$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: lFQAmweocxQbXVtDN4lrAiGG6h9DdIQHNFR1hwJcpGs= Subject key identifier: A9:2A:11:51:B0:99:C3:C4:C2:F8:40:78:85:72:34:CB:73:D6:76:73 Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 0A3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 0A28 Signing time: Wed 20 May 2026 19:47:34 +0000 Manifest this update: Wed 20 May 2026 19:47:33 +0000 Manifest next update: Wed 27 May 2026 19:47:33 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: WMRJ5eS2E4gsrrN8clMxrF0/cFg3MyIg+IJPaWuayGM=) 2: 35831FCE937011EA8A795583C4F9AE02.roa (hash: KU74ZbX8QctQD6oWhNP2ZPDiRV7nlnVfxskUU58FW+U=) 3: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: pxNuh5srbtMxxnoUXoogGH47f0VhHR+2FLeTjpcucQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2622 (0xa3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: May 20 19:47:33 2026 GMT Not After : May 27 19:47:33 2026 GMT Subject: CN=6a0e0fd6-7817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5c:26:69:a6:50:75:19:7a:94:39:db:43:ee: e6:61:1d:2c:d8:b9:3e:5e:3c:3b:f8:7c:5b:90:a2: 64:ec:49:2a:85:91:7f:3e:bc:71:4a:8e:64:bc:e9: 26:a2:04:0e:c1:7e:e3:24:b2:20:56:80:bf:20:24: 95:4a:41:ea:09:28:4e:a4:66:23:5b:a3:9f:90:23: 6e:78:d3:0d:b3:54:51:a6:0d:5e:1a:9b:a9:8c:7d: 5b:6d:bc:b9:92:00:3c:3f:eb:4e:31:4a:43:57:b4: a3:a8:1c:96:4a:ea:b8:8e:1f:a2:71:0b:01:3f:f8: fc:1b:84:f8:33:2a:ef:73:90:11:e0:93:0a:56:93: e6:e2:32:53:51:20:7d:80:e7:6f:cb:d5:15:f1:e4: f5:a6:c5:7f:9b:b0:63:6b:7f:8b:32:be:2a:08:1c: 6e:58:98:b7:ae:a4:b9:18:b3:55:d3:9a:0d:73:74: 29:8c:66:3b:16:71:bc:3e:be:77:73:8a:85:c4:9f: 2c:d4:dc:fe:fe:d4:3c:f7:53:18:92:1a:c9:fe:e9: 2e:8b:08:f3:bf:83:0e:e2:b5:f9:d8:6b:3e:d7:4a: a9:a5:8f:c6:eb:4d:ac:58:96:02:02:69:3c:5b:11: 10:80:79:f6:74:90:ba:83:60:0d:7d:96:41:b6:a4: 23:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2A:11:51:B0:99:C3:C4:C2:F8:40:78:85:72:34:CB:73:D6:76:73 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:75:f4:79:59:4d:e1:34:2b:25:0d:01:82:85:d6:33:99:51: 91:5b:f0:ba:58:c7:40:21:0e:ba:56:41:b0:15:ff:c2:8a:5a: 27:3c:5c:5b:4b:3e:30:e0:41:cf:09:18:35:fa:60:e9:be:60: 97:c7:ca:09:23:22:8d:67:29:d1:81:20:11:1b:ab:5e:13:f1: 77:f4:90:2e:eb:26:8e:b6:1c:a1:0a:4b:11:fa:3e:fa:22:30: 08:a0:a5:91:1d:27:1c:07:6e:34:7f:7f:36:14:23:ac:b4:2f: 22:26:d8:2c:39:e1:84:b6:d3:2e:21:1d:c3:86:b3:e3:1b:8a: 60:52:e9:fc:cc:97:a7:40:18:2a:99:5a:38:ce:27:2f:00:88: e1:d6:75:9c:85:8d:36:49:38:41:f3:67:7d:c7:3c:3d:59:0b: cc:4e:89:d7:60:8e:96:ca:96:4a:54:ec:0a:3d:09:3d:cd:4f: c0:17:62:90:73:01:9b:f6:26:4c:0a:e8:ad:c8:dc:19:15:11: f2:e0:76:0d:c1:d2:c0:5b:e1:30:29:a1:fa:1e:c5:fc:81:4a: 88:8d:da:1b:ec:af:ab:db:e7:5b:46:1d:8a:f1:2e:e5:99:b0: a9:02:03:e9:3c:d5:8e:c4:87:b7:1d:79:bd:d0:cb:6b:e8:48: 5c:bc:9b:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjYwNTIwMTk0NzMzWhcNMjYwNTI3MTk0NzMzWjAYMRYwFAYD VQQDEw02YTBlMGZkNi03ODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41wmaaZQdRl6lDnbQ+7mYR0s2Lk+Xjw7+HxbkKJk7EkqhZF/PrxxSo5kvOkm ogQOwX7jJLIgVoC/ICSVSkHqCShOpGYjW6OfkCNueNMNs1RRpg1eGpupjH1bbby5 kgA8P+tOMUpDV7SjqByWSuq4jh+icQsBP/j8G4T4Myrvc5AR4JMKVpPm4jJTUSB9 gOdvy9UV8eT1psV/m7Bja3+LMr4qCBxuWJi3rqS5GLNV05oNc3QpjGY7FnG8Pr53 c4qFxJ8s1Nz+/tQ891MYkhrJ/ukuiwjzv4MO4rX52Gs+10qppY/G602sWJYCAmk8 WxEQgHn2dJC6g2ANfZZBtqQjcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKkqEVGw mcPEwvhAeIVyNMtz1nZzMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZnX0eVlN4TQrJQ0BgoXWM5lRkVvwuljHQCEOulZBsBX/wopaJzxcW0s+MOBB zwkYNfpg6b5gl8fKCSMijWcp0YEgERurXhPxd/SQLusmjrYcoQpLEfo++iIwCKCl kR0nHAduNH9/NhQjrLQvIibYLDnhhLbTLiEdw4az4xuKYFLp/MyXp0AYKplaOM4n LwCI4dZ1nIWNNkk4QfNnfcc8PVkLzE6J12COlsqWSlTsCj0JPc1PwBdikHMBm/Ym TArorcjcGRUR8uB2DcHSwFvhMCmh+h7F/IFKiI3aG+yvq9vnW0YdivEu5ZmwqQID 6TzVjsSHtx15vdDLa+hIXLybDw== -----END CERTIFICATE-----Generated at Thu May 21 10:27:45 2026 by rpki-client