$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: +j1sk22IbWKTkCz/TmVt3hv9m0bk8N22BH4B8GRWptY= Subject key identifier: A4:CC:5F:3B:C5:5E:CF:7C:E2:D1:68:42:AB:5E:95:C7:88:8A:F6:89 Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 01BD Signing time: Thu 21 May 2026 03:55:34 +0000 Manifest this update: Thu 21 May 2026 03:55:33 +0000 Manifest next update: Thu 28 May 2026 03:55:33 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: 9gBAU3AXpRmaeplY8mSX7OVyYKNIm5/sqpWe+Bupts8=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: oYkxtXccfNzhupGam+/pGKaAabTu5hknTCz4hIdu2D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: May 21 03:55:33 2026 GMT Not After : May 28 03:55:33 2026 GMT Subject: CN=6a0e8236-8fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:71:b3:ee:f0:5b:ca:c0:f1:d9:6a:8e:33:bb: 98:63:4c:01:13:f6:59:90:65:99:68:ea:c9:e4:b8: c1:09:6d:ae:67:a5:8b:2f:c9:56:a8:f3:d3:6a:54: a1:ca:80:6d:08:46:d8:55:c9:d8:2d:d1:f9:74:64: f2:75:54:9c:31:30:a7:8d:26:d5:a2:e6:99:f8:2b: 49:10:de:84:b7:46:4e:d9:84:02:4e:b8:2e:05:48: 3a:d9:92:7d:4d:80:94:7b:92:40:0f:1d:54:68:9c: 60:9a:26:e3:6f:66:d1:08:5c:a2:97:14:93:21:d9: e4:33:57:93:99:72:27:c2:67:fc:51:de:5c:fa:4a: cf:1d:b7:56:85:90:cd:24:2d:d0:89:09:27:b1:94: 0a:43:d0:7c:2a:ac:7f:f0:30:04:2f:69:df:c1:63: 92:ae:22:b4:b7:7d:e8:26:b1:28:f7:dd:bd:5d:cc: 7e:32:a3:e2:9f:48:5a:8b:63:9e:a3:f1:b2:d7:b5: d2:19:89:03:1b:15:19:48:47:31:b5:a7:fc:fa:39: ff:31:29:8e:12:2d:18:c4:9e:8c:72:fb:12:84:f7: 92:09:69:ef:2e:22:6c:e2:4a:6a:ef:f2:80:96:1a: 52:5b:4e:38:8b:fe:88:46:b9:7e:1f:94:cc:d8:68: 4b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CC:5F:3B:C5:5E:CF:7C:E2:D1:68:42:AB:5E:95:C7:88:8A:F6:89 X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ad:e3:6a:da:a7:73:a9:67:76:b3:e5:03:dc:23:59:14:f1: 2e:df:16:71:e2:a2:d6:66:5a:f0:16:21:48:d0:1b:b6:e6:87: d0:30:d0:22:9b:6b:b9:83:75:09:da:70:49:0b:f5:04:e5:c9: 71:8d:c1:b9:bb:0e:5c:ab:73:95:e4:be:36:f6:76:f1:83:8c: 09:bc:24:1c:c4:e8:f3:40:32:4f:4f:85:c8:b1:35:75:86:e8: 7e:88:78:97:f5:37:cc:6d:d0:18:89:81:03:e6:0c:d0:56:26: ab:a5:d6:33:04:b8:36:23:7e:03:e9:6d:d0:ea:47:93:b9:9f: 4b:5f:27:59:d1:86:77:6d:66:4c:39:62:30:3f:77:85:a4:ac: e2:8a:df:07:41:28:cc:70:5c:b1:20:e7:df:ac:f7:c1:75:c2: 09:5b:0f:6b:f7:00:f6:91:25:35:4c:d7:39:ff:81:dc:f7:c8: 5e:28:30:fe:58:5d:7f:f4:f3:96:da:bc:52:15:24:a4:0b:a5: 3f:e1:79:4a:eb:ec:50:23:92:14:fb:03:9b:9a:93:e7:24:3b: 10:6b:c6:00:19:23:5e:61:67:a4:8b:4b:f8:3f:d9:13:89:6e: a7:56:b7:9d:54:25:53:b6:b0:03:6a:f4:63:8e:8c:f2:ad:96: 9b:87:f7:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjYwNTIxMDM1NTMzWhcNMjYwNTI4MDM1NTMzWjAYMRYwFAYD VQQDEw02YTBlODIzNi04ZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkHGz7vBbysDx2WqOM7uYY0wBE/ZZkGWZaOrJ5LjBCW2uZ6WLL8lWqPPTalSh yoBtCEbYVcnYLdH5dGTydVScMTCnjSbVouaZ+CtJEN6Et0ZO2YQCTrguBUg62ZJ9 TYCUe5JADx1UaJxgmibjb2bRCFyilxSTIdnkM1eTmXInwmf8Ud5c+krPHbdWhZDN JC3QiQknsZQKQ9B8Kqx/8DAEL2nfwWOSriK0t33oJrEo9929Xcx+MqPin0hai2Oe o/Gy17XSGYkDGxUZSEcxtaf8+jn/MSmOEi0YxJ6McvsShPeSCWnvLiJs4kpq7/KA lhpSW044i/6IRrl+H5TM2GhLqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKTMXzvF Xs984tFoQqtelceIivaJMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFq3jatqnc6lndrPlA9wjWRTxLt8WceKi1mZa8BYhSNAbtuaH0DDQIptruYN1 CdpwSQv1BOXJcY3BubsOXKtzleS+NvZ28YOMCbwkHMTo80AyT0+FyLE1dYbofoh4 l/U3zG3QGImBA+YM0FYmq6XWMwS4NiN+A+lt0OpHk7mfS18nWdGGd21mTDliMD93 haSs4orfB0EozHBcsSDn36z3wXXCCVsPa/cA9pElNUzXOf+B3PfIXigw/lhdf/Tz ltq8UhUkpAulP+F5SuvsUCOSFPsDm5qT5yQ7EGvGABkjXmFnpItL+D/ZE4lup1a3 nVQlU7awA2r0Y46M8q2Wm4f3SA== -----END CERTIFICATE-----Generated at Thu May 21 09:38:42 2026 by rpki-client