$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: Bnpim2H1x2VETPtR7Yp9q5MfMH5q/1bpxAvwg5iTdWw= Subject key identifier: F6:16:37:E2:2E:22:64:1C:3D:5C:31:89:4D:E1:AC:1F:5A:94:BF:2A Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 072D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 071F Signing time: Wed 20 May 2026 21:55:21 +0000 Manifest this update: Wed 20 May 2026 21:55:21 +0000 Manifest next update: Wed 27 May 2026 21:55:21 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: kFSA0EfcgZcis+6fyY4gHPboaGbhVAsXayVwFlASwcE=) 2: 517F49AA822611EB8990276EC4F9AE02.roa (hash: AiOBrVM7jcIowiVFU6dduzLILwALxoJy2D7zLUEvCBQ=) 3: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: F/n1fw5Wh9KTj/6W2CMzWHfj5GcUWPdwePPGd5S/6ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: May 20 21:55:21 2026 GMT Not After : May 27 21:55:21 2026 GMT Subject: CN=6a0e2dc9-e4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:69:a6:6b:76:ab:66:95:09:87:ab:1d:fc:42: 2c:d9:78:6c:42:c2:86:27:46:8a:c1:c4:c9:21:c2: f0:db:dc:31:3e:e3:01:ad:d9:8e:10:f1:98:c7:86: ed:5e:58:b7:0d:c0:9b:b0:79:8c:57:40:02:3f:8c: ac:29:39:eb:ff:ed:85:44:67:65:c6:08:df:b2:94: 7b:91:cb:13:14:22:12:3b:72:40:29:62:7a:87:c6: 57:90:be:68:91:d5:74:c4:3b:57:8b:e1:a3:b5:f8: 77:05:4d:4a:80:bd:f1:1c:89:6c:9d:b6:1e:55:ba: 25:3d:b4:87:a6:a2:3d:e0:fe:8b:5d:d7:9d:e4:4a: 12:69:51:c6:08:26:12:bf:3c:c6:9c:7e:74:a4:c0: 06:db:73:81:45:81:0d:e8:be:47:22:0e:66:37:c3: 9b:72:89:ab:04:9a:81:0a:75:63:69:c0:08:09:44: 4d:e7:59:2b:ae:ab:da:60:65:02:88:97:7f:98:73: b0:79:4e:24:e5:29:bb:d7:98:4d:45:22:25:14:ca: 52:f6:f7:a2:03:b4:0b:30:4c:f9:1a:0b:1c:d4:53: 88:64:63:de:c6:55:38:46:6e:4c:4a:cb:eb:78:cf: a1:d0:79:8f:a4:97:c7:5e:fa:73:4a:68:6f:fc:f9: 99:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:16:37:E2:2E:22:64:1C:3D:5C:31:89:4D:E1:AC:1F:5A:94:BF:2A X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d4:46:cd:a9:1b:a7:b3:b4:c4:aa:91:2b:94:bb:9e:b4:9f: 41:9c:0f:9c:12:9d:41:c0:ec:5f:d7:ee:af:f1:a0:de:71:96: e7:38:d7:65:6c:d5:5c:27:4f:07:d4:4d:0f:cd:08:62:e2:b7: 28:67:9d:fb:a1:bb:11:30:39:e1:69:6f:46:9c:f2:3c:88:0a: 19:ce:14:9b:15:de:5c:0c:8e:c4:65:e7:f3:b4:bb:d2:0f:05: ca:ee:38:b7:9c:7b:f2:5e:90:30:5d:f2:8b:28:7c:d4:d5:8b: ba:50:d3:a1:39:f8:c9:aa:c8:b1:c0:bd:5e:97:c9:0f:40:5f: 78:1e:6e:cd:3e:5a:b2:3a:99:36:39:dd:d0:57:a9:50:b5:57: 80:f5:88:79:c4:2c:84:e3:8a:25:23:e8:53:d3:9f:48:10:b2: 75:b4:44:d6:c8:1f:e2:c0:0e:3e:3c:ee:24:06:88:21:67:5b: 0f:f9:45:db:c7:0f:d1:35:70:16:d6:70:b5:8b:7b:9f:29:d1: 30:98:3d:e3:0e:a1:2a:9a:21:78:1a:5f:31:29:ee:23:46:c3: d0:2e:df:a3:50:18:dc:7b:de:4e:f6:b5:1c:06:c1:04:e9:03: 42:54:4a:ea:71:ff:79:a6:b6:8a:19:7b:ce:66:51:64:11:78: b5:0e:aa:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjYwNTIwMjE1NTIxWhcNMjYwNTI3MjE1NTIxWjAYMRYwFAYD VQQDEw02YTBlMmRjOS1lNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Wmma3arZpUJh6sd/EIs2XhsQsKGJ0aKwcTJIcLw29wxPuMBrdmOEPGYx4bt Xli3DcCbsHmMV0ACP4ysKTnr/+2FRGdlxgjfspR7kcsTFCISO3JAKWJ6h8ZXkL5o kdV0xDtXi+Gjtfh3BU1KgL3xHIlsnbYeVbolPbSHpqI94P6LXded5EoSaVHGCCYS vzzGnH50pMAG23OBRYEN6L5HIg5mN8ObcomrBJqBCnVjacAICURN51krrqvaYGUC iJd/mHOweU4k5Sm715hNRSIlFMpS9veiA7QLMEz5Ggsc1FOIZGPexlU4Rm5MSsvr eM+h0HmPpJfHXvpzSmhv/PmZrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPYWN+Iu ImQcPVwxiU3hrB9alL8qMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAtRGzakbp7O0xKqRK5S7nrSfQZwPnBKdQcDsX9fur/Gg3nGW5zjXZWzVXCdP B9RND80IYuK3KGed+6G7ETA54WlvRpzyPIgKGc4UmxXeXAyOxGXn87S70g8Fyu44 t5x78l6QMF3yiyh81NWLulDToTn4yarIscC9XpfJD0BfeB5uzT5asjqZNjnd0Fep ULVXgPWIecQshOOKJSPoU9OfSBCydbRE1sgf4sAOPjzuJAaIIWdbD/lF28cP0TVw FtZwtYt7nynRMJg94w6hKpoheBpfMSnuI0bD0C7fo1AY3HveTva1HAbBBOkDQlRK 6nH/eaa2ihl7zmZRZBF4tQ6qQQ== -----END CERTIFICATE-----Generated at Thu May 21 11:14:28 2026 by rpki-client