$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: RY3uQXHl2tcXWe7qgRDvtaