$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: SZUSSsQ07lBlTtYCYQnhLVRvBBI9oiYXSej7hZ8Ws/E= Subject key identifier: FA:B6:71:F2:5F:4D:96:9D:FC:D9:FF:DE:A4:9D:91:88:44:53:36:5A Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 05FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 05F1 Signing time: Wed 20 May 2026 22:59:10 +0000 Manifest this update: Wed 20 May 2026 22:59:09 +0000 Manifest next update: Wed 27 May 2026 22:59:09 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: ksgUXKjenyNmnnvJDYPzdXxVFWPrdEtnW+We3xCR92Q=) 2: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: n7blhtr8CeB1GQILH2tbTNGZrE0mtz4/kPdd9dFJxPM=) 3: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: 3Myni48C8MqbnkMOucThNgI8mHbpIgv3RcenlXVut6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: May 20 22:59:09 2026 GMT Not After : May 27 22:59:09 2026 GMT Subject: CN=6a0e3cbe-5bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8a:72:bd:f9:2c:af:c6:15:55:4a:cb:44:db: 0a:8e:53:a3:32:29:4f:3e:5b:66:fa:9f:1d:34:3a: de:37:50:39:bd:ca:21:90:0f:fd:fc:b7:80:1b:54: 83:10:eb:44:99:26:1b:9b:a3:bf:42:0f:ab:a3:c7: c7:69:26:33:e0:98:ca:b1:28:43:43:07:57:32:aa: db:79:db:7c:3f:f1:b5:9d:2e:e6:d8:20:f8:86:8f: 7e:7e:e9:24:ab:fd:fc:0f:11:b8:c7:84:7b:48:b3: ce:cc:1f:48:ea:b7:e4:c9:ef:af:ee:80:18:fd:dd: b4:92:33:d9:82:31:e0:20:3a:5e:f0:11:69:25:08: c8:58:a8:b7:d7:24:ba:a7:a2:5a:70:6a:7c:6f:5c: e7:2b:33:47:00:a7:92:63:08:32:9e:15:ac:16:bd: 4c:cc:22:4e:a1:4d:04:ef:d9:42:86:d5:6d:dc:e8: 74:8e:53:4b:e5:ca:27:e4:ff:ff:fe:1d:1b:28:7a: 77:b6:e2:00:37:59:0e:84:f5:7b:d8:6d:08:5c:24: 96:19:9e:9c:d8:37:a8:9c:f3:c7:56:ed:8d:78:6d: 88:c3:70:c7:70:c4:e3:b0:6e:ba:dd:f3:7e:ca:3e: 5d:ca:40:36:95:11:c2:65:42:91:b3:c5:a9:a9:5d: bc:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B6:71:F2:5F:4D:96:9D:FC:D9:FF:DE:A4:9D:91:88:44:53:36:5A X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:81:f0:b6:2e:57:9d:d7:66:f1:e5:9e:43:dd:4b:38:f0:f6: be:8c:2a:0e:4d:3f:ca:95:57:12:ba:8c:29:d8:e4:ba:9f:be: d5:b8:18:80:93:b4:c5:d1:a2:70:0f:ce:40:2c:64:19:a0:2e: 61:81:cc:b8:a1:bd:4c:bb:43:2c:fb:ad:47:27:c2:73:52:aa: ae:30:11:52:6b:26:ca:4a:7f:1c:38:e2:45:79:2a:55:13:86: 17:38:7e:f2:13:6b:45:22:c4:44:21:84:08:35:18:7d:ae:af: 96:04:bf:80:ef:d7:c6:d0:59:e7:be:23:8e:fe:ae:f2:85:f1: 54:e0:31:88:76:af:d2:02:4a:7c:5d:47:06:49:62:a1:a1:45: 22:39:40:44:e6:6e:36:91:9a:5a:2e:89:9f:74:41:ab:d1:5f: 16:8e:90:35:5e:94:28:4d:43:3b:ce:40:6b:a8:bd:fb:4e:1f: ac:e6:d3:3b:a5:4b:80:01:50:46:b4:c8:4b:ed:70:da:28:71: 6d:a9:82:fa:9b:25:b3:bc:b0:35:4f:1d:7f:8f:44:dc:99:2f: bd:9e:fa:89:66:25:97:b5:d9:f6:f3:68:75:b2:2e:4e:5d:77: 41:5a:2b:7f:60:9f:9a:be:97:b2:dd:86:26:34:7b:95:54:4b: 51:d9:ee:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjYwNTIwMjI1OTA5WhcNMjYwNTI3MjI1OTA5WjAYMRYwFAYD VQQDEw02YTBlM2NiZS01YmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIpyvfksr8YVVUrLRNsKjlOjMilPPltm+p8dNDreN1A5vcohkA/9/LeAG1SD EOtEmSYbm6O/Qg+ro8fHaSYz4JjKsShDQwdXMqrbedt8P/G1nS7m2CD4ho9+fukk q/38DxG4x4R7SLPOzB9I6rfkye+v7oAY/d20kjPZgjHgIDpe8BFpJQjIWKi31yS6 p6JacGp8b1znKzNHAKeSYwgynhWsFr1MzCJOoU0E79lChtVt3Oh0jlNL5con5P// /h0bKHp3tuIAN1kOhPV72G0IXCSWGZ6c2DeonPPHVu2NeG2Iw3DHcMTjsG663fN+ yj5dykA2lRHCZUKRs8WpqV28ewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPq2cfJf TZad/Nn/3qSdkYhEUzZaMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzYHwti5Xnddm8eWeQ91LOPD2vowqDk0/ypVXErqMKdjkup++1bgYgJO0xdGi cA/OQCxkGaAuYYHMuKG9TLtDLPutRyfCc1KqrjARUmsmykp/HDjiRXkqVROGFzh+ 8hNrRSLERCGECDUYfa6vlgS/gO/XxtBZ574jjv6u8oXxVOAxiHav0gJKfF1HBkli oaFFIjlAROZuNpGaWi6Jn3RBq9FfFo6QNV6UKE1DO85Aa6i9+04frObTO6VLgAFQ RrTIS+1w2ihxbamC+psls7ywNU8df49E3JkvvZ76iWYll7XZ9vNodbIuTl13QVor f2Cfmr6Xst2GJjR7lVRLUdnuww== -----END CERTIFICATE-----Generated at Thu May 21 11:03:35 2026 by rpki-client