$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: 343c1S4GMRa6SyiN47KNtJ4kFRzHwgNsmTaAbOQ8PPc= Subject key identifier: D2:59:31:30:B3:6A:44:BE:AC:14:58:13:E4:FC:55:40:CF:A1:F8:E3 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 0204 Signing time: Thu 21 May 2026 03:06:22 +0000 Manifest this update: Thu 21 May 2026 03:06:22 +0000 Manifest next update: Thu 28 May 2026 03:06:22 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: MQR+xRp65KgbQbJHFB5q6IgKdbRZTd8z6Pw+kM8x1Cw=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: Lf5S48RM+H6jGhhi+lkOyHY5YBcAJOA0fAYnMQrcmBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: May 21 03:06:22 2026 GMT Not After : May 28 03:06:22 2026 GMT Subject: CN=6a0e76ae-555e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:de:b4:24:c7:eb:d4:2d:f3:86:fb:c7:30: e3:4f:32:f4:00:bf:1b:d0:2d:fb:0e:55:74:83:b5: 3e:f7:57:46:80:46:53:09:33:9b:f1:2e:f7:e8:72: 90:87:21:43:ce:0c:88:cd:1a:af:2a:0a:c9:ac:72: 26:69:b8:8e:ea:d7:84:12:a2:41:db:77:ee:cf:0d: 78:50:c3:b6:0a:6a:80:c0:b9:84:ef:66:e0:41:8d: 54:6a:e7:85:9f:53:e4:fc:c2:8d:87:92:0f:1c:cc: 7c:a0:4b:ba:75:9f:f3:8f:53:22:20:2b:fc:aa:2b: a6:a5:ea:06:1b:d8:0d:35:5c:14:e2:23:9f:86:0a: 51:c6:ff:6a:29:d9:94:7c:a2:6e:14:ab:45:d8:80: b9:b9:7c:aa:46:ec:11:b3:79:e5:2f:75:4c:e3:ba: e9:7c:c3:7e:86:4a:e4:ac:d7:4f:9b:9a:fd:fe:15: 08:5e:b3:27:4b:fe:ba:a2:1f:72:29:bf:50:28:df: 6d:3e:08:66:96:02:73:de:65:81:2f:ba:b4:2c:e2: 24:de:eb:13:71:22:66:ae:4e:3c:67:08:d5:be:65: 2d:c5:9d:35:12:54:7a:23:de:b9:ef:56:e8:1e:28: 3b:a5:00:e2:61:dc:da:91:bb:ce:cf:c2:d7:da:f3: 24:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:59:31:30:B3:6A:44:BE:AC:14:58:13:E4:FC:55:40:CF:A1:F8:E3 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:e6:5e:1f:b4:80:d3:6e:ab:8c:22:2b:68:b1:f5:2a:48:45: 83:2a:06:42:f3:db:7d:b8:b1:95:8a:b3:b5:82:7b:e8:95:55: fa:4f:44:41:82:bf:9b:cf:c4:a5:da:1c:b6:5b:a7:5a:54:74: 94:e7:64:84:4a:77:06:1a:8c:b8:16:0e:e1:2e:b8:dc:ae:7d: 53:54:4f:54:70:d4:16:94:d7:b4:c8:27:68:ce:66:e0:c6:00: 0e:28:1f:ff:75:cd:a7:1f:a8:6f:ea:18:f5:3c:69:e8:d9:a9: ac:cb:57:cc:3b:ad:de:4f:d5:6e:85:4f:dc:10:89:8b:0d:02: 10:8d:1b:15:0d:7e:24:67:73:1c:70:14:50:e9:c0:bd:bb:a3: 36:6f:66:96:1f:f6:f6:ea:93:a2:fa:1b:bc:1d:c4:2a:b3:b2: 83:ee:c2:d8:49:73:f1:c4:c3:18:a6:f9:ed:58:b7:6c:7e:7a: b2:5a:ba:d8:68:cc:18:39:9f:07:40:f2:ea:6c:d3:47:eb:f4: 59:6d:fd:64:3e:38:f6:6a:85:48:4d:53:dd:c7:0d:2b:8d:01: 9f:f8:ab:98:8a:cb:27:ff:67:2e:a6:56:ac:ee:c5:cf:9a:e7: d1:53:58:66:14:ff:c5:7c:b5:ce:80:1b:7f:68:96:1c:c9:bb: f6:2c:38:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjYwNTIxMDMwNjIyWhcNMjYwNTI4MDMwNjIyWjAYMRYwFAYD VQQDEw02YTBlNzZhZS01NTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgDetCTH69Qt84b7xzDjTzL0AL8b0C37DlV0g7U+91dGgEZTCTOb8S736HKQ hyFDzgyIzRqvKgrJrHImabiO6teEEqJB23fuzw14UMO2CmqAwLmE72bgQY1UaueF n1Pk/MKNh5IPHMx8oEu6dZ/zj1MiICv8qiumpeoGG9gNNVwU4iOfhgpRxv9qKdmU fKJuFKtF2IC5uXyqRuwRs3nlL3VM47rpfMN+hkrkrNdPm5r9/hUIXrMnS/66oh9y Kb9QKN9tPghmlgJz3mWBL7q0LOIk3usTcSJmrk48ZwjVvmUtxZ01ElR6I96571bo Hig7pQDiYdzakbvOz8LX2vMkHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNJZMTCz akS+rBRYE+T8VUDPofjjMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANuZeH7SA026rjCIraLH1KkhFgyoGQvPbfbixlYqztYJ76JVV+k9EQYK/m8/E pdoctlunWlR0lOdkhEp3BhqMuBYO4S643K59U1RPVHDUFpTXtMgnaM5m4MYADigf /3XNpx+ob+oY9Txp6NmprMtXzDut3k/VboVP3BCJiw0CEI0bFQ1+JGdzHHAUUOnA vbujNm9mlh/29uqTovobvB3EKrOyg+7C2Elz8cTDGKb57Vi3bH56slq62GjMGDmf B0Dy6mzTR+v0WW39ZD449mqFSE1T3ccNK40Bn/irmIrLJ/9nLqZWrO7Fz5rn0VNY ZhT/xXy1zoAbf2iWHMm79iw4og== -----END CERTIFICATE-----Generated at Thu May 21 09:38:11 2026 by rpki-client