4YL26/dDhgYMGkzElTS8SN 942uKzVRKAiKb7k4wZKeaKRzXIQhBkHLWPaDowQalSQ+T8y6kC9mVEuk7sia45C2 MRQQoqupBNiNSfM5nq/2Kkr8/yS//QC273/l5qC7V2hvw2BJILt/k/u+QERTbPPH Z5hOOxM5HH+s3JwAxFPHbKCn/w== -----END CERTIFICATE-----Generated at Thu May 21 10:52:23 2026 by rpki-client