$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: L7JthLTDGWDWJDFHOZ1C2lETv7tsT85v65f+AYYSU4Y= Subject key identifier: 5A:0F:00:E1:25:ED:C5:19:4D:A0:38:F3:DB:B8:D6:46:0C:08:A6:71 Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 0293 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 0261 Signing time: Thu 21 May 2026 02:42:21 +0000 Manifest this update: Thu 21 May 2026 02:42:21 +0000 Manifest next update: Thu 28 May 2026 02:42:21 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: rkh0E/mKdWUIOSax4XStdWWXA0utr8OqGNufYPVdIhU=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: j7L99bx7Ey41ZLd+2+aMZ4wqjEnPklq5VL7HIrKdyHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2, serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: May 21 02:42:21 2026 GMT Not After : May 28 02:42:21 2026 GMT Subject: CN=6a0e710d-28ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:64:c9:13:62:3f:61:81:a8:7a:80:7c:8f:26: 57:b0:45:50:13:00:7d:ab:4c:4a:64:94:07:86:38: 65:c2:a6:f0:1e:c0:e5:fa:5d:fc:b1:f5:07:60:9c: 01:90:4f:cf:d9:ea:a2:f7:3f:c6:b2:1a:ad:1c:25: 92:0e:f6:89:86:74:67:70:a7:27:9b:d9:84:b7:36: 8a:45:29:65:6f:c6:c3:47:16:00:17:14:2c:f2:3a: b6:be:67:0b:7c:2c:92:5e:ce:af:80:ed:19:47:c3: 89:57:ed:05:66:9d:82:dd:06:fd:e9:45:0f:0a:fe: 04:75:0d:b2:17:0b:02:47:4e:70:34:de:79:e8:6b: ac:8b:59:dd:ed:2d:56:95:85:ea:c9:0c:40:d4:c7: d5:77:51:87:93:56:d8:de:fa:97:4c:e6:81:80:61: 80:90:bc:92:9a:8a:01:94:97:52:47:ec:23:83:da: a5:ee:16:e5:8d:e0:f9:2b:36:ad:26:37:99:be:9d: d8:d2:8f:57:72:bb:a2:37:ae:58:18:b8:e2:9f:26: b5:2e:8a:5d:65:93:4c:3e:15:2f:7b:4f:ce:4b:67: cb:7f:a3:2d:d4:21:13:fa:55:0f:83:8d:1b:8d:af: d9:2c:9f:fc:8f:45:68:6a:4d:42:16:75:58:42:18: 9c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0F:00:E1:25:ED:C5:19:4D:A0:38:F3:DB:B8:D6:46:0C:08:A6:71 X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ea:b5:77:6f:e1:61:b3:07:59:ca:81:11:c1:b7:1a:c3:bb: f6:3d:3f:73:e3:bc:ea:25:8d:2e:15:35:f0:52:a3:f1:e5:bd: 01:12:2f:16:c3:09:46:1a:e6:ab:53:47:89:a4:6f:5b:ea:a1: 29:dc:15:2f:b2:ec:2d:e6:6f:ab:b0:38:50:d9:af:e3:60:50: 09:6e:f2:44:f5:a6:9e:a8:7c:6c:ab:fb:b9:2f:b4:aa:1a:b1: 8d:08:4f:bc:d8:b8:42:63:81:67:df:ec:a7:71:36:3f:08:6e: 67:75:df:ef:72:a8:5d:04:06:bd:26:6a:22:f4:dc:a4:42:bd: 05:74:f8:e4:b6:2e:ff:b2:4d:bb:1a:cc:8b:8d:cf:7b:cd:19: 4a:f4:6f:b2:b6:0d:74:f9:fc:4f:2a:1d:c9:6e:d8:c8:04:dd: 02:a0:84:e9:61:d1:dd:86:fc:e9:5d:f3:a4:0a:19:b1:8a:bb: ba:a1:42:fb:31:16:1a:93:42:56:21:a4:fd:94:dd:c1:5e:2e: cf:c6:3c:02:6a:93:cc:14:61:75:97:d7:4c:23:31:fb:d7:ea: 83:a0:e8:ef:76:2e:82:e7:2b:6e:ab:97:a1:61:b3:0f:b8:8f: 08:4a:7c:e4:ae:ee:b4:02:dc:a5:9d:79:3a:4a:cd:6b:17:2d: 48:90:65:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjYwNTIxMDI0MjIxWhcNMjYwNTI4MDI0MjIxWjAYMRYwFAYD VQQDEw02YTBlNzEwZC0yOGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGTJE2I/YYGoeoB8jyZXsEVQEwB9q0xKZJQHhjhlwqbwHsDl+l38sfUHYJwB kE/P2eqi9z/GshqtHCWSDvaJhnRncKcnm9mEtzaKRSllb8bDRxYAFxQs8jq2vmcL fCySXs6vgO0ZR8OJV+0FZp2C3Qb96UUPCv4EdQ2yFwsCR05wNN556Gusi1nd7S1W lYXqyQxA1MfVd1GHk1bY3vqXTOaBgGGAkLySmooBlJdSR+wjg9ql7hbljeD5Kzat JjeZvp3Y0o9XcruiN65YGLjinya1LopdZZNMPhUve0/OS2fLf6Mt1CET+lUPg40b ja/ZLJ/8j0Voak1CFnVYQhicTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFoPAOEl 7cUZTaA489u41kYMCKZxMB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsuq1d2/hYbMHWcqBEcG3GsO79j0/c+O86iWNLhU18FKj8eW9ARIvFsMJRhrm q1NHiaRvW+qhKdwVL7LsLeZvq7A4UNmv42BQCW7yRPWmnqh8bKv7uS+0qhqxjQhP vNi4QmOBZ9/sp3E2PwhuZ3Xf73KoXQQGvSZqIvTcpEK9BXT45LYu/7JNuxrMi43P e80ZSvRvsrYNdPn8TyodyW7YyATdAqCE6WHR3Yb86V3zpAoZsYq7uqFC+zEWGpNC ViGk/ZTdwV4uz8Y8AmqTzBRhdZfXTCMx+9fqg6Do73YugucrbquXoWGzD7iPCEp8 5K7utALcpZ15OkrNaxctSJBlqw== -----END CERTIFICATE-----Generated at Thu May 21 13:24:44 2026 by rpki-client