$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft File: Ddq78x7saHZu9mmvlzUkDDiZNFk.mft (raw, json) Hash identifier: L+QwQT+PmL474MxD2Qk3b1FKFZkGX/IcXcU+h7D3VhQ= Subject key identifier: 2B:BD:76:43:D3:8B:EA:0F:E3:7F:47:C4:7D:43:5F:FF:D7:31:E8:DC Authority key identifier: 0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 Certificate issuer: /CN=A91B3247/serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft Manifest number: A0 Signing time: Thu 21 May 2026 07:32:24 +0000 Manifest this update: Thu 21 May 2026 07:32:23 +0000 Manifest next update: Thu 28 May 2026 07:32:23 +0000 Files and hashes: 1: Ddq78x7saHZu9mmvlzUkDDiZNFk.crl (hash: xl3Be0CK+Hi6IAtNggagQWyBlp7PtP21/GATz9tEgKk=) 2: 44C226F2A5B111F095806166C4F9AE02.roa (hash: yD8SkPkAKN5+VowUi+qJexOJ8oP+7GjQ59FL3/Sa598=) 3: 095B5200A5B111F09CCCE85FC4F9AE02.roa (hash: ZfwhMy+pX5aCJlJ8qOMcY95LqfN6RcWNdworol/4Bvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3247, serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Validity Not Before: May 21 07:32:23 2026 GMT Not After : May 28 07:32:23 2026 GMT Subject: CN=6a0eb508-88d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:73:78:c0:d8:b4:9a:3b:6f:81:ba:53:3f:a4: e8:60:82:bf:62:ff:0a:2e:9b:03:d8:3c:c7:98:a0: dd:fb:a8:f0:b3:cd:c7:10:c5:2a:e3:85:2b:c4:fb: 3a:d0:59:49:39:db:b7:9a:94:a6:7c:00:dd:aa:4f: a2:6a:be:a5:7a:62:ae:eb:3c:d7:bb:9b:44:0d:86: fb:83:1a:70:f7:39:1a:3e:b2:47:b3:69:97:12:49: 5f:00:db:5b:f2:21:46:ec:e4:44:ed:29:ac:a6:e6: c8:bf:d0:17:25:d1:87:78:5b:9c:6d:e0:14:5e:24: 7f:2a:d8:45:a9:9e:53:07:28:b3:e3:41:47:71:26: 40:97:26:ef:66:b3:2a:96:ed:52:f2:63:8f:12:2c: 5a:1c:cc:0a:e4:b3:69:a0:aa:43:57:e5:bf:89:cc: 71:b8:a4:4f:8c:4c:4c:ef:f9:48:2f:1e:e9:40:ce: fa:f6:e7:6e:72:fb:b7:03:02:07:83:17:3f:b6:b8: c9:3b:c0:f3:13:48:a4:b1:9c:a9:21:af:fd:50:db: b7:3b:f0:e8:6d:c7:25:02:6c:66:16:66:ca:69:73: d8:25:b1:70:63:73:f4:6a:0c:75:bc:ae:4a:2e:bb: d5:ba:62:c5:09:4d:e8:93:35:20:5b:2f:15:ef:2d: 9c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:BD:76:43:D3:8B:EA:0F:E3:7F:47:C4:7D:43:5F:FF:D7:31:E8:DC X509v3 Authority Key Identifier: keyid:0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:17:36:2f:78:cd:7f:89:1c:f5:70:13:40:80:31:05:d8:8b: 2f:42:a7:88:5f:cc:8b:c3:49:bf:f3:d3:06:eb:72:79:9d:3b: 