$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: EnHxZeJWRS+G/XskdQC2NUh+V2wnUUykuaIm/KZ5ItE= Subject key identifier: 49:A1:22:A5:60:5C:56:92:44:35:9C:30:B2:E2:46:2F:C7:61:DB:E7 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1DE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1DD6 Signing time: Wed 20 May 2026 16:05:55 +0000 Manifest this update: Wed 20 May 2026 16:05:54 +0000 Manifest next update: Wed 27 May 2026 16:05:54 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: KJxKt7TuLU2MrVuMDDoj/WSwytS8kQB7XzgWAxkaXN4=) 2: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: seFaisKP4ec6q9qFGmFZNr4zMFjr0TKVJUyLwQHYJXw=) 3: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: kR4y+WvgC3hkyFfy0t8WKjcUjP/sBiTZjAGWQPxf694=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7657 (0x1de9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: May 20 16:05:54 2026 GMT Not After : May 27 16:05:54 2026 GMT Subject: CN=6a0ddbe3-13b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:e3:bd:ff:0d:bd:e5:6a:b8:25:b6:59:60: d0:cb:80:48:9a:45:bf:52:0f:5e:38:87:cb:db:7c: e3:99:bc:23:cb:fe:a6:fe:6d:d1:9d:2e:bd:0e:2b: 07:f8:b8:e1:b9:f5:af:c1:da:ae:04:0d:95:35:69: 7b:b8:cf:1a:69:c2:08:6f:e4:8b:58:34:dc:4c:a5: bc:89:45:a2:5a:a6:ae:cc:17:7e:2c:72:09:47:a9: a0:4e:8c:a8:c8:1a:f5:3c:2f:e8:de:7f:d3:8c:7c: 27:58:f0:36:de:ab:0a:d5:df:eb:56:3e:e5:be:f7: a5:5b:90:2e:85:db:2a:88:3f:44:e1:31:03:a5:08: bd:82:06:5f:ea:b7:ad:5d:2e:9a:fe:43:6d:d6:29: 4b:3a:52:95:95:f6:2e:26:72:51:03:14:d1:0f:4a: 3b:7f:d3:db:e2:bb:6e:c7:61:0c:7f:b7:a7:dc:87: 0b:e2:86:ca:27:ff:0b:67:e4:a5:f5:14:c8:f9:b8: fe:10:99:91:ce:0d:a4:f4:6b:39:78:44:ca:8a:83: 9f:ae:39:ce:d5:6f:8b:00:41:18:91:dc:35:c5:49: 6c:f3:46:05:e8:ea:82:d4:f9:4e:b0:ad:cc:1e:4b: ed:a3:cc:f7:fc:19:f2:87:e1:dc:8e:80:a0:4b:16: fe:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A1:22:A5:60:5C:56:92:44:35:9C:30:B2:E2:46:2F:C7:61:DB:E7 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:61:26:db:a7:56:7e:5a:1e:d4:d6:20:b1:73:2c:de:72:f2: fe:94:08:17:82:59:52:3e:ff:ed:05:f3:c8:66:f4:2b:02:d8: d5:6a:4b:eb:07:d1:c0:f9:e0:4d:d0:0d:09:80:67:b0:02:65: 67:72:70:76:ff:9f:dc:62:0d:05:70:46:61:fb:6d:6b:91:96: 5d:ed:44:1e:96:c9:f1:46:e8:03:f3:74:f0:4a:b7:f2:8c:99: b2:53:c8:f5:fc:7a:a5:28:cc:2d:55:18:bc:a0:89:10:9e:95: 13:f4:44:4f:0b:f2:20:2d:dc:2f:4c:12:fc:67:65:d0:65:11: 3d:31:96:bc:18:5b:16:fc:af:d9:fb:5b:3b:80:81:2d:a6:81: 5c:fa:c9:32:e7:90:27:b9:58:93:21:1c:28:6d:12:a4:41:0b: 70:95:79:97:30:fe:32:a8:db:5d:0f:05:e2:01:c5:da:89:97: ca:b0:0c:7e:e1:a2:5a:a2:4e:ed:fa:4d:7e:71:60:5f:50:1f: 5b:72:66:ba:25:47:98:b9:13:c2:7e:60:97:06:8f:04:12:f3: 15:27:18:f2:b0:29:7f:19:16:0d:bc:15:c7:d9:26:10:3d:68: 53:68:49:9e:a3:7a:39:e1:04:23:79:b9:f3:a5:b5:84:6d:ec: 47:4a:82:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjYwNTIwMTYwNTU0WhcNMjYwNTI3MTYwNTU0WjAYMRYwFAYD VQQDEw02YTBkZGJlMy0xM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXPjvf8NveVquCW2WWDQy4BImkW/Ug9eOIfL23zjmbwjy/6m/m3RnS69DisH +LjhufWvwdquBA2VNWl7uM8aacIIb+SLWDTcTKW8iUWiWqauzBd+LHIJR6mgToyo yBr1PC/o3n/TjHwnWPA23qsK1d/rVj7lvvelW5AuhdsqiD9E4TEDpQi9ggZf6ret XS6a/kNt1ilLOlKVlfYuJnJRAxTRD0o7f9Pb4rtux2EMf7en3IcL4obKJ/8LZ+Sl 9RTI+bj+EJmRzg2k9Gs5eETKioOfrjnO1W+LAEEYkdw1xUls80YF6OqC1PlOsK3M Hkvto8z3/Bnyh+HcjoCgSxb+OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEmhIqVg XFaSRDWcMLLiRi/HYdvnMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGGEm26dWfloe1NYgsXMs3nLy/pQIF4JZUj7/7QXzyGb0KwLY1WpL6wfRwPng TdANCYBnsAJlZ3Jwdv+f3GINBXBGYftta5GWXe1EHpbJ8UboA/N08Eq38oyZslPI 9fx6pSjMLVUYvKCJEJ6VE/RETwvyIC3cL0wS/Gdl0GURPTGWvBhbFvyv2ftbO4CB LaaBXPrJMueQJ7lYkyEcKG0SpEELcJV5lzD+MqjbXQ8F4gHF2omXyrAMfuGiWqJO 7fpNfnFgX1AfW3JmuiVHmLkTwn5glwaPBBLzFScY8rApfxkWDbwVx9kmED1oU2hJ nqN6OeEEI3m586W1hG3sR0qCFw== -----END CERTIFICATE-----Generated at Thu May 21 10:37:53 2026 by rpki-client