$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: g40epBUjVgZ4Sz1lK9rMd1NJ95PdFC1DYYh8G0k6jb8= Subject key identifier: 3C:AF:E2:62:05:92:BB:9C:53:8D:B2:04:2E:4E:6F:D1:07:3D:70:C9 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 09E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 099B Signing time: Wed 06 May 2026 20:02:43 +0000 Manifest this update: Wed 06 May 2026 20:02:42 +0000 Manifest next update: Wed 13 May 2026 20:02:42 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: CuGlNV6WbXDunC//a4QDBDBcsydZuPrk7LRFUVKYhus=) 2: 88252000B55C11ECA9565039C4F9AE02.roa (hash: vpFh2/2Ww8n4gYMHhWBePvd1Fheir2EOHQAoooMfRBo=) 3: 50805C5C6CF911F0A63D4C65C4F9AE02.roa (hash: 7GoPVvNzOxqz0b0bUBa7Sq4uOYDaYVX7ArTVXs9QZv4=) 4: F2A462E66B6C11F0B453B656C4F9AE02.roa (hash: HMcEW/S22FGTvhiPakps8LsqQxXUXp8fWhqX+TVm2Vw=) 5: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: lyIUpVCXgqLP2olWGXoY8duGQEhruwus1GboROWSH00=) 6: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: xihXskffyMmX6uPdr43LH17SKnUp1mNtBqH6MhLI3sk=) 7: 1A8C65506B6E11F0AEECA858C4F9AE02.roa (hash: NpbVQQRWWoFXTrGdsKM32fOCA5zAVZsblj+8rYIeUc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2535 (0x9e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: May 6 20:02:42 2026 GMT Not After : May 13 20:02:42 2026 GMT Subject: CN=69fb9e63-9189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ee:08:0f:fc:a2:44:44:c3:4f:74:b6:7e:0a: 28:34:d3:17:9e:a8:6b:39:1c:ea:61:4b:d4:ec:a9: dd:ee:cc:75:2c:e0:7d:13:2a:8a:94:02:91:bf:ba: 26:e9:5e:35:97:ca:af:9e:73:de:bb:56:6f:6a:e5: 82:d2:d2:6f:ab:9b:b5:c9:9a:91:d8:54:3c:6a:38: 29:50:40:0f:06:03:49:91:a2:e5:89:88:1e:fb:ac: c1:68:22:56:d2:38:dc:70:06:7a:13:af:c3:ef:e1: 8b:79:99:69:84:fc:4a:af:e7:60:ad:25:76:d7:d8: 63:16:c2:ca:1d:35:97:29:26:c0:4e:f5:89:cd:9e: 4c:2c:8f:23:7a:25:43:da:35:a1:af:ca:bc:34:a5: 24:61:e0:cb:ed:1e:ff:27:b7:19:e0:29:03:c5:51: 79:17:2e:c7:5a:70:bb:8e:1b:0e:d6:f9:fb:20:6b: ea:78:af:32:15:37:0d:b5:b1:54:15:e4:a5:60:f8: bc:e5:79:0d:fb:db:50:c8:58:f3:02:11:64:8f:b6: f1:11:cc:40:0a:32:21:f1:9d:1e:cc:36:68:60:e2: 79:52:c2:6d:06:4d:94:3c:08:79:65:ea:eb:4e:25: 04:93:24:03:d0:5e:5a:ce:0e:56:a0:64:5c:6d:73: fe:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AF:E2:62:05:92:BB:9C:53:8D:B2:04:2E:4E:6F:D1:07:3D:70:C9 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:20:22:84:4d:35:d3:ae:e7:7f:6d:55:f7:0f:7d:99:7e:a7: d8:74:d9:7f:b0:ea:38:08:05:bf:fd:2c:b0:b9:cd:83:a1:45: 37:0e:38:42:1f:be:e7:d3:7e:af:c1:bb:ee:22:92:42:6c:d0: ba:ad:30:94:b1:99:0f:0e:34:4a:4b:4e:c2:8c:45:7f:20:08: 8a:40:73:ce:98:22:06:d8:29:52:d2:e6:5b:f2:36:48:a9:32: a2:5f:6f:06:fc:3d:ba:d4:95:9f:3d:7f:18:bd:0c:98:f9:36: 4d:ea:b0:63:c1:50:b1:74:24:81:af:c2:64:19:1c:ad:69:bd: 33:11:ca:08:7f:ae:b1:c7:48:88:54:e6:90:32:4f:e2:e8:c7: 7d:57:0e:77:8d:a3:85:26:97:c5:cb:72:c4:65:b3:b1:5a:dc: b0:92:57:70:1c:89:f2:e5:5e:7c:e4:07:12:22:a4:a1:95:63: 99:b2:92:3d:0a:84:a5:47:c2:12:43:86:28:ea:aa:36:f3:ff: 0b:7f:c4:ce:56:14:5b:b0:23:e3:21:48:3c:ee:0d:ef:1e:18: a9:ae:d8:30:a7:37:4d:ca:6d:4b:16:15:78:85:80:74:da:41: 60:3b:5e:17:e4:7f:03:6a:30:bf:87:34:aa:7e:98:e2:2e:83: 6b:a7:09:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjYwNTA2MjAwMjQyWhcNMjYwNTEzMjAwMjQyWjAYMRYwFAYD VQQDEw02OWZiOWU2My05MTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2e4ID/yiRETDT3S2fgooNNMXnqhrORzqYUvU7Knd7sx1LOB9EyqKlAKRv7om 6V41l8qvnnPeu1ZvauWC0tJvq5u1yZqR2FQ8ajgpUEAPBgNJkaLliYge+6zBaCJW 0jjccAZ6E6/D7+GLeZlphPxKr+dgrSV219hjFsLKHTWXKSbATvWJzZ5MLI8jeiVD 2jWhr8q8NKUkYeDL7R7/J7cZ4CkDxVF5Fy7HWnC7jhsO1vn7IGvqeK8yFTcNtbFU FeSlYPi85XkN+9tQyFjzAhFkj7bxEcxACjIh8Z0ezDZoYOJ5UsJtBk2UPAh5Zerr TiUEkyQD0F5azg5WoGRcbXP+pwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDyv4mIF krucU42yBC5Ob9EHPXDJMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkCAihE01067nf21V9w99mX6n2HTZf7DqOAgFv/0ssLnNg6FFNw44Qh++59N+ r8G77iKSQmzQuq0wlLGZDw40SktOwoxFfyAIikBzzpgiBtgpUtLmW/I2SKkyol9v Bvw9utSVnz1/GL0MmPk2TeqwY8FQsXQkga/CZBkcrWm9MxHKCH+uscdIiFTmkDJP 4ujHfVcOd42jhSaXxctyxGWzsVrcsJJXcByJ8uVefOQHEiKkoZVjmbKSPQqEpUfC EkOGKOqqNvP/C3/EzlYUW7Aj4yFIPO4N7x4Yqa7YMKc3TcptSxYVeIWAdNpBYDte F+R/A2owv4c0qn6Y4i6Da6cJSA== -----END CERTIFICATE-----Generated at Thu May 7 10:19:34 2026 by rpki-client