$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: dRww1A/mbWgLDQxvzUvHBS8DxZnYO3CBkgRMXHxA0m8= Subject key identifier: 6E:BA:7E:D1:EF:35:D0:B9:C3:F7:C3:39:04:0C:53:46:F7:7B:0C:C9 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 02A3 Signing time: Thu 21 May 2026 01:37:00 +0000 Manifest this update: Thu 21 May 2026 01:37:00 +0000 Manifest next update: Thu 28 May 2026 01:37:00 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: aJRszYs1jPuLM05duiImoEfrdhERM1Ot3NkzIPoao20=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: NXGbpmoMOzAZwcgSz2AYwCb8kwzGpslvQ3JE0B3JbOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: May 21 01:37:00 2026 GMT Not After : May 28 01:37:00 2026 GMT Subject: CN=6a0e61bc-394f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:02:ab:a4:a7:ee:ba:f1:76:32:34:68:89: 11:79:e8:da:1e:d2:79:4b:75:9a:e1:d7:58:9f:99: f1:3d:ff:d5:73:72:8c:df:2e:c0:78:d7:05:50:d5: 0d:48:bd:07:f6:a5:78:91:ec:c5:2f:4d:61:55:46: 09:0a:41:c3:09:54:14:0b:7a:59:3e:79:1b:be:6d: 76:00:c7:e1:de:9e:bf:d4:ee:45:2a:49:22:16:ab: e2:d1:1f:6f:15:fe:c0:88:6d:b4:5a:e2:06:63:cd: d6:cd:9a:86:9c:04:a6:a2:ee:6a:e9:71:15:78:ab: f3:76:40:98:c8:8c:47:f8:7a:4f:14:7f:83:77:b4: af:0a:ca:2e:ed:c7:a5:6f:0c:7a:46:b2:79:8f:dc: f8:10:a4:95:46:ca:83:b2:18:13:ed:77:db:40:cd: 28:ed:65:4a:9e:63:c5:f0:f5:4b:c2:97:e2:a0:bf: 89:e0:92:f9:27:68:8b:fe:6e:b1:c6:b4:95:cc:74: 14:98:b3:ab:5e:05:e1:5f:bc:f7:60:c4:92:50:88: 0e:16:5c:73:f6:6f:1d:93:ad:f5:b3:dd:3e:a0:1f: 54:31:e5:47:25:d2:ce:90:7c:cb:e2:b3:53:a9:35: 18:b0:0d:a2:d7:e9:1b:81:f0:88:11:e3:48:d4:2c: 18:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:BA:7E:D1:EF:35:D0:B9:C3:F7:C3:39:04:0C:53:46:F7:7B:0C:C9 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:c5:d8:6b:94:56:1a:4b:2f:d2:08:ea:81:9d:b7:12:c8:f2: a5:2d:2a:d1:b9:85:50:a4:cd:d3:5c:42:d6:ee:ec:ef:b4:11: af:b7:89:07:ff:8f:23:55:65:63:06:ce:60:40:c4:4b:6a:ed: f8:04:7f:4b:25:03:e4:88:f2:22:88:29:75:2c:8d:92:da:ac: dd:2e:4f:fc:ba:1b:49:bb:3c:34:d1:17:46:ef:16:21:e4:45: 00:84:b5:9d:dc:19:9e:6f:44:a0:b5:ef:42:72:7d:25:a2:65: 92:a2:1b:b8:20:b2:ab:c0:de:f6:fa:1e:01:99:eb:65:ea:94: bb:af:bf:58:dc:9a:e9:88:33:e8:03:e3:c9:a4:bc:90:62:de: 84:e7:ea:ed:f3:0d:75:a8:a1:36:81:78:24:f6:52:ad:92:f2: d7:06:24:d9:4c:51:2b:33:15:02:ec:8d:38:4e:a2:10:23:02: e6:1e:96:e8:27:90:d3:ae:42:9c:e2:87:73:3e:06:a8:0a:32: 81:f0:1b:29:75:20:4b:81:e6:fb:8e:6e:6e:75:dd:4b:79:ce: 3a:41:b0:44:ef:07:d4:fc:91:f4:66:12:23:bd:22:de:e4:60: 1b:68:fb:61:e9:6b:bb:4b:75:1d:25:cc:a6:09:2b:25:a1:39: 87:8f:01:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjYwNTIxMDEzNzAwWhcNMjYwNTI4MDEzNzAwWjAYMRYwFAYD VQQDEw02YTBlNjFiYy0zOTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIMCq6Sn7rrxdjI0aIkReejaHtJ5S3Wa4ddYn5nxPf/Vc3KM3y7AeNcFUNUN SL0H9qV4kezFL01hVUYJCkHDCVQUC3pZPnkbvm12AMfh3p6/1O5FKkkiFqvi0R9v Ff7AiG20WuIGY83WzZqGnASmou5q6XEVeKvzdkCYyIxH+HpPFH+Dd7SvCsou7cel bwx6RrJ5j9z4EKSVRsqDshgT7XfbQM0o7WVKnmPF8PVLwpfioL+J4JL5J2iL/m6x xrSVzHQUmLOrXgXhX7z3YMSSUIgOFlxz9m8dk631s90+oB9UMeVHJdLOkHzL4rNT qTUYsA2i1+kbgfCIEeNI1CwYvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG66ftHv NdC5w/fDOQQMU0b3ewzJMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQsXYa5RWGksv0gjqgZ23EsjypS0q0bmFUKTN01xC1u7s77QRr7eJB/+PI1Vl YwbOYEDES2rt+AR/SyUD5IjyIogpdSyNktqs3S5P/LobSbs8NNEXRu8WIeRFAIS1 ndwZnm9EoLXvQnJ9JaJlkqIbuCCyq8De9voeAZnrZeqUu6+/WNya6Ygz6APjyaS8 kGLehOfq7fMNdaihNoF4JPZSrZLy1wYk2UxRKzMVAuyNOE6iECMC5h6W6CeQ065C nOKHcz4GqAoygfAbKXUgS4Hm+45ubnXdS3nOOkGwRO8H1PyR9GYSI70i3uRgG2j7 Yelru0t1HSXMpgkrJaE5h48BOw== -----END CERTIFICATE-----Generated at Thu May 21 10:20:19 2026 by rpki-client