$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft File: NfWNhhxBvf6ka4xykLGqxnDnzBs.mft (raw, json) Hash identifier: cZdHZJh4zgBvJ8CxY6F4FWiZCcRtKBU3Ix5ALhUfDzk= Subject key identifier: 78:6D:E0:B6:BA:C4:C7:56:12:37:CB:2E:78:20:AF:B6:BA:B2:A3:4B Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0BF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft Manifest number: 0BE4 Signing time: Wed 20 May 2026 18:54:29 +0000 Manifest this update: Wed 20 May 2026 18:54:29 +0000 Manifest next update: Wed 27 May 2026 18:54:29 +0000 Files and hashes: 1: NfWNhhxBvf6ka4xykLGqxnDnzBs.crl (hash: I4vynbr4OZIEsonGRQouBjFYJvdQQ2QrFIR5R6hQZx8=) 2: 902F47663C0111EAB6CB9936C4F9AE02.roa (hash: Gs/OJqCKd+Z2MrNkjskkMTrkotmVzq3GXlJl1vTfx3c=) 3: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (hash: zrbEpdPJC+D2d8+tTb0MQGcYEqeI6Y60eS+Lp/wlgrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3063 (0xbf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB, serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: May 20 18:54:29 2026 GMT Not After : May 27 18:54:29 2026 GMT Subject: CN=6a0e0365-46b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:dc:23:12:55:45:55:6d:d6:a1:4b:b6:be:42: 80:35:d4:ae:65:47:63:c9:54:a2:01:1d:d6:19:fc: ed:f7:41:52:d1:81:32:61:ef:71:e9:6e:b6:b3:e7: 4c:89:a0:6e:98:96:70:71:6a:84:c9:58:37:2a:1f: 30:5a:f5:56:95:73:14:33:3c:eb:85:85:10:7a:5d: 85:0b:67:36:af:f5:52:68:c0:f0:8f:8c:49:61:bd: a1:7c:af:0c:85:94:bf:7c:c6:66:fa:81:71:82:2b: cc:1d:b5:12:d5:73:97:bd:39:e0:10:d8:0e:26:cc: 7c:6b:fd:f9:5b:b0:a5:d8:10:6f:3b:16:94:4c:c7: 9f:33:ee:2d:ee:1e:79:32:58:12:c5:ca:92:ed:e5: 14:10:2b:58:42:31:38:62:85:a5:1a:56:39:83:76: 5a:04:31:28:11:aa:95:1c:e5:e2:c6:7e:4d:80:b2: 47:ac:be:2f:23:09:35:c1:cb:e4:73:3b:97:bb:46: f4:c3:dc:e2:f7:21:ab:d5:8f:4e:99:ac:67:b6:d4: 4c:4c:ea:df:0d:85:bb:3c:10:93:a5:07:37:d2:5d: 5b:83:2a:ba:cc:fd:54:f7:99:c1:c7:17:c7:a3:6e: 2d:fe:0d:2b:68:9a:c6:13:f7:f0:a9:c1:a4:a2:c9: 17:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6D:E0:B6:BA:C4:C7:56:12:37:CB:2E:78:20:AF:B6:BA:B2:A3:4B X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:90:d4:a9:a4:af:6b:bc:ff:bd:1b:e2:37:80:29:35:9f:9b: 56:93:8e:7b:f9:69:cd:d0:90:4e:3f:d3:62:f8:fd:6f:1f:38: 7c:90:78:60:04:07:05:6d:e6:9d:31:17:fc:c4:21:72:9f:62: b2:0f:14:ed:d6:87:69:5c:37:1d:7b:2f:f4:bd:85:be:c2:b3: c4:35:c0:3b:2e:a7:36:30:4c:84:2b:74:f7:e6:3a:08:aa:da: 34:fb:48:65:00:fd:20:1d:9c:ed:00:d8:9f:31:e2:17:8e:ea: b1:73:38:7e:e3:8c:cc:8e:9e:7a:b9:ca:65:8b:dc:e0:b1:46: 47:31:f9:12:08:45:e8:6b:85:1e:18:ab:ce:f6:a1:14:b9:9c: c5:71:dd:19:81:09:57:69:c8:6c:03:f0:da:8c:57:bf:03:7b: eb:09:4f:0b:7b:ba:1f:71:9f:bb:8d:9f:34:79:81:20:db:eb: 19:b6:51:5b:a1:6d:a6:c6:04:98:09:55:d5:2b:dd:56:36:11: bc:49:31:9e:80:3d:dd:a5:c2:80:f6:5c:38:8d:23:93:61:c1: 7b:88:f6:15:25:62:00:af:fc:de:23:7b:8e:b8:41:8a:b4:a5: b6:f0:58:3e:41:47:53:a2:60:f1:d5:6a:9b:fc:0f:60:24:d6: b1:cb:5a:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjYwNTIwMTg1NDI5WhcNMjYwNTI3MTg1NDI5WjAYMRYwFAYD VQQDEw02YTBlMDM2NS00NmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dwjElVFVW3WoUu2vkKANdSuZUdjyVSiAR3WGfzt90FS0YEyYe9x6W62s+dM iaBumJZwcWqEyVg3Kh8wWvVWlXMUMzzrhYUQel2FC2c2r/VSaMDwj4xJYb2hfK8M hZS/fMZm+oFxgivMHbUS1XOXvTngENgOJsx8a/35W7Cl2BBvOxaUTMefM+4t7h55 MlgSxcqS7eUUECtYQjE4YoWlGlY5g3ZaBDEoEaqVHOXixn5NgLJHrL4vIwk1wcvk czuXu0b0w9zi9yGr1Y9OmaxnttRMTOrfDYW7PBCTpQc30l1bgyq6zP1U95nBxxfH o24t/g0raJrGE/fwqcGkoskXIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHht4La6 xMdWEjfLLnggr7a6sqNLMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVCQi81Nzg5QjFBNDNDMDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZm NmthNHh5a0xHcXhuRG56QnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq5DUqaSva7z/vRviN4ApNZ+bVpOOe/lpzdCQTj/TYvj9bx84fJB4YAQHBW3m nTEX/MQhcp9isg8U7daHaVw3HXsv9L2FvsKzxDXAOy6nNjBMhCt09+Y6CKraNPtI ZQD9IB2c7QDYnzHiF47qsXM4fuOMzI6eernKZYvc4LFGRzH5EghF6GuFHhirzvah FLmcxXHdGYEJV2nIbAPw2oxXvwN76wlPC3u6H3Gfu42fNHmBINvrGbZRW6FtpsYE mAlV1SvdVjYRvEkxnoA93aXCgPZcOI0jk2HBe4j2FSViAK/83iN7jrhBirSltvBY PkFHU6Jg8dVqm/wPYCTWscta0w== -----END CERTIFICATE-----Generated at Fri May 22 15:12:34 2026 by rpki-client