$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: u4Yz7vZXnYGFMANGGYf5qJOFGF/OaL//36jbkdVGpvg= Subject key identifier: 20:56:77:04:75:E4:E3:37:AA:EE:C0:C0:49:4F:7E:C5:D1:66:AB:1B Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 0A78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 0A6F Signing time: Wed 20 May 2026 19:39:04 +0000 Manifest this update: Wed 20 May 2026 19:39:04 +0000 Manifest next update: Wed 27 May 2026 19:39:04 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: QSXIaZCXBca3qBGOFED7TPVeFF48QjHZHlsuP8mbyAU=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ERhX+neEQpWaGHgDx788YR3fYNG7D/j2H84jmEv5law=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:39:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2680 (0xa78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: May 20 19:39:04 2026 GMT Not After : May 27 19:39:04 2026 GMT Subject: CN=6a0e0dd8-17fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:32:3b:56:9e:23:16:66:12:df:33:c7:15:8e: e8:e1:f2:d1:6b:48:e9:79:0c:d4:7e:68:a4:4d:6e: 78:fc:be:ff:06:a6:1b:49:93:4d:62:a2:18:d0:aa: fb:d6:9c:1e:f9:da:a2:e9:97:55:42:58:4b:64:8a: d8:e8:dc:36:71:92:5c:27:a3:38:5d:03:ff:33:89: 88:c3:14:b4:e2:43:20:e3:0e:75:14:6c:77:f9:2b: 3c:52:b9:ae:dd:45:9e:36:4c:64:21:6f:e4:7e:1b: 32:b8:90:e1:77:e5:45:18:eb:ca:fa:5d:b7:b9:99: 12:22:41:55:72:50:13:2c:ed:cb:a9:ea:66:85:c4: 36:04:3d:4b:48:bd:7e:29:49:c8:0d:92:3d:6e:f3: e5:2d:47:4a:fa:47:bf:8e:26:1e:9e:d2:e0:ac:11: db:d6:cb:90:18:3f:2f:9e:64:a6:16:ef:f3:7e:c5: 87:ef:26:db:ce:31:9d:34:d0:8c:a1:8a:b3:b3:e6: bc:5b:83:ef:89:44:d1:f7:8e:80:a8:85:bd:bd:ef: 58:0c:fb:d2:77:49:b4:9c:39:ac:2f:ce:c0:8c:df: 5b:3b:cb:01:0b:7e:78:40:73:72:7b:2b:6d:48:79: 95:26:e7:98:31:5d:26:96:35:8b:d2:0d:23:fe:fb: bc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:56:77:04:75:E4:E3:37:AA:EE:C0:C0:49:4F:7E:C5:D1:66:AB:1B X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:0f:50:18:0b:39:ab:85:2f:35:91:65:d2:74:54:50:7c:1b: a8:ef:af:28:1d:55:eb:4a:da:12:42:c5:79:be:05:12:a4:6a: 04:c8:22:4d:80:93:11:29:9e:6d:79:79:63:3c:ea:e5:81:6d: e8:bd:c8:24:bf:a3:e0:4a:96:8d:3b:95:d4:91:a8:51:aa:59: 76:53:2a:3a:b9:92:13:75:5b:b5:d9:dd:ca:dc:e9:be:9d:75: fc:99:9c:65:fd:e5:b7:c5:84:7c:ca:e2:7d:d7:ed:31:15:53: 37:1b:fe:97:24:38:ac:0a:b2:2f:14:cc:3a:e9:e1:98:0a:85: 02:a6:ab:06:f2:c3:33:35:21:31:12:90:1b:36:1a:5e:53:79: 99:28:a9:a4:55:83:67:61:df:0d:cb:49:e7:46:61:2d:98:ca: 66:3c:ce:40:52:a8:c3:92:a9:8a:ce:c9:68:ba:8d:aa:0e:20: e3:97:85:96:c0:52:e0:8b:3c:36:95:52:bd:96:4b:4f:01:42: d8:be:0c:01:fd:b2:0a:4b:93:47:86:98:f0:83:59:ae:9c:69: 45:b4:15:6a:c8:9f:50:d8:91:87:3a:91:a5:ac:af:2b:1d:04: a8:92:cf:e7:c8:05:2d:ea:ab:64:b0:67:1e:66:bf:aa:c8:6c: 23:77:37:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjYwNTIwMTkzOTA0WhcNMjYwNTI3MTkzOTA0WjAYMRYwFAYD VQQDEw02YTBlMGRkOC0xN2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jI7Vp4jFmYS3zPHFY7o4fLRa0jpeQzUfmikTW54/L7/BqYbSZNNYqIY0Kr7 1pwe+dqi6ZdVQlhLZIrY6Nw2cZJcJ6M4XQP/M4mIwxS04kMg4w51FGx3+Ss8Urmu 3UWeNkxkIW/kfhsyuJDhd+VFGOvK+l23uZkSIkFVclATLO3LqepmhcQ2BD1LSL1+ KUnIDZI9bvPlLUdK+ke/jiYentLgrBHb1suQGD8vnmSmFu/zfsWH7ybbzjGdNNCM oYqzs+a8W4PviUTR946AqIW9ve9YDPvSd0m0nDmsL87AjN9bO8sBC354QHNyeytt SHmVJueYMV0mljWL0g0j/vu8+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCBWdwR1 5OM3qu7AwElPfsXRZqsbMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZA9QGAs5q4UvNZFl0nRUUHwbqO+vKB1V60raEkLFeb4FEqRqBMgiTYCTESme bXl5Yzzq5YFt6L3IJL+j4EqWjTuV1JGoUapZdlMqOrmSE3Vbtdndytzpvp11/Jmc Zf3lt8WEfMrifdftMRVTNxv+lyQ4rAqyLxTMOunhmAqFAqarBvLDMzUhMRKQGzYa XlN5mSippFWDZ2HfDctJ50ZhLZjKZjzOQFKow5Kpis7JaLqNqg4g45eFlsBS4Is8 NpVSvZZLTwFC2L4MAf2yCkuTR4aY8INZrpxpRbQVasifUNiRhzqRpayvKx0EqJLP 58gFLeqrZLBnHma/qshsI3c3HA== -----END CERTIFICATE-----Generated at Thu May 21 11:15:45 2026 by rpki-client