$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: BzEQVtU8Rp2SRrDmGqEo3x7++m5C6tR9fxTwgk/ip6w= Subject key identifier: CA:4D:6D:CE:9F:3D:DF:EC:28:42:C7:13:59:FD:EC:29:0F:EB:02:49 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 012F Signing time: Thu 21 May 2026 05:42:17 +0000 Manifest this update: Thu 21 May 2026 05:42:17 +0000 Manifest next update: Thu 28 May 2026 05:42:17 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: QWer5mBrmqsg73Y2UYleDa246d3YV6Pk+sC6622DXR8=) 2: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: AFwVZfcUHzwe9j0UrSqlyKnxLzWcBfDiYKBuQr8Nbjs=) 3: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EUtWxQAE1BFRn9M5BHJ1aea0TybMQyltaStUs+wgA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: May 21 05:42:17 2026 GMT Not After : May 28 05:42:17 2026 GMT Subject: CN=6a0e9b39-f573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:06:01:12:25:cc:b0:de:3d:45:d4:e8:0b:a8: 55:6e:d7:33:e5:09:49:ce:44:8d:08:5c:8d:8d:60: 4d:75:0e:2c:17:5f:d2:a9:27:7b:a9:07:86:79:6b: e6:d5:fe:ba:c0:d8:1f:08:15:46:e6:9a:ef:71:e1: c7:14:78:93:b2:88:4b:c7:5f:25:ea:a5:ce:37:cf: 19:b5:85:61:eb:84:e3:cd:d6:63:d0:b3:9a:a4:fb: 35:ee:a9:83:5f:37:26:93:c2:df:5a:e0:54:08:fe: ef:8b:84:f7:04:e0:88:fd:55:5b:40:d9:59:f1:a9: a2:64:15:2b:be:d6:03:7c:e6:da:14:c9:b9:b1:0a: 8c:43:f2:47:27:f1:0e:a0:0f:ae:79:5f:4c:a1:39: 24:22:f3:e3:7d:49:a5:7f:03:73:c4:dd:85:69:f0: d5:46:6f:c9:57:08:49:3f:87:f2:26:94:78:22:f6: c4:90:6d:d2:52:0c:9d:39:96:7f:24:a4:65:77:7a: b8:3c:7e:fe:a5:7a:19:86:8f:e2:bb:33:71:6c:16: e7:ce:d0:b8:35:f6:81:f8:2f:28:1d:e2:99:02:94: 27:c5:b6:95:de:84:e1:a2:28:25:95:93:b6:da:3b: 80:02:6b:7b:90:32:c2:a4:00:f9:f0:d4:77:25:b4: df:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4D:6D:CE:9F:3D:DF:EC:28:42:C7:13:59:FD:EC:29:0F:EB:02:49 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:8d:40:5f:a9:1f:14:da:ee:2e:c8:24:59:f7:20:11:af:0a: 3e:e4:0b:a9:15:1e:2d:41:77:a6:23:96:e1:bf:2f:9a:52:30: 62:a0:c0:a9:b0:53:e5:5b:7e:95:87:a2:28:de:72:44:f4:0d: ca:80:a3:8c:07:db:3d:9f:ee:b1:a6:fe:0d:e3:b9:0b:59:ef: 87:77:36:6c:65:bf:87:37:2d:0c:12:f2:a0:59:81:36:35:53: 04:25:64:b8:85:d0:09:ba:a6:53:f1:62:75:f4:f2:60:ff:61: 18:18:3b:7e:09:6d:43:43:66:77:25:c9:50:e3:cf:7f:d8:48: 9e:d0:4c:91:ab:63:63:bd:7c:74:10:b5:5b:c2:e2:31:27:7c: b8:cd:98:a8:69:13:4a:c0:81:d5:9a:93:c9:3e:fa:ba:d5:d5: 2e:57:7a:f2:e4:34:7b:37:48:a5:57:98:eb:2f:1f:2f:44:d4: a8:15:04:77:5f:21:cf:6a:6d:9c:b4:f9:60:2f:3a:76:3d:2a: df:14:cb:73:29:d3:f9:27:a1:ab:22:33:ba:35:79:a3:87:16: 2d:a7:22:e5:37:4b:12:e9:54:73:53:05:ca:fe:52:ed:26:c7: b1:ad:d7:fd:f4:f1:8b:55:ee:dc:dc:be:fb:f7:e1:8a:d0:9d: 9a:9b:af:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjYwNTIxMDU0MjE3WhcNMjYwNTI4MDU0MjE3WjAYMRYwFAYD VQQDEw02YTBlOWIzOS1mNTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gYBEiXMsN49RdToC6hVbtcz5QlJzkSNCFyNjWBNdQ4sF1/SqSd7qQeGeWvm 1f66wNgfCBVG5prvceHHFHiTsohLx18l6qXON88ZtYVh64TjzdZj0LOapPs17qmD Xzcmk8LfWuBUCP7vi4T3BOCI/VVbQNlZ8amiZBUrvtYDfObaFMm5sQqMQ/JHJ/EO oA+ueV9MoTkkIvPjfUmlfwNzxN2FafDVRm/JVwhJP4fyJpR4IvbEkG3SUgydOZZ/ JKRld3q4PH7+pXoZho/iuzNxbBbnztC4NfaB+C8oHeKZApQnxbaV3oThoigllZO2 2juAAmt7kDLCpAD58NR3JbTf9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMpNbc6f Pd/sKELHE1n97CkP6wJJMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGI1AX6kfFNruLsgkWfcgEa8KPuQLqRUeLUF3piOW4b8vmlIwYqDAqbBT5Vt+ lYeiKN5yRPQNyoCjjAfbPZ/usab+DeO5C1nvh3c2bGW/hzctDBLyoFmBNjVTBCVk uIXQCbqmU/FidfTyYP9hGBg7fgltQ0NmdyXJUOPPf9hIntBMkatjY718dBC1W8Li MSd8uM2YqGkTSsCB1ZqTyT76utXVLld68uQ0ezdIpVeY6y8fL0TUqBUEd18hz2pt nLT5YC86dj0q3xTLcynT+SehqyIzujV5o4cWLaci5TdLEulUc1MFyv5S7SbHsa3X /fTxi1Xu3Ny++/fhitCdmpuvpg== -----END CERTIFICATE-----Generated at Thu May 21 14:43:57 2026 by rpki-client