$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: vImnO6ukrfasWddieaHjWy09hvATblIb1gO8gUR1/cE= Subject key identifier: BD:E4:29:E6:17:87:EB:B4:EF:66:1E:D6:ED:3B:F5:E5:C1:0D:82:83 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 16A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 1694 Signing time: Wed 20 May 2026 16:41:56 +0000 Manifest this update: Wed 20 May 2026 16:41:56 +0000 Manifest next update: Wed 27 May 2026 16:41:56 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: bkccKoH3q25zrX6KznI5tzAGOSk/hJZaxgJduan+YKo=) 2: D0240AB83E2611F19FC5B98DB5833773.roa (hash: g8YadsOEwLn+f1jtfBYb7qkcejvbvgg/WAXaJDEKgy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5800 (0x16a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA, serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: May 20 16:41:56 2026 GMT Not After : May 27 16:41:56 2026 GMT Subject: CN=6a0de454-6c7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:4f:c3:93:c6:1f:6d:ac:41:95:25:62:3a: 7d:45:42:e3:8b:fc:f7:ee:4a:95:8c:7d:9a:28:9e: 09:f6:9d:5b:45:22:2a:10:92:ba:29:8e:6f:a0:33: f5:3d:1d:b4:5a:c5:98:ea:e0:f1:73:32:74:b1:ab: ad:a3:8d:a4:15:68:23:76:f5:8c:6d:a4:e0:aa:c0: fc:25:37:e8:df:8d:1d:e4:92:30:b8:29:05:ad:1b: 84:7d:49:52:64:72:63:8c:5a:38:9f:77:c1:47:2e: c4:44:e3:1c:96:20:14:08:81:87:46:43:57:cc:51: f8:55:c8:d3:39:7d:ed:f2:2d:06:ae:26:5e:84:ff: be:98:c0:02:3e:bd:a5:df:35:58:e0:1b:50:01:a4: 03:fe:f6:67:bd:5b:97:7b:4a:35:26:b5:2a:f3:90: b4:0c:fc:51:f6:99:7d:9c:93:f5:ee:52:84:a7:e5: ee:00:08:42:f3:d1:5c:af:0a:82:68:6d:0f:e2:b6: 69:60:99:fd:d9:d3:1c:cc:df:4a:6e:e4:7d:df:5a: 05:2c:34:dc:95:14:71:42:08:5d:02:9b:6e:c8:d3: 12:3b:91:f4:0e:72:02:3f:b3:2c:9b:52:bb:26:3f: 52:6d:c4:62:6d:f3:30:35:58:0c:28:87:5e:d2:6d: 57:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E4:29:E6:17:87:EB:B4:EF:66:1E:D6:ED:3B:F5:E5:C1:0D:82:83 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:91:45:4b:e7:6f:41:a1:d0:17:c4:eb:8b:60:a1:b1:5e:af: f8:e1:96:53:c8:f4:d8:51:3f:39:20:1e:27:71:fd:35:6a:e6: 7f:bc:87:5e:03:09:08:71:7e:78:be:50:f7:7e:03:d5:60:a7: 01:7f:23:99:18:f0:2b:5a:64:15:39:0e:74:07:9c:18:3a:2a: ca:58:04:76:d8:28:1e:d3:4f:97:9d:95:4a:be:a1:d5:e8:1b: ce:82:97:c3:49:37:42:aa:50:55:87:b2:f2:ad:94:dd:f3:3c: 80:ed:05:dc:20:4c:be:86:3c:28:df:28:13:06:c9:7c:b9:5f: b2:14:6f:50:f1:86:28:07:ab:96:9a:d7:c9:32:50:9d:f1:f3: 8d:2e:f5:92:12:4a:c0:84:13:fd:db:4f:3f:d6:ec:ca:95:99: f3:64:d1:eb:2b:fb:04:ad:ab:ae:b2:6d:f5:9e:0d:42:87:67: 33:45:66:1d:8d:6f:91:1f:2f:39:6a:0b:d0:44:56:6d:59:3b: da:2b:b5:d6:97:23:bc:b7:1c:0c:a8:52:83:e4:23:70:23:c6: 7e:b2:17:9f:a4:31:8f:d5:29:52:ac:6d:d7:82:21:23:61:1e: af:04:13:17:33:90:ed:e9:cc:ce:44:49:1b:ac:6f:30:32:d0: bd:08:37:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjYwNTIwMTY0MTU2WhcNMjYwNTI3MTY0MTU2WjAYMRYwFAYD VQQDEw02YTBkZTQ1NC02YzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc9Pw5PGH22sQZUlYjp9RULji/z37kqVjH2aKJ4J9p1bRSIqEJK6KY5voDP1 PR20WsWY6uDxczJ0sauto42kFWgjdvWMbaTgqsD8JTfo340d5JIwuCkFrRuEfUlS ZHJjjFo4n3fBRy7EROMcliAUCIGHRkNXzFH4VcjTOX3t8i0GriZehP++mMACPr2l 3zVY4BtQAaQD/vZnvVuXe0o1JrUq85C0DPxR9pl9nJP17lKEp+XuAAhC89FcrwqC aG0P4rZpYJn92dMczN9KbuR931oFLDTclRRxQghdAptuyNMSO5H0DnICP7Msm1K7 Jj9SbcRibfMwNVgMKIde0m1X0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL3kKeYX h+u072Ye1u079eXBDYKDMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMpFFS+dvQaHQF8Tri2ChsV6v+OGWU8j02FE/OSAeJ3H9NWrmf7yHXgMJCHF+ eL5Q934D1WCnAX8jmRjwK1pkFTkOdAecGDoqylgEdtgoHtNPl52VSr6h1egbzoKX w0k3QqpQVYey8q2U3fM8gO0F3CBMvoY8KN8oEwbJfLlfshRvUPGGKAerlprXyTJQ nfHzjS71khJKwIQT/dtPP9bsypWZ82TR6yv7BK2rrrJt9Z4NQodnM0VmHY1vkR8v OWoL0ERWbVk72iu11pcjvLccDKhSg+QjcCPGfrIXn6Qxj9UpUqxt14IhI2EerwQT FzOQ7enMzkRJG6xvMDLQvQg3kg== -----END CERTIFICATE-----Generated at Thu May 21 10:28:07 2026 by rpki-client