$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: nRVmXy/gzW7doW99iEst59Mqe/xAA+Y1UEBRv5VxABo= Subject key identifier: 8E:60:88:0A:89:CB:B9:73:DF:87:EC:37:02:31:D9:B3:D6:A2:8E:75 Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 01E3 Signing time: Thu 21 May 2026 03:31:08 +0000 Manifest this update: Thu 21 May 2026 03:31:07 +0000 Manifest next update: Thu 28 May 2026 03:31:07 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: wVym6jntSVwFLra41gr3wAqU5CNoWcUeL1LzEupqjwY=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: vSlu+TQyxpav2ADnDaaL7eQcjqlvG5DFjhy5XTFprbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: May 21 03:31:07 2026 GMT Not After : May 28 03:31:07 2026 GMT Subject: CN=6a0e7c7c-7e51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:27:fc:40:e2:6d:b1:bc:4a:d1:cc:2f:83:86: c3:c3:37:f4:71:45:fb:cc:61:02:b6:ba:41:4a:47: 77:8b:6c:a6:6c:bc:cc:83:37:af:65:84:3c:b7:3c: 01:41:ce:dc:f2:9e:35:ff:9c:3a:9a:25:87:d8:f5: cc:9a:23:9c:5e:ff:4c:ea:da:49:cb:83:8c:b0:3e: 95:5b:78:05:64:e4:d5:42:47:6a:65:25:b8:4e:e9: 56:ff:5d:39:37:7e:21:92:ba:79:9a:22:df:8b:66: dd:6f:d7:bf:0c:83:6e:b5:eb:f2:d6:c2:e8:ae:11: 2a:e4:2c:b8:94:2d:33:c8:b2:36:0e:7b:91:0c:5c: df:05:2a:92:3c:32:b3:55:63:03:7d:61:23:f8:b2: bc:52:44:4a:d8:b3:99:52:18:eb:d0:b6:c3:59:51: 10:bd:8b:bc:1b:61:70:fd:d4:32:46:7e:2b:75:d3: e6:13:46:d9:d1:3a:79:d0:69:b4:8e:f4:dc:d5:94: c6:c8:64:05:aa:ee:17:2e:b2:e9:6c:a0:67:32:9d: 60:2c:11:56:87:6d:21:56:cc:76:04:99:6c:2f:c6: 49:31:1d:c4:23:f0:ae:dc:75:f7:a5:49:93:c5:ec: 16:86:5c:a3:86:30:ae:0d:f4:73:fb:e9:c3:ce:55: fa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:60:88:0A:89:CB:B9:73:DF:87:EC:37:02:31:D9:B3:D6:A2:8E:75 X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a0:ca:a2:5e:ec:b1:92:34:8b:5d:67:31:a8:aa:da:8c:dd: 31:d5:0b:13:97:67:cf:e3:fb:47:75:75:c8:cf:bc:dd:de:f0: 47:7b:7b:ce:97:31:47:f3:bc:39:36:0c:02:c8:90:8a:a9:81: 21:49:60:65:ee:d2:92:b2:f0:8c:eb:dc:52:7b:79:a9:2f:40: 30:b9:cd:2e:c5:d4:85:36:8d:7c:b8:49:4b:52:ae:3b:8d:97: 86:88:5c:86:a2:b7:1a:f6:7c:e4:4b:a3:3a:dc:87:42:93:f6: b3:4c:ed:95:f1:3a:29:4d:74:6d:a6:76:56:34:10:42:0d:23: 89:36:8e:d3:47:70:65:74:7c:b2:3f:11:6f:d6:73:e5:40:e3: 9f:07:76:f0:fc:e1:2f:7a:f5:81:4a:77:f3:d7:82:37:18:dc: e6:40:9a:f7:e4:16:e7:80:07:10:20:56:a9:65:fb:b3:ea:5b: 3e:7d:aa:54:27:c5:16:39:3a:40:8e:4a:21:25:2f:08:d4:66: 6d:f9:63:b6:3b:7e:04:ec:5c:55:87:10:08:46:1a:d2:dc:ae: 00:9a:81:0c:f2:12:6d:23:01:4f:ae:e4:ad:a3:61:37:3d:22: db:7f:6a:60:1f:ce:7a:81:79:42:17:f2:1c:8d:73:d3:d2:59: a2:81:df:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjYwNTIxMDMzMTA3WhcNMjYwNTI4MDMzMTA3WjAYMRYwFAYD VQQDEw02YTBlN2M3Yy03ZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSf8QOJtsbxK0cwvg4bDwzf0cUX7zGECtrpBSkd3i2ymbLzMgzevZYQ8tzwB Qc7c8p41/5w6miWH2PXMmiOcXv9M6tpJy4OMsD6VW3gFZOTVQkdqZSW4TulW/105 N34hkrp5miLfi2bdb9e/DINutevy1sLorhEq5Cy4lC0zyLI2DnuRDFzfBSqSPDKz VWMDfWEj+LK8UkRK2LOZUhjr0LbDWVEQvYu8G2Fw/dQyRn4rddPmE0bZ0Tp50Gm0 jvTc1ZTGyGQFqu4XLrLpbKBnMp1gLBFWh20hVsx2BJlsL8ZJMR3EI/Cu3HX3pUmT xewWhlyjhjCuDfRz++nDzlX6fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI5giAqJ y7lz34fsNwIx2bPWoo51MB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN6DKol7ssZI0i11nMaiq2ozdMdULE5dnz+P7R3V1yM+83d7wR3t7zpcxR/O8 OTYMAsiQiqmBIUlgZe7SkrLwjOvcUnt5qS9AMLnNLsXUhTaNfLhJS1KuO42Xhohc hqK3GvZ85EujOtyHQpP2s0ztlfE6KU10baZ2VjQQQg0jiTaO00dwZXR8sj8Rb9Zz 5UDjnwd28PzhL3r1gUp389eCNxjc5kCa9+QW54AHECBWqWX7s+pbPn2qVCfFFjk6 QI5KISUvCNRmbfljtjt+BOxcVYcQCEYa0tyuAJqBDPISbSMBT67kraNhNz0i239q YB/OeoF5QhfyHI1z09JZooHfFg== -----END CERTIFICATE-----Generated at Thu May 21 11:04:51 2026 by rpki-client