$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: CTRpbD8aUWClJl3QN39ow1uJ6IsK44alxJ8XYfpaj1E= Subject key identifier: 80:FA:DE:9D:37:F2:0E:0C:C6:6F:94:C2:A2:BA:35:5D:64:A8:0F:4B Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0E1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DEC Signing time: Sat 16 May 2026 17:51:44 +0000 Manifest this update: Sat 16 May 2026 17:51:44 +0000 Manifest next update: Sat 23 May 2026 17:51:44 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: W2J7TQV+87UckZYvXC8q5+ewnDDNSxxMmyO17/V81Pw=) 2: 11815E36135311EE94A8A114C4F9AE02.roa (hash: T5GAbC0yTN338KtcDTUO9gQz4ASEYtGI5aC6qczg2W4=) 3: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: meOmGfY3r0GblklalG+4OMMAMZcdYPQdKS2Ett97RO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: May 16 17:51:44 2026 GMT Not After : May 23 17:51:44 2026 GMT Subject: CN=6a08aeb0-5d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9c:e5:aa:45:de:bc:bf:53:11:84:93:24:79: d7:a3:4c:39:50:36:fe:42:ec:21:82:98:c7:82:8f: 81:67:fb:a8:c4:d9:90:35:33:ef:01:b5:ea:61:1d: a2:a6:5b:28:60:0a:bb:d1:63:42:0c:a9:63:f9:c5: ff:60:ad:0d:c2:52:4e:b6:4c:ee:72:a5:a0:b7:fc: 0c:60:81:b0:11:d1:2a:ea:e6:fd:87:68:f1:a4:c6: 19:ac:e8:2a:f2:98:28:e4:b3:60:a7:01:ee:b1:34: 61:35:b0:d1:c2:d9:45:22:49:e9:84:b3:3a:8f:34: 0d:1b:5a:60:21:de:07:fa:4d:fe:ea:5a:ba:a4:4e: a1:c1:a5:13:87:64:1b:4d:8a:cd:8e:67:f9:77:60: 92:f5:b1:85:53:ec:31:36:3b:d0:9e:ba:42:68:74: 58:7d:a4:d3:d7:95:6b:81:a0:c7:1a:fd:1c:8a:40: 71:72:53:84:b2:9e:47:6a:24:3d:2c:83:52:d4:a0: 71:bb:fd:fd:29:ff:c4:48:c0:73:04:dd:f0:91:63: ed:bd:78:17:4a:d0:d5:8e:4d:1d:59:07:77:2e:b5: 11:34:5c:62:94:4e:ec:51:48:13:10:e6:b6:c3:ec: 90:d1:52:4f:e7:14:61:c5:5a:9d:03:47:49:e3:19: 72:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FA:DE:9D:37:F2:0E:0C:C6:6F:94:C2:A2:BA:35:5D:64:A8:0F:4B X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d1:15:44:21:fd:44:e4:0c:69:76:8c:12:66:92:26:57:90: b8:b4:3b:9f:6f:a6:ac:e6:35:ce:89:42:74:8c:0a:3b:b4:47: ed:20:eb:6c:a2:4a:89:5d:8c:2b:b1:d6:e5:03:66:da:e8:97: 37:69:14:8f:de:7f:3b:12:07:f7:37:83:8d:45:5d:08:27:a7: c8:3a:09:9b:94:9a:08:55:ee:89:ab:ce:8e:fe:6f:c3:c4:53: d5:c7:ca:3e:47:db:21:a8:20:90:e7:ac:7f:ed:08:09:e7:16: 78:ff:dc:a8:0c:b6:5e:2e:79:13:00:b0:6e:10:00:13:2b:3a: c2:7c:d3:b5:51:ba:99:e3:c3:31:0b:e3:3d:8d:e9:e2:6c:f1: 6c:a5:89:62:ed:b0:aa:d8:47:8b:b5:0c:e7:a0:3f:47:d9:5f: ab:07:40:7b:67:90:a2:e9:bc:9d:82:a1:b0:d7:f8:65:2b:56: e0:d9:b8:55:f1:73:72:23:08:4c:1b:a0:31:ce:d0:8b:8e:3a: cb:b1:5d:13:f0:0d:f2:56:e1:56:1c:32:62:e7:dc:31:0a:78: b7:5e:b6:5d:74:e2:82:da:e0:32:b6:8c:d7:4c:f4:e5:35:9b: 47:cb:15:74:89:bb:3b:05:39:02:07:45:43:15:e6:40:c0:d4: 5e:9b:51:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwNTE2MTc1MTQ0WhcNMjYwNTIzMTc1MTQ0WjAYMRYwFAYD VQQDEw02YTA4YWViMC01ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZzlqkXevL9TEYSTJHnXo0w5UDb+QuwhgpjHgo+BZ/uoxNmQNTPvAbXqYR2i plsoYAq70WNCDKlj+cX/YK0NwlJOtkzucqWgt/wMYIGwEdEq6ub9h2jxpMYZrOgq 8pgo5LNgpwHusTRhNbDRwtlFIknphLM6jzQNG1pgId4H+k3+6lq6pE6hwaUTh2Qb TYrNjmf5d2CS9bGFU+wxNjvQnrpCaHRYfaTT15VrgaDHGv0cikBxclOEsp5HaiQ9 LINS1KBxu/39Kf/ESMBzBN3wkWPtvXgXStDVjk0dWQd3LrURNFxilE7sUUgTEOa2 w+yQ0VJP5xRhxVqdA0dJ4xlyxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFID63p03 8g4Mxm+UwqK6NV1kqA9LMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAINEVRCH9ROQMaXaMEmaSJleQuLQ7n2+mrOY1zolCdIwKO7RH7SDrbKJKiV2M K7HW5QNm2uiXN2kUj95/OxIH9zeDjUVdCCenyDoJm5SaCFXuiavOjv5vw8RT1cfK PkfbIaggkOesf+0ICecWeP/cqAy2Xi55EwCwbhAAEys6wnzTtVG6mePDMQvjPY3p 4mzxbKWJYu2wqthHi7UM56A/R9lfqwdAe2eQoum8nYKhsNf4ZStW4Nm4VfFzciMI TBugMc7Qi446y7FdE/AN8lbhVhwyYufcMQp4t162XXTigtrgMraM10z05TWbR8sV dIm7OwU5AgdFQxXmQMDUXptRZg== -----END CERTIFICATE-----Generated at Sun May 17 01:15:21 2026 by rpki-client