$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: TtoWany9khKnfo2oMsK708beFvIQpgmT68i3dGrW8fs= Subject key identifier: 07:0D:23:B2:D9:94:9D:0D:C9:8E:C7:F0:45:87:E3:E4:16:A7:6E:0B Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 01E1 Signing time: Thu 21 May 2026 03:31:49 +0000 Manifest this update: Thu 21 May 2026 03:31:49 +0000 Manifest next update: Thu 28 May 2026 03:31:49 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: Yvf4EdM0/N2L3BrKfzPSkyj5W1WRxUgPezxQyE0fDxo=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: zNUB+vibuX3nQWmpbN4PBwL7Sq5HwZSp7xD/bsaKx34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: May 21 03:31:49 2026 GMT Not After : May 28 03:31:49 2026 GMT Subject: CN=6a0e7ca5-062c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:c0:f7:fa:8d:67:c0:b6:f5:e5:c2:2c:73: 98:42:98:d8:7a:41:56:5d:4f:67:45:4b:f0:04:42: 50:a4:e7:cc:cf:c4:50:01:b4:88:18:75:79:b7:19: 64:d1:d8:0b:3c:f1:28:15:ce:df:d3:a2:c8:37:05: c3:79:ad:a3:b2:f8:c0:28:3b:3e:7c:fd:ab:08:57: 5b:24:b6:02:47:1a:10:53:3c:1e:ff:7f:af:d0:3c: ca:24:a6:71:16:8d:66:f9:25:fc:84:b8:f6:03:97: 28:62:eb:6a:bd:91:3f:cb:6e:60:0a:70:bd:13:a4: 58:f3:9b:28:1c:a2:cf:38:6f:da:29:76:1a:9f:44: 88:70:37:5c:83:90:0e:1f:4a:d9:c8:9e:79:db:08: 59:42:44:d3:a8:e7:c7:6a:44:8e:6a:2b:ab:dc:33: 9f:1a:56:35:ab:ed:86:3d:42:00:96:5f:d6:f5:ca: 2f:a9:43:e2:b3:d0:19:dd:2e:b1:b7:e1:43:c0:aa: 92:3f:e7:11:b8:a8:62:f9:ab:b6:17:95:38:8f:15: 27:da:34:81:f3:e2:e5:ee:c7:3f:cc:e2:8e:89:b5: 7d:42:f9:5b:2b:26:5f:0c:a8:46:8b:bb:ff:82:d3: 61:c2:f5:ea:65:1e:61:e3:73:62:f6:73:cf:25:4e: a8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0D:23:B2:D9:94:9D:0D:C9:8E:C7:F0:45:87:E3:E4:16:A7:6E:0B X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:a6:f4:10:cb:91:fc:a5:1f:42:11:61:03:86:70:bc:ca:a9: 41:d3:16:84:df:7a:bf:64:c8:2f:8c:c1:54:e4:13:ab:96:0b: 7a:9e:2d:ec:8a:ee:10:31:4f:74:09:d9:15:3b:32:09:5e:12: 62:33:17:b9:2e:88:b9:33:e1:dd:6b:35:65:3c:08:91:ca:a5: c1:d0:16:f6:e1:3c:73:c3:35:b0:3f:b0:e5:59:d7:05:7b:22: d5:f8:a9:95:6b:7e:93:ce:a6:80:da:37:dc:cf:e0:40:59:6c: bd:1a:31:a3:ec:c4:0e:bb:89:aa:b8:7b:85:a7:71:8c:c7:fa: 50:fa:19:10:57:4a:67:9c:93:6b:88:70:38:b5:20:9f:7d:bc: 06:d6:ef:41:b5:c6:42:b3:e5:c4:7b:44:e4:3c:8c:84:39:bf: 2d:6c:cc:12:0b:5a:2e:12:ed:58:0c:26:6c:dd:af:09:a6:a3: c1:a1:2a:d5:a6:68:e4:30:7b:06:49:74:61:83:a8:a1:1a:d5: c3:28:1a:8f:ce:7e:91:b4:41:bf:70:93:a6:d3:cf:b9:d7:f1: 7f:d3:ba:5b:bd:e7:b7:3f:e3:f5:c2:57:f5:6f:6f:3f:af:e1: 3b:85:ff:a9:ad:c7:79:06:91:69:08:1b:5c:ed:3b:86:5b:13: d8:c5:b4:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjYwNTIxMDMzMTQ5WhcNMjYwNTI4MDMzMTQ5WjAYMRYwFAYD VQQDEw02YTBlN2NhNS0wNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0rA9/qNZ8C29eXCLHOYQpjYekFWXU9nRUvwBEJQpOfMz8RQAbSIGHV5txlk 0dgLPPEoFc7f06LINwXDea2jsvjAKDs+fP2rCFdbJLYCRxoQUzwe/3+v0DzKJKZx Fo1m+SX8hLj2A5coYutqvZE/y25gCnC9E6RY85soHKLPOG/aKXYan0SIcDdcg5AO H0rZyJ552whZQkTTqOfHakSOaiur3DOfGlY1q+2GPUIAll/W9covqUPis9AZ3S6x t+FDwKqSP+cRuKhi+au2F5U4jxUn2jSB8+Ll7sc/zOKOibV9QvlbKyZfDKhGi7v/ gtNhwvXqZR5h43Ni9nPPJU6oqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAcNI7LZ lJ0NyY7H8EWH4+QWp24LMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEab0EMuR/KUfQhFhA4ZwvMqpQdMWhN96v2TIL4zBVOQTq5YLep4t7IruEDFP dAnZFTsyCV4SYjMXuS6IuTPh3Ws1ZTwIkcqlwdAW9uE8c8M1sD+w5VnXBXsi1fip lWt+k86mgNo33M/gQFlsvRoxo+zEDruJqrh7hadxjMf6UPoZEFdKZ5yTa4hwOLUg n328BtbvQbXGQrPlxHtE5DyMhDm/LWzMEgtaLhLtWAwmbN2vCaajwaEq1aZo5DB7 Bkl0YYOooRrVwygaj85+kbRBv3CTptPPudfxf9O6W73ntz/j9cJX9W9vP6/hO4X/ qa3HeQaRaQgbXO07hlsT2MW0Yg== -----END CERTIFICATE-----Generated at Thu May 21 10:14:32 2026 by rpki-client