$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: 7pl+5s/zXYq5cCTxExP4kopb8TIC+ARKnej5Kze+5Hs= Subject key identifier: 52:2F:D8:14:99:73:3B:8F:0A:32:41:E8:1E:EB:E0:07:4B:18:34:AA Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 091B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08FB Signing time: Thu 14 May 2026 20:23:17 +0000 Manifest this update: Thu 14 May 2026 20:23:17 +0000 Manifest next update: Thu 21 May 2026 20:23:17 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: uuuQqRGm3Spsb31oTPpU38g2wxEuD7csVbKi934lqZA=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: gl38JCfINuQj5r+ArpGOl2htLCM9Mgwqo9xw/lh130Q=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Vl3ljhabWGTlG6GqBHRNZlqYXeuSFP4BoWLikf0UCmo=) 4: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: 30DNpUpUJwy2It5xAnDm6pl6G00ZZjWgrPOcvF+5H9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 20:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2331 (0x91b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 14 20:23:17 2026 GMT Not After : May 21 20:23:17 2026 GMT Subject: CN=6a062f35-b460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:65:63:7d:68:2b:94:93:73:db:86:6f:85:2b: 58:3a:d6:3e:c1:61:cf:bc:68:a5:f4:46:c7:0b:07: a4:87:a2:90:31:46:4a:0d:ae:2c:e7:db:07:dc:cb: 20:3a:8b:af:74:02:9a:ec:1b:7e:40:f1:b2:08:b8: dd:78:1d:4e:85:ed:34:1e:54:09:dc:51:aa:37:b8: 2e:48:7f:de:00:91:5a:41:b9:00:4c:07:27:3f:2f: 77:c3:6b:72:41:9c:66:b7:4c:a6:97:af:f7:24:08: c4:da:4e:c6:04:4a:37:2a:b7:a3:00:0d:ee:f1:75: 94:dc:09:86:1f:7a:3f:86:75:54:f2:5e:ae:93:62: a3:6d:5b:e0:b9:31:97:d3:67:8d:dc:5d:43:b4:a8: d1:82:60:eb:6f:72:80:95:2d:52:21:79:1b:27:ea: 8e:8e:73:5d:9e:4f:ef:c6:20:62:f6:6e:4a:89:57: c2:e7:6a:c9:45:ac:56:87:07:92:bc:ea:c2:25:e5: 94:dd:5a:1d:93:b5:4e:e4:89:d9:c5:7e:15:18:5c: cb:69:d1:57:02:e7:1a:51:08:2a:5f:4d:ab:e5:80: 0b:7d:52:15:3c:31:99:0a:49:fe:29:92:25:69:cf: 5b:ed:b2:df:cb:45:c1:bc:3e:17:f9:65:d2:cd:6f: b8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:2F:D8:14:99:73:3B:8F:0A:32:41:E8:1E:EB:E0:07:4B:18:34:AA X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:35:9b:55:f9:9e:19:b5:49:7f:34:3c:ff:77:e4:ad:95:d7: 28:4c:b1:df:c2:a3:c2:a6:32:f3:15:07:34:45:59:63:9a:d8: 4a:81:93:c0:a3:98:3d:3a:b1:a1:a7:e6:d0:e1:d2:10:88:2f: 96:46:db:ed:c7:70:1c:00:88:43:97:7b:e5:2e:30:4c:49:72: ec:ca:00:03:bf:ef:70:86:7f:bc:15:ca:81:84:8d:8f:24:0e: 5a:2c:5a:c0:7b:2a:e4:61:fa:6d:d3:51:5b:c4:06:fe:39:dc: ef:8f:65:83:0b:f3:e0:4b:20:93:7c:4f:ce:1a:be:76:63:5b: 35:14:65:01:54:64:36:a4:15:e2:b8:56:e6:d9:27:4a:df:3e: fd:0d:52:3c:48:79:ca:ec:59:0c:ad:e1:d5:84:63:91:d3:1b: 15:02:1f:6e:ae:7d:47:ad:08:06:fb:85:6c:9c:ff:07:88:6e: 3f:09:b5:2a:41:50:5d:50:c7:7a:9d:31:ad:a3:73:a1:7e:5f: b1:88:bd:94:f3:b3:71:11:ba:5a:d9:b4:99:86:db:07:4f:be: d9:0b:97:ef:9b:18:2a:a2:1b:d9:37:f2:3c:f2:f6:62:1a:86: 36:91:dd:c4:af:50:f6:fb:d7:88:34:9a:fd:fe:4a:9c:59:32: 87:12:c3:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwNTE0MjAyMzE3WhcNMjYwNTIxMjAyMzE3WjAYMRYwFAYD VQQDEw02YTA2MmYzNS1iNDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmWVjfWgrlJNz24ZvhStYOtY+wWHPvGil9EbHCwekh6KQMUZKDa4s59sH3Msg OouvdAKa7Bt+QPGyCLjdeB1Ohe00HlQJ3FGqN7guSH/eAJFaQbkATAcnPy93w2ty QZxmt0yml6/3JAjE2k7GBEo3KrejAA3u8XWU3AmGH3o/hnVU8l6uk2KjbVvguTGX 02eN3F1DtKjRgmDrb3KAlS1SIXkbJ+qOjnNdnk/vxiBi9m5KiVfC52rJRaxWhweS vOrCJeWU3Vodk7VO5InZxX4VGFzLadFXAucaUQgqX02r5YALfVIVPDGZCkn+KZIl ac9b7bLfy0XBvD4X+WXSzW+4TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFIv2BSZ czuPCjJB6B7r4AdLGDSqMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASTWbVfmeGbVJfzQ8/3fkrZXXKEyx38KjwqYy8xUHNEVZY5rYSoGTwKOYPTqx oafm0OHSEIgvlkbb7cdwHACIQ5d75S4wTEly7MoAA7/vcIZ/vBXKgYSNjyQOWixa wHsq5GH6bdNRW8QG/jnc749lgwvz4Esgk3xPzhq+dmNbNRRlAVRkNqQV4rhW5tkn St8+/Q1SPEh5yuxZDK3h1YRjkdMbFQIfbq59R60IBvuFbJz/B4huPwm1KkFQXVDH ep0xraNzoX5fsYi9lPOzcRG6Wtm0mYbbB0++2QuX75sYKqIb2TfyPPL2YhqGNpHd xK9Q9vvXiDSa/f5KnFkyhxLDzQ== -----END CERTIFICATE-----Generated at Fri May 15 20:44:50 2026 by rpki-client