$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json) Hash identifier: YeNA1jCoJ+0SqvZoV7JCUyBo8Rdo5gke6sW6gywPQb8= Subject key identifier: 27:FB:9D:8E:1E:CA:CB:F9:C2:CD:BD:52:E9:CB:B7:79:64:24:EA:E1 Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 0678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft Manifest number: 0667 Signing time: Wed 20 May 2026 22:40:37 +0000 Manifest this update: Wed 20 May 2026 22:40:36 +0000 Manifest next update: Wed 27 May 2026 22:40:36 +0000 Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: JVmyTy5enBc5/lDZt84tKKPtp0UIxPEyLb/xqDD/r4E=) 2: 324C60ACDD2211F0BB0B52AC636F56BC.roa (hash: DeEQGurqm7eSpSsYzXwNaAtssPLf2RiuTFIL21AIcCE=) 3: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: Zg+eHPdVNDM4QI8KEgw81Og4McuXzxsHfkNcln3oKOk=) 4: 18981398329B11EDB9F09862C4F9AE02.roa (hash: BIoQ+elASRB2TiBp78lt2ETWeyKSdC3Iplvz/Xmhi9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A, serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: May 20 22:40:36 2026 GMT Not After : May 27 22:40:36 2026 GMT Subject: CN=6a0e3865-60aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:54:b7:84:3c:76:67:cc:87:89:b4:ab:d1:ac: a2:04:69:0f:3f:4d:c8:69:6f:77:21:bb:bd:f1:da: 1d:bf:20:6b:31:59:fe:3c:36:4e:8a:ce:e8:f2:6a: 02:70:fe:5a:b0:ca:0e:4c:01:6c:df:fc:36:71:43: e8:ab:c0:07:f1:30:5b:3f:d9:5f:f0:ad:a8:6a:d6: ac:29:f9:d3:09:4a:1c:cb:22:27:5d:09:1c:7b:8d: e5:de:bf:90:cb:c4:da:f2:26:0b:5b:ca:fe:58:5a: 89:7f:24:e1:c5:27:57:b1:91:3f:73:91:d2:91:fe: 3f:c9:ae:35:d3:d5:b9:af:2e:dd:1a:1a:72:82:08: 8a:9a:86:d6:8a:25:ac:bf:a7:35:15:22:c7:69:b3: f1:13:c2:b4:59:b0:a5:ec:2b:58:da:b6:ee:e2:a2: cb:80:29:8b:31:02:90:9b:ba:31:1a:a2:3e:a2:e4: d0:2a:da:a7:f8:c9:9a:88:cc:df:b9:1f:c9:7e:30: 35:3e:af:28:28:f5:2f:65:ec:ff:41:c0:39:f0:9f: 75:d4:67:bd:ed:c0:fc:a8:2e:9e:03:e6:ab:11:10: 44:fe:73:5d:7e:5f:1c:b4:5a:7b:93:5f:bb:05:e3: 4d:86:86:dc:4e:3c:1a:79:ab:ff:c4:69:2a:83:d1: 9d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FB:9D:8E:1E:CA:CB:F9:C2:CD:BD:52:E9:CB:B7:79:64:24:EA:E1 X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:4f:f2:33:5f:46:a5:c8:c0:0e:d2:af:3f:3b:37:73:9c:bb: 0e:ab:27:67:e8:cf:fb:81:ce:1c:aa:de:76:66:f8:8d:49:2a: aa:2a:32:5e:96:72:5e:8a:87:1c:d4:e8:ae:7e:b3:8f:b3:55: 6c:eb:07:c0:df:b9:39:bd:6b:5f:0b:d0:51:53:3a:62:7d:66: bd:43:14:33:be:c3:3c:0d:3d:9a:69:11:eb:9c:84:ba:ab:ea: 29:32:6f:8d:bc:9b:ae:a3:1b:56:e9:b5:f4:e0:9b:2c:d6:8a: 5b:5e:2a:05:38:94:97:ac:68:5d:9a:01:4f:65:7e:c0:77:b0: 76:dd:1b:1b:93:b4:3f:7c:99:e8:a7:a3:59:5d:44:ad:07:69: e2:c1:a0:5f:a7:9a:c5:88:aa:ca:01:4b:83:60:d5:b1:c9:97: de:0f:7c:99:0e:54:a1:f7:8a:1d:e4:9d:57:b7:4b:bb:44:b0: 17:4b:93:e5:d1:e3:13:13:6e:76:53:9c:70:8a:e1:21:a4:ff: 3a:ef:6b:5b:d6:45:33:82:53:bb:60:75:55:24:ff:89:17:1c: 81:01:2e:85:5e:c0:e7:70:ce:c0:cf:86:4a:87:36:b2:ab:0a: 7f:41:0f:d4:e3:30:3e:03:16:2d:40:0e:05:8e:1a:b7:a9:3d: 00:b9:e5:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjYwNTIwMjI0MDM2WhcNMjYwNTI3MjI0MDM2WjAYMRYwFAYD VQQDEw02YTBlMzg2NS02MGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFS3hDx2Z8yHibSr0ayiBGkPP03IaW93Ibu98dodvyBrMVn+PDZOis7o8moC cP5asMoOTAFs3/w2cUPoq8AH8TBbP9lf8K2oatasKfnTCUocyyInXQkce43l3r+Q y8Ta8iYLW8r+WFqJfyThxSdXsZE/c5HSkf4/ya4109W5ry7dGhpyggiKmobWiiWs v6c1FSLHabPxE8K0WbCl7CtY2rbu4qLLgCmLMQKQm7oxGqI+ouTQKtqn+MmaiMzf uR/JfjA1Pq8oKPUvZez/QcA58J911Ge97cD8qC6eA+arERBE/nNdfl8ctFp7k1+7 BeNNhobcTjwaeav/xGkqg9GdnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCf7nY4e ysv5ws29UunLt3lkJOrhMB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUQ4QS9CQTJGMUI5QUNBRUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jw d3VDSWFoRE9CdlZmVzRRd0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASU/yM19GpcjADtKvPzs3c5y7DqsnZ+jP+4HOHKredmb4jUkqqioyXpZyXoqH HNTorn6zj7NVbOsHwN+5Ob1rXwvQUVM6Yn1mvUMUM77DPA09mmkR65yEuqvqKTJv jbybrqMbVum19OCbLNaKW14qBTiUl6xoXZoBT2V+wHewdt0bG5O0P3yZ6KejWV1E rQdp4sGgX6eaxYiqygFLg2DVscmX3g98mQ5UofeKHeSdV7dLu0SwF0uT5dHjExNu dlOccIrhIaT/Ou9rW9ZFM4JTu2B1VST/iRccgQEuhV7A53DOwM+GSoc2sqsKf0EP 1OMwPgMWLUAOBY4at6k9ALnlDw== -----END CERTIFICATE-----Generated at Thu May 21 09:36:35 2026 by rpki-client