$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: Bt+CJJORjVWQko2o2tLTZgG4yYYeLE+WWSOsXaMQvXY= Subject key identifier: E5:E7:55:7C:A4:7B:95:67:36:0C:36:24:B8:C3:7E:E3:F1:CA:55:77 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 0362 Signing time: Thu 21 May 2026 00:58:52 +0000 Manifest this update: Thu 21 May 2026 00:58:52 +0000 Manifest next update: Thu 28 May 2026 00:58:52 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: k/Y5QvVhc735rPPhz+7NKMfHVv9vUy4LjEeqT6dtBfY=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QRtlstVkdBXEszVrg/iIFuaNaUBnHazamE53eJaDdno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: May 21 00:58:52 2026 GMT Not After : May 28 00:58:52 2026 GMT Subject: CN=6a0e58cc-9479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:3b:8e:43:2d:a9:9c:3f:a9:85:a5:7d:d3: 97:dd:3c:98:37:39:e9:06:56:dc:6d:bb:df:ed:df: 73:ee:c5:b9:c6:51:54:3c:57:c5:c0:65:b0:22:8d: 4d:d3:de:68:80:bd:3a:bc:ed:58:25:06:53:fe:52: e2:0a:6d:06:df:2f:36:67:b4:11:4f:5d:28:99:28: 74:c9:75:1e:96:00:c6:db:9e:fd:b4:8e:a7:f7:85: 76:6a:b9:6f:76:df:41:4e:2b:5d:db:45:d5:e8:cf: 5a:a6:77:ab:8b:23:c7:bd:06:08:ed:97:d0:50:43: 32:10:e5:2e:f4:ec:dc:6c:be:93:14:a0:2f:7d:91: ba:aa:1a:8e:70:a4:53:69:18:7e:b6:fe:0e:06:09: fe:8f:56:11:3e:8f:46:c2:5f:b2:2a:50:48:99:a3: f4:7c:88:69:d4:df:1b:36:87:87:29:d4:81:90:b5: fe:ab:80:bd:e3:57:fa:11:fd:08:91:4e:83:b8:13: 4b:aa:0f:a8:b8:db:81:57:a4:fa:eb:01:ef:62:c0: 1b:1f:96:36:1c:33:56:04:17:e5:b6:23:6e:73:ce: e9:9a:6b:b5:6e:01:39:16:60:05:c7:a8:e3:92:e0: 93:99:37:fb:ee:b3:b1:c2:3d:e4:60:c1:20:12:1e: 68:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E7:55:7C:A4:7B:95:67:36:0C:36:24:B8:C3:7E:E3:F1:CA:55:77 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:27:ad:de:3c:d6:95:12:1c:a5:94:df:ed:d1:45:6a:c2:17: e6:68:58:48:11:dc:01:8a:f1:98:65:99:9a:9e:cb:c2:cf:ab: 55:b6:b0:b2:8b:be:b1:36:3c:9e:09:6a:e1:cf:fa:56:eb:f4: f8:4a:cf:62:23:37:00:66:f6:be:e4:54:53:34:3b:51:74:47: d7:64:34:e0:13:64:74:61:3d:ec:bc:64:5e:85:05:ee:39:91: 43:a6:09:d4:85:b5:96:42:63:8e:7a:e1:01:63:07:43:00:c3: 2f:fd:92:ea:3e:3b:33:d3:a1:89:86:b3:b2:7f:0b:17:3c:02: 4f:4f:70:43:98:a5:28:34:39:ff:9d:31:48:ec:da:45:bd:93: a3:ef:b9:36:1b:54:66:2a:5b:98:58:8e:58:74:e1:b5:a9:6a: 8b:63:cb:f0:2c:f5:99:85:1d:44:cb:bd:b8:7f:46:37:76:1d: ed:31:a9:da:32:72:75:e8:f4:e6:68:ec:5f:55:bc:ad:7e:00: d7:1e:7b:48:b6:d9:fa:c9:9a:20:cd:88:4e:60:3b:85:3a:3b: ee:52:be:6b:23:43:59:ca:a7:3a:39:ee:de:ef:80:90:23:7b: 58:40:f0:36:b6:d5:ae:dc:86:b0:d4:33:69:e3:1c:99:ca:55: 6d:86:8c:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjYwNTIxMDA1ODUyWhcNMjYwNTI4MDA1ODUyWjAYMRYwFAYD VQQDEw02YTBlNThjYy05NDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaM7jkMtqZw/qYWlfdOX3TyYNznpBlbcbbvf7d9z7sW5xlFUPFfFwGWwIo1N 095ogL06vO1YJQZT/lLiCm0G3y82Z7QRT10omSh0yXUelgDG2579tI6n94V2arlv dt9BTitd20XV6M9apneriyPHvQYI7ZfQUEMyEOUu9OzcbL6TFKAvfZG6qhqOcKRT aRh+tv4OBgn+j1YRPo9Gwl+yKlBImaP0fIhp1N8bNoeHKdSBkLX+q4C941f6Ef0I kU6DuBNLqg+ouNuBV6T66wHvYsAbH5Y2HDNWBBfltiNuc87pmmu1bgE5FmAFx6jj kuCTmTf77rOxwj3kYMEgEh5o+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOXnVXyk e5VnNgw2JLjDfuPxylV3MB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWiet3jzWlRIcpZTf7dFFasIX5mhYSBHcAYrxmGWZmp7Lws+rVbawsou+sTY8 nglq4c/6Vuv0+ErPYiM3AGb2vuRUUzQ7UXRH12Q04BNkdGE97LxkXoUF7jmRQ6YJ 1IW1lkJjjnrhAWMHQwDDL/2S6j47M9OhiYazsn8LFzwCT09wQ5ilKDQ5/50xSOza Rb2To++5NhtUZipbmFiOWHThtalqi2PL8Cz1mYUdRMu9uH9GN3Yd7TGp2jJydej0 5mjsX1W8rX4A1x57SLbZ+smaIM2ITmA7hTo77lK+ayNDWcqnOjnu3u+AkCN7WEDw NrbVrtyGsNQzaeMcmcpVbYaMfQ== -----END CERTIFICATE-----Generated at Thu May 21 10:19:30 2026 by rpki-client