$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft File: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft (raw, json) Hash identifier: I9/n1kW9+2fJzCSm6R9et1iRblO7s3rJUZON0GxHJgE= Subject key identifier: 00:F8:2F:F5:77:DE:36:85:3B:E4:72:A9:9E:14:CA:A0:D7:3C:99:C5 Authority key identifier: F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD Certificate issuer: /CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Certificate serial: 0AF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft Manifest number: 0ACE Signing time: Wed 20 May 2026 19:30:59 +0000 Manifest this update: Wed 20 May 2026 19:30:58 +0000 Manifest next update: Wed 27 May 2026 19:30:58 +0000 Files and hashes: 1: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl (hash: DL68JIQ0yYEmNQusjDJV/3t8RtavB5oBvx5gYTNryjE=) 2: FE84EF96F16211F08FA76A8B5F6F56BC.roa (hash: LswMfaH47y3DaYLf6YvWkUTkv4VF2qVi2QmgGi//KfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2800 (0xaf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F3F, serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Validity Not Before: May 20 19:30:58 2026 GMT Not After : May 27 19:30:58 2026 GMT Subject: CN=6a0e0bf3-b730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:05:e4:5f:e4:d0:16:f1:56:b5:b3:45:8e:33: 81:31:25:2f:a4:7d:05:5d:f0:f6:62:03:d9:48:09: b2:e4:14:79:1f:d8:dc:57:37:48:61:58:8b:20:fd: 47:d9:29:d1:fd:8a:1d:40:49:cd:f5:86:4d:96:9b: 93:03:0e:f1:2a:46:b4:b1:77:f9:a7:0d:bb:1b:7f: bd:dd:5d:80:4c:9a:af:57:c8:16:0e:3c:7d:e2:6c: 7d:11:1a:a3:0e:52:b4:8c:c6:9e:19:b2:66:cd:b0: e5:74:48:6f:a7:60:64:95:a2:66:ee:fb:a9:41:16: 00:01:2e:8b:d4:f7:23:22:a9:a2:de:b0:f1:6f:92: 7d:28:14:b3:e8:a3:d9:a8:28:01:73:d8:e5:53:f8: a9:d3:8c:a2:9e:15:ed:0e:c3:89:45:5a:f3:9d:52: a3:ad:0b:b0:2d:5d:73:37:e0:64:64:00:3e:4e:b1: 50:fc:d4:cc:2a:b1:c8:a1:3d:82:b3:0c:8c:68:f0: 21:25:28:bd:f0:8f:68:06:50:ce:c2:4f:aa:52:4d: 1a:f9:63:15:d6:42:27:11:b9:2e:8d:1b:50:08:a4: 49:4d:54:7f:ba:97:c1:af:49:92:d2:6e:02:c3:5d: 2f:23:c1:c1:c3:0b:e3:51:f9:ad:57:43:31:dd:46: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F8:2F:F5:77:DE:36:85:3B:E4:72:A9:9E:14:CA:A0:D7:3C:99:C5 X509v3 Authority Key Identifier: keyid:F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:3f:b8:3b:f3:7e:af:a8:3f:61:13:d0:5e:9e:cf:54:aa:ee: 7d:11:86:ab:71:6f:4e:26:0b:51:4f:1c:ad:e2:2e:67:d3:e8: 3c:95:12:88:51:65:f9:f3:be:0a:a0:51:75:48:e5:29:e6:bf: a2:54:52:a6:1a:76:5a:5e:e5:29:46:8e:ea:37:26:51:34:ff: c7:c0:14:57:cf:49:ba:3b:31:6c:0b:02:ee:a6:ce:6c:a2:60: 0a:43:fa:67:55:d0:b4:0b:6d:f2:44:46:1a:82:4c:6a:ed:d8: d6:2f:8e:49:0e:02:e9:4b:5c:0f:26:07:2a:45:01:53:f3:5c: e0:53:a1:a7:ef:a9:33:24:31:89:7b:84:14:07:00:7c:93:86: ef:3d:b8:19:46:37:c7:79:74:2e:25:49:11:96:c9:45:26:c6: 57:59:73:0a:ee:2f:24:83:72:d2:8e:d4:75:3d:8b:f1:24:6c: 52:98:77:b1:42:dc:a7:b2:e5:ce:6f:af:28:74:72:23:fe:82: 17:d8:e3:40:2f:55:4c:20:3b:f9:58:48:56:66:28:f3:40:35: 98:df:c5:d4:72:f2:25:b5:45:37:cc:59:00:f3:74:12:5c:e2: c0:76:c3:2a:0e:d1:42:2e:7d:05:60:36:a1:4a:f1:87:e4:32: ad:bc:f8:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGM0YxMTAvBgNVBAUTKEY4MThGQzk4OEVDNzAzMkMzRTJDNkE0OEE1NTQ5OEFC N0NENTY1RkQwHhcNMjYwNTIwMTkzMDU4WhcNMjYwNTI3MTkzMDU4WjAYMRYwFAYD VQQDEw02YTBlMGJmMy1iNzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwXkX+TQFvFWtbNFjjOBMSUvpH0FXfD2YgPZSAmy5BR5H9jcVzdIYViLIP1H 2SnR/YodQEnN9YZNlpuTAw7xKka0sXf5pw27G3+93V2ATJqvV8gWDjx94mx9ERqj DlK0jMaeGbJmzbDldEhvp2BklaJm7vupQRYAAS6L1PcjIqmi3rDxb5J9KBSz6KPZ qCgBc9jlU/ip04yinhXtDsOJRVrznVKjrQuwLV1zN+BkZAA+TrFQ/NTMKrHIoT2C swyMaPAhJSi98I9oBlDOwk+qUk0a+WMV1kInEbkujRtQCKRJTVR/upfBr0mS0m4C w10vI8HBwwvjUfmtV0Mx3UYZWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAD4L/V3 3jaFO+RyqZ4UyqDXPJnFMB8GA1UdIwQYMBaAFPgY/JiOxwMsPixqSKVUmKt81WX9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEYzRi8wOTM3M0FENjc4 QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5dy1MR3BJcFZTWXEzelZa ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CajhtSTdIQXl3LUxHcElwVlNZcTN6VlpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEYzRi8wOTM3M0FENjc4QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5 dy1MR3BJcFZTWXEzelZaZjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFD+4O/N+r6g/YRPQXp7PVKrufRGGq3FvTiYLUU8creIuZ9PoPJUSiFFl+fO+ CqBRdUjlKea/olRSphp2Wl7lKUaO6jcmUTT/x8AUV89JujsxbAsC7qbObKJgCkP6 Z1XQtAtt8kRGGoJMau3Y1i+OSQ4C6UtcDyYHKkUBU/Nc4FOhp++pMyQxiXuEFAcA fJOG7z24GUY3x3l0LiVJEZbJRSbGV1lzCu4vJINy0o7UdT2L8SRsUph3sULcp7Ll zm+vKHRyI/6CF9jjQC9VTCA7+VhIVmYo80A1mN/F1HLyJbVFN8xZAPN0ElziwHbD Kg7RQi59BWA2oUrxh+Qyrbz4PA== -----END CERTIFICATE-----Generated at Thu May 21 11:16:39 2026 by rpki-client