$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: NB3x2kadELgfzneVrhV/vHH+ohkq2G3Ma3rTyNe57RI= Subject key identifier: 81:2F:5F:71:E6:4B:1D:25:2C:25:29:2A:35:A5:88:1B:C6:5E:D4:4C Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 01DB Signing time: Thu 21 May 2026 03:50:23 +0000 Manifest this update: Thu 21 May 2026 03:50:23 +0000 Manifest next update: Thu 28 May 2026 03:50:23 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: yd4rXiEcL/vHeHqmVP40BTpP5C94on4jkPlHrV1owsE=) 2: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: I8WOH8J1MhGqNbLqVfvMzdR8rX2Yq8UcwqrXooh3Mjw=) 3: 749BAA209BC911F0B2979527C4F9AE02.roa (hash: yisXBV9UfHcLi2zgyB/ljlR1ltN6rD2jMrD7xMFxYDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: May 21 03:50:23 2026 GMT Not After : May 28 03:50:23 2026 GMT Subject: CN=6a0e80ff-18ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d1:da:e7:8d:0b:17:5e:52:c0:3d:3e:b1:58: 3d:1a:6a:b2:66:75:fa:9c:ef:db:0e:28:89:3f:f4: 3b:ae:82:b0:15:6f:64:05:14:46:1d:bc:49:aa:e7: 85:df:83:0d:17:b3:68:fe:fe:41:8f:a2:69:76:60: da:ec:49:30:82:51:b4:82:37:04:a1:b2:04:d1:d9: a5:a9:a2:4b:f9:f1:44:d8:f2:c6:4b:71:98:5d:d3: 3f:14:69:0e:ec:d5:cc:a0:63:91:6b:cf:a4:67:1a: d1:fc:e2:f9:72:50:2c:85:a9:e7:6a:2a:67:74:f8: ea:a0:d6:8b:ae:1f:33:be:f0:ae:f4:65:14:c3:38: 75:11:ab:b2:34:0f:85:b9:83:33:3e:27:e8:68:4a: f8:7a:c5:cf:4a:6f:2f:bd:37:ad:8f:c8:1b:c8:0f: cd:4f:ac:2f:13:46:85:e2:51:bc:3a:81:0f:d0:5b: a8:8a:34:73:2c:36:9e:93:d2:30:a6:d3:2f:da:17: f2:bb:25:c0:f7:2c:52:94:c2:7a:58:77:59:cc:27: 5f:79:e3:55:31:d0:6f:e5:0d:a3:d6:c8:1c:0d:4a: 63:4f:85:68:40:0e:10:e1:75:1e:a4:fe:7b:41:b1: 5a:f2:cb:44:ac:67:e1:a0:01:9a:59:fe:22:e1:4c: 21:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2F:5F:71:E6:4B:1D:25:2C:25:29:2A:35:A5:88:1B:C6:5E:D4:4C X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a2:90:c1:cc:b7:fb:4e:b4:33:28:2b:66:f2:3c:a2:1b:90: 7c:98:80:45:10:42:70:0c:b6:d9:59:12:8d:03:be:f6:56:4b: 6b:66:b1:86:26:53:69:52:41:a9:52:e4:39:28:9a:3e:2b:6e: ad:3e:1e:31:ce:32:30:78:07:c5:34:3d:af:50:26:39:a0:1e: 37:fe:66:e3:0d:1f:3a:1d:56:91:42:42:53:ba:0f:90:3b:c3: 34:4b:cf:0e:96:c0:f9:e0:ed:67:dc:8b:ac:01:af:fa:42:ea: ed:b4:da:a0:7e:c4:48:4a:11:6f:91:b6:ab:3f:e4:04:16:8e: 9b:f8:20:ab:b6:e2:5e:bb:ec:80:b1:2c:e1:05:83:d7:0e:77: 31:8f:7e:4a:89:3c:1d:64:68:22:ff:50:a6:7f:8a:70:15:14: d6:73:9a:4a:14:40:a3:9c:50:a0:89:fc:db:38:2b:51:ad:66: 88:30:22:cd:cf:03:4b:37:42:b8:1f:cd:29:dc:89:af:60:96: e0:f7:59:3c:fd:da:06:d8:e4:1a:65:24:a5:85:88:f2:6a:44: 29:28:21:4c:3e:1c:c6:2e:5e:c9:da:a6:75:22:b1:bd:f3:98: 96:c6:6e:4e:45:8c:9f:27:04:28:d5:29:2b:52:99:6e:bc:5c: 56:18:86:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjYwNTIxMDM1MDIzWhcNMjYwNTI4MDM1MDIzWjAYMRYwFAYD VQQDEw02YTBlODBmZi0xOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9Ha540LF15SwD0+sVg9GmqyZnX6nO/bDiiJP/Q7roKwFW9kBRRGHbxJqueF 34MNF7No/v5Bj6JpdmDa7EkwglG0gjcEobIE0dmlqaJL+fFE2PLGS3GYXdM/FGkO 7NXMoGORa8+kZxrR/OL5clAshannaipndPjqoNaLrh8zvvCu9GUUwzh1EauyNA+F uYMzPifoaEr4esXPSm8vvTetj8gbyA/NT6wvE0aF4lG8OoEP0FuoijRzLDaek9Iw ptMv2hfyuyXA9yxSlMJ6WHdZzCdfeeNVMdBv5Q2j1sgcDUpjT4VoQA4Q4XUepP57 QbFa8stErGfhoAGaWf4i4UwhpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIEvX3Hm Sx0lLCUpKjWliBvGXtRMMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJX dnlkTGkzcUpqR2tsVHJ1WU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANqKQwcy3+060MygrZvI8ohuQfJiARRBCcAy22VkSjQO+9lZLa2axhiZTaVJB qVLkOSiaPiturT4eMc4yMHgHxTQ9r1AmOaAeN/5m4w0fOh1WkUJCU7oPkDvDNEvP DpbA+eDtZ9yLrAGv+kLq7bTaoH7ESEoRb5G2qz/kBBaOm/ggq7biXrvsgLEs4QWD 1w53MY9+Sok8HWRoIv9Qpn+KcBUU1nOaShRAo5xQoIn82zgrUa1miDAizc8DSzdC uB/NKdyJr2CW4PdZPP3aBtjkGmUkpYWI8mpEKSghTD4cxi5eydqmdSKxvfOYlsZu TkWMnycEKNUpK1KZbrxcVhiGew== -----END CERTIFICATE-----Generated at Thu May 21 10:53:40 2026 by rpki-client