93:1a:4b:e8:6a:42:40:18:13:84:ae:ec:cb:1a:b0:fc:2f:10: 76:d9:76:46:6e:c7:90:6c:f2:93:af:4b:d0:02:1a:1c:94:12: 5a:91:ca:2b:ec:8d:7a:fa:ac:53:a6:76:c2:f6:eb:71:83:08: 80:80:66:39:5b:d7:d0:50:24:19:18:c7:f6:d3:3b:5a:1b:70: cd:6e:f5:d6:d3:f2:95:f5:29:b8:f7:d8:6e:42:0c:b7:41:03: ba:70:71:e1:e9:b8:91:66:dc:81:7c:ef:62:8d:58:d7:bc:ac: ad:91:f4:9d:a4:79:86:b5:74:c3:87:f8:30:9b:a3:a6:6d:66: 5d:58:d5:ac:54:77:76:cb:de:de:6a:d9:56:a3:16:78:26:28: f7:a8:01:e6:fd:23:aa:e5:1b:c1:69:0d:72:e1:4a:8d:d9:ac: b0:7c:9c:75:96:84:21:47:d0:ec:71:de:10:e4:d2:d7:8b:b9: d9:eb:57:55:3b:9f:59:d1:65:de:1c:f5:a8:2f:12:b6:82:f0: 7d:c4:d4:e1:39:86:18:9f:28:53:f7:4c:93:36:36:f3:89:17: 84:3d:79:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMyNDcxMTAvBgNVBAUTKDBEREFCQkYzMUVFQzY4NzY2RUY2NjlBRjk3MzUyNDBD Mzg5OTM0NTkwHhcNMjYwNTIxMDczMjIzWhcNMjYwNTI4MDczMjIzWjAYMRYwFAYD VQQDEw02YTBlYjUwOC04OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHN4wNi0mjtvgbpTP6ToYIK/Yv8KLpsD2DzHmKDd+6jws83HEMUq44UrxPs6 0FlJOdu3mpSmfADdqk+iar6lemKu6zzXu5tEDYb7gxpw9zkaPrJHs2mXEklfANtb 8iFG7ORE7SmspubIv9AXJdGHeFucbeAUXiR/KthFqZ5TByiz40FHcSZAlybvZrMq lu1S8mOPEixaHMwK5LNpoKpDV+W/icxxuKRPjExM7/lILx7pQM769uducvu3AwIH gxc/trjJO8DzE0iksZypIa/9UNu3O/DobcclAmxmFmbKaXPYJbFwY3P0agx1vK5K LrvVumLFCU3okzUgWy8V7y2cuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCu9dkPT i+oP439HxH1DX//XMejcMB8GA1UdIwQYMBaAFA3au/Me7Gh2bvZpr5c1JAw4mTRZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzI0Ny8zMjA0NEJGRTcx RUUxMUYwOTNDMjJFMThDNEY5QUUwMi9EZHE3OHg3c2FIWnU5bW12bHpVa0REaVpO RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RkcTc4eDdzYUhadTltbXZselVrRERpWk5Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzI0Ny8zMjA0NEJGRTcxRUUxMUYwOTNDMjJFMThDNEY5QUUwMi9EZHE3OHg3c2FI WnU5bW12bHpVa0REaVpORmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnRc2L3jNf4kc9XATQIAxBdiLL0KniF/Mi8NJv/PTButyeZ07kxpL6GpCQBgT hK7syxqw/C8Qdtl2Rm7HkGzyk69L0AIaHJQSWpHKK+yNevqsU6Z2wvbrcYMIgIBm OVvX0FAkGRjH9tM7WhtwzW711tPylfUpuPfYbkIMt0EDunBx4em4kWbcgXzvYo1Y 17ysrZH0naR5hrV0w4f4MJujpm1mXVjVrFR3dsve3mrZVqMWeCYo96gB5v0jquUb wWkNcuFKjdmssHycdZaEIUfQ7HHeEOTS14u52etXVTufWdFl3hz1qC8StoLwfcTU 4TmGGJ8oU/dMkzY284kXhD15XA== -----END CERTIFICATE-----Generated at Thu May 21 14:15:04 2026 by rpki-client