$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: dila4y8WCo30CF2lQVlZMvGOpPFYlYZ2QFZkYra/AKA= Subject key identifier: AC:05:36:99:3B:B5:C2:2E:2C:DA:1A:42:F4:44:B5:8E:D5:10:AD:E5 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 0331 Signing time: Thu 21 May 2026 01:09:50 +0000 Manifest this update: Thu 21 May 2026 01:09:49 +0000 Manifest next update: Thu 28 May 2026 01:09:49 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: n9Q3zrEARVham5vEacegMRdXRtIzlP7/jaR1HOPWoLM=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: extwZoZ4o7qFht4F8tbdr5isEJa1lOyoukk0O3tlrPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: May 21 01:09:49 2026 GMT Not After : May 28 01:09:49 2026 GMT Subject: CN=6a0e5b5e-aefe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b6:2b:0a:6a:8c:74:b3:0d:6d:e9:32:8b:e5: bd:81:30:0d:5d:9a:68:d0:62:51:d9:bb:77:6a:06: 58:64:68:f4:cb:e6:5b:19:82:17:87:ef:77:4d:0d: 98:64:1c:4f:4e:5c:43:13:f1:fe:8b:fd:7a:27:d4: 5f:2e:fd:42:73:14:a4:40:47:4b:d1:7c:d6:e2:18: 9e:61:f4:a7:88:47:64:a8:14:fe:93:4a:e9:57:df: 71:4c:b1:e0:ce:6d:2f:66:46:91:bb:64:2e:e4:2e: 56:f9:07:40:03:2c:7c:e0:ea:bf:6f:70:45:98:e5: 4e:38:69:d7:f7:1d:6d:29:f3:37:ce:10:53:84:db: 57:69:6c:cb:52:8e:c3:46:ac:8e:45:46:d5:1b:29: 35:34:0e:05:57:ec:c7:b4:96:ab:cf:f7:5b:22:a7: 2c:91:36:ab:54:06:06:11:a3:11:0f:a9:aa:00:d9: 61:0e:c1:8b:72:6a:63:4e:df:d6:fc:50:60:53:6f: fd:44:d0:fb:37:9d:39:1d:66:5b:95:b5:fd:4f:5e: dd:0a:8e:f1:15:c7:2c:7d:41:a9:19:57:6b:d1:0b: e9:c6:ef:d2:c7:f8:14:93:1a:9c:e2:e3:75:6b:7c: d4:18:c3:fa:43:79:e3:50:68:df:39:24:15:9d:4c: 5e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:05:36:99:3B:B5:C2:2E:2C:DA:1A:42:F4:44:B5:8E:D5:10:AD:E5 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:47:c1:22:4a:df:53:4d:6b:b4:3d:08:13:d7:08:cb:67:85: 26:e2:46:aa:ee:50:a7:35:4c:7e:d2:d6:e7:90:a3:0a:2f:34: e6:4f:47:33:64:50:97:ce:4d:a7:5f:83:9b:f9:25:8e:d9:ea: 4b:0e:cb:10:3d:78:7b:b9:08:fb:72:df:5d:16:d3:f4:dc:bd: 43:49:70:a7:ef:10:4f:77:55:e5:e7:b9:67:7a:1c:20:6e:db: d4:00:72:3a:99:63:ce:ae:15:85:b6:1a:38:ad:11:9c:61:96: eb:e7:3e:0d:f1:18:c3:1a:08:c8:6e:25:1b:46:85:e5:ad:ba: d2:2d:dd:31:98:c3:df:6f:0d:e1:f0:19:ee:13:cd:c8:e6:32: 58:f4:9a:08:5e:1a:d1:6e:70:23:c3:32:02:16:49:9f:de:45: 12:69:3c:b2:3a:52:b3:0c:3a:bf:53:91:7d:21:5f:16:fc:59: 76:a1:1b:ad:b9:bb:a2:aa:8e:d6:9c:90:b8:89:75:16:a0:a3: 29:ab:cf:40:45:dc:7a:6f:72:d5:6e:ad:17:67:28:b4:af:52: 7f:0f:f1:16:6d:f7:0f:51:5c:6c:1d:ee:bc:cc:d8:ad:6f:30: 32:7a:45:7c:79:6f:fb:53:81:65:41:ef:50:86:9b:31:ce:07: 3a:0b:76:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjYwNTIxMDEwOTQ5WhcNMjYwNTI4MDEwOTQ5WjAYMRYwFAYD VQQDEw02YTBlNWI1ZS1hZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17YrCmqMdLMNbekyi+W9gTANXZpo0GJR2bt3agZYZGj0y+ZbGYIXh+93TQ2Y ZBxPTlxDE/H+i/16J9RfLv1CcxSkQEdL0XzW4hieYfSniEdkqBT+k0rpV99xTLHg zm0vZkaRu2Qu5C5W+QdAAyx84Oq/b3BFmOVOOGnX9x1tKfM3zhBThNtXaWzLUo7D RqyORUbVGyk1NA4FV+zHtJarz/dbIqcskTarVAYGEaMRD6mqANlhDsGLcmpjTt/W /FBgU2/9RND7N505HWZblbX9T17dCo7xFccsfUGpGVdr0Qvpxu/Sx/gUkxqc4uN1 a3zUGMP6Q3njUGjfOSQVnUxeSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKwFNpk7 tcIuLNoaQvREtY7VEK3lMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQEfBIkrfU01rtD0IE9cIy2eFJuJGqu5QpzVMftLW55CjCi805k9HM2RQl85N p1+Dm/kljtnqSw7LED14e7kI+3LfXRbT9Ny9Q0lwp+8QT3dV5ee5Z3ocIG7b1ABy Opljzq4VhbYaOK0RnGGW6+c+DfEYwxoIyG4lG0aF5a260i3dMZjD328N4fAZ7hPN yOYyWPSaCF4a0W5wI8MyAhZJn95FEmk8sjpSsww6v1ORfSFfFvxZdqEbrbm7oqqO 1pyQuIl1FqCjKavPQEXcem9y1W6tF2cotK9Sfw/xFm33D1FcbB3uvMzYrW8wMnpF fHlv+1OBZUHvUIabMc4HOgt2Rg== -----END CERTIFICATE-----Generated at Thu May 21 11:40:02 2026 by rpki-client