$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: Tf3p4pzQ8gL4GAdmYJM8sUoJu1YhRXor6dcnR3rHWH4= Subject key identifier: 1C:7E:BF:7E:12:90:44:74:D2:F0:14:C5:74:00:36:0D:76:76:1B:60 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 3558 Signing time: Wed 20 May 2026 14:29:57 +0000 Manifest this update: Wed 20 May 2026 14:29:56 +0000 Manifest next update: Wed 27 May 2026 14:29:56 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: Om74lI1TkaUDauDHPuGxtL35IgIFTWEAgL3rQB/rb10=) 2: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: tHMeyTgXVjqu1F3xAY8dG3i7T9LkiFUkLAwr5V1RAGo=) 3: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: y6Cb0qWIx1yRlu9RsKzzdkQCpXsOgAgmZ5vTiuWgcQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13682 (0x3572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: May 20 14:29:56 2026 GMT Not After : May 27 14:29:56 2026 GMT Subject: CN=6a0dc565-f879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:70:f2:38:0e:13:59:07:7d:3e:c0:30:38:e6: e7:d1:ee:af:24:ad:00:9e:92:cb:8d:bd:4b:78:2f: ae:e7:77:9b:ae:53:d9:ba:61:ff:c3:3d:f7:5a:e1: 0a:92:15:3a:4a:bf:3f:b7:26:88:68:d8:02:8d:97: ec:c9:08:7e:87:97:12:b2:f0:8e:2b:b0:3c:d6:4c: 56:69:9a:6b:6e:41:ac:ba:77:f7:1b:c3:d9:6b:fa: 7d:59:88:01:c1:ad:d9:9a:dc:b8:19:73:b3:d9:2a: 6f:1e:ad:55:53:33:92:bf:d9:11:bd:37:9d:ef:c9: cc:a5:51:fa:29:e9:cb:d8:5e:1f:3e:9b:b9:8e:43: 43:d2:bd:66:34:b1:cf:b0:d5:1a:9d:cf:9c:c0:b6: 88:eb:cc:15:0f:4d:b8:86:9f:f2:80:13:f6:73:9a: cd:8e:a6:da:81:e7:3c:81:29:cb:3e:c5:e6:66:8e: 9e:5c:8a:2a:44:5d:cb:41:85:53:b1:c9:e1:a6:36: b7:39:0b:a1:60:70:0e:96:0e:b6:62:6d:75:c2:cd: aa:0f:5b:a3:3e:e7:1c:dc:9e:b9:07:ba:97:d7:9e: 9e:4e:2f:e6:ed:85:3c:8a:6d:9a:5f:3b:2f:57:b8: 39:f7:98:02:d9:89:b0:b1:6b:79:b9:de:d5:be:99: d8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7E:BF:7E:12:90:44:74:D2:F0:14:C5:74:00:36:0D:76:76:1B:60 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a5:21:87:0e:69:8d:93:2e:ce:0f:75:31:29:25:e5:c7:c1: ca:b4:4a:8a:dd:c7:b1:79:50:81:30:b9:7d:34:a0:86:6c:96: 84:81:2d:aa:60:90:86:96:51:f3:68:25:63:72:b8:63:15:f5: 27:9d:f9:ab:36:06:ba:e7:fa:2b:d8:24:54:a4:10:20:63:fd: f6:6e:37:27:4f:3e:63:f6:f2:be:dd:01:80:2b:fe:0b:47:18: 52:b3:39:4d:17:6d:1c:e1:53:a5:f0:e9:60:22:9e:fe:ea:33: c7:26:7b:56:67:eb:21:85:5b:91:77:e5:4b:f3:0f:8b:5c:e0: d9:f3:8f:ba:e8:8e:bf:86:5b:22:95:f0:66:26:b7:d0:f0:7e: 03:30:76:27:60:c5:64:3c:76:16:79:cc:71:e3:a6:a8:f9:95: 48:5b:9a:ee:0a:28:42:a2:18:a8:c9:e2:b3:66:ca:a1:27:78: 06:85:16:82:66:86:96:26:b4:f3:c0:35:e2:ba:2b:cf:ee:1c: 5b:16:9a:37:c0:0f:ac:9e:cc:44:5c:60:69:e1:7e:ce:59:81: 6b:52:9f:80:45:5d:e3:4a:84:31:7b:70:00:e2:7b:5b:f7:d6: 97:70:0c:54:78:08:a1:29:d5:d2:0b:21:22:95:8a:30:cd:b8: 13:bd:3b:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjYwNTIwMTQyOTU2WhcNMjYwNTI3MTQyOTU2WjAYMRYwFAYD VQQDEw02YTBkYzU2NS1mODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HDyOA4TWQd9PsAwOObn0e6vJK0AnpLLjb1LeC+u53ebrlPZumH/wz33WuEK khU6Sr8/tyaIaNgCjZfsyQh+h5cSsvCOK7A81kxWaZprbkGsunf3G8PZa/p9WYgB wa3Zmty4GXOz2SpvHq1VUzOSv9kRvTed78nMpVH6KenL2F4fPpu5jkND0r1mNLHP sNUanc+cwLaI68wVD024hp/ygBP2c5rNjqbagec8gSnLPsXmZo6eXIoqRF3LQYVT scnhpja3OQuhYHAOlg62Ym11ws2qD1ujPucc3J65B7qX156eTi/m7YU8im2aXzsv V7g595gC2YmwsWt5ud7VvpnYHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBx+v34S kER00vAUxXQANg12dhtgMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYaUhhw5pjZMuzg91MSkl5cfByrRKit3HsXlQgTC5fTSghmyWhIEtqmCQhpZR 82glY3K4YxX1J535qzYGuuf6K9gkVKQQIGP99m43J08+Y/byvt0BgCv+C0cYUrM5 TRdtHOFTpfDpYCKe/uozxyZ7VmfrIYVbkXflS/MPi1zg2fOPuuiOv4ZbIpXwZia3 0PB+AzB2J2DFZDx2FnnMceOmqPmVSFua7gooQqIYqMnis2bKoSd4BoUWgmaGlia0 88A14rorz+4cWxaaN8APrJ7MRFxgaeF+zlmBa1KfgEVd40qEMXtwAOJ7W/fWl3AM VHgIoSnV0gshIpWKMM24E707Bg== -----END CERTIFICATE-----Generated at Thu May 21 10:28:08 2026 by rpki-client