$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: g9MfuI0stbS4y5tUwssz7cCYYgoZI3CIvzEmx+j9DqY= Subject key identifier: E7:70:6D:30:45:8D:71:51:B7:52:F4:28:D8:76:B9:AE:E9:82:77:9A Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 032F Signing time: Thu 21 May 2026 01:12:01 +0000 Manifest this update: Thu 21 May 2026 01:12:00 +0000 Manifest next update: Thu 28 May 2026 01:12:00 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: xNl7nam74+KsXztaSOzkrKPys0lFZQ0dobPHQbn7HqA=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: QM3TZDb9n+aQx7/1/HX5pDRtbQ+ME0yE/NNbiA3qbqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: May 21 01:12:00 2026 GMT Not After : May 28 01:12:00 2026 GMT Subject: CN=6a0e5be1-239b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:70:8d:80:bc:9e:ca:f1:4d:00:05:b0:d1: be:99:d7:f7:6f:3a:a6:1e:2b:48:dc:df:9a:60:56: fb:6b:1a:df:2c:2a:cc:8e:47:da:8f:ef:fb:85:2a: 33:9a:99:28:a6:b7:7c:cb:db:88:41:a1:2d:09:15: 44:5c:42:bf:7d:d6:9a:d1:21:58:7a:a5:a7:9f:36: 60:08:69:60:03:2e:34:7e:d4:d8:da:c3:58:cc:17: 32:bf:e9:0a:db:58:f1:5d:6e:9b:8e:d5:3d:9f:79: b6:fd:a2:c1:37:f1:bf:6d:2a:99:07:5b:e8:9e:7c: 84:e8:d1:1f:8f:eb:e6:59:b5:04:ff:26:1b:3f:66: 5d:03:a2:0e:9b:b2:ea:a3:de:4b:a7:77:60:60:e5: 18:c2:d8:b4:46:76:18:ed:36:01:97:79:01:38:69: b6:9e:95:8d:09:b2:33:3c:28:25:89:79:25:89:77: 25:0f:19:9b:9e:0b:87:e7:70:69:30:40:09:f9:f7: 32:19:69:c7:c1:8e:fd:c7:e9:d8:8b:28:c7:7a:5c: fa:f3:95:b9:68:0f:95:25:3b:10:b0:00:26:92:77: 19:d2:f4:93:f9:9a:a4:e6:aa:12:e2:54:07:58:cf: c1:71:6b:b3:f3:02:c3:4d:2b:e7:0e:7f:4c:ca:87: 40:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:70:6D:30:45:8D:71:51:B7:52:F4:28:D8:76:B9:AE:E9:82:77:9A X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:2b:12:3c:87:da:be:75:7a:b0:51:25:77:a6:e0:53:15:fe: 6e:ff:0b:01:90:3a:0d:0e:97:72:62:d9:16:01:c6:08:94:33: 48:56:95:9b:89:d3:67:db:2e:cb:ae:1a:1d:56:d8:e8:c2:37: cb:01:a7:e8:13:06:66:99:04:9c:cd:04:2b:f0:64:b7:86:1a: 97:cd:bb:dd:40:63:63:8e:07:75:c3:47:15:f5:3e:1e:8e:6f: 3a:42:ca:9c:6e:71:bb:99:25:c4:0c:c5:4b:54:ed:32:cb:b3: d7:4e:ca:fb:50:a8:8a:fd:07:0f:8f:a6:31:90:3c:04:32:8a: 88:20:7e:f2:0e:4f:fa:ab:ff:c2:98:ce:53:ac:e4:6a:63:44: f2:f5:e4:f7:88:1e:2e:f0:f1:4e:35:6b:80:29:d3:77:6c:63: 60:15:92:7d:59:4c:96:1e:17:1d:3e:ea:b1:1a:a2:47:35:c6: d7:88:c7:cb:7d:7c:71:bf:cc:69:d6:cf:58:4f:f4:56:96:e5: 50:6e:db:07:3d:bd:48:1d:d7:35:ff:cf:bd:93:32:c4:ea:fe: ed:95:06:49:c5:38:6e:d0:f6:a8:71:7d:f6:fd:fc:da:48:ad: 07:94:6f:ea:a2:95:e3:4e:8c:bc:5d:ce:15:a4:81:8c:43:92: 44:74:3a:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjYwNTIxMDExMjAwWhcNMjYwNTI4MDExMjAwWjAYMRYwFAYD VQQDEw02YTBlNWJlMS0yMzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAdwjYC8nsrxTQAFsNG+mdf3bzqmHitI3N+aYFb7axrfLCrMjkfaj+/7hSoz mpkoprd8y9uIQaEtCRVEXEK/fdaa0SFYeqWnnzZgCGlgAy40ftTY2sNYzBcyv+kK 21jxXW6bjtU9n3m2/aLBN/G/bSqZB1vonnyE6NEfj+vmWbUE/yYbP2ZdA6IOm7Lq o95Lp3dgYOUYwti0RnYY7TYBl3kBOGm2npWNCbIzPCgliXkliXclDxmbnguH53Bp MEAJ+fcyGWnHwY79x+nYiyjHelz685W5aA+VJTsQsAAmkncZ0vST+Zqk5qoS4lQH WM/BcWuz8wLDTSvnDn9MyodAkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOdwbTBF jXFRt1L0KNh2ua7pgneaMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMCsSPIfavnV6sFEld6bgUxX+bv8LAZA6DQ6XcmLZFgHGCJQzSFaVm4nTZ9su y64aHVbY6MI3ywGn6BMGZpkEnM0EK/Bkt4Yal8273UBjY44HdcNHFfU+Ho5vOkLK nG5xu5klxAzFS1TtMsuz107K+1Coiv0HD4+mMZA8BDKKiCB+8g5P+qv/wpjOU6zk amNE8vXk94geLvDxTjVrgCnTd2xjYBWSfVlMlh4XHT7qsRqiRzXG14jHy318cb/M adbPWE/0VpblUG7bBz29SB3XNf/PvZMyxOr+7ZUGScU4btD2qHF99v382kitB5Rv 6qKV406MvF3OFaSBjEOSRHQ6JA== -----END CERTIFICATE-----Generated at Thu May 21 10:20:19 2026 by rpki-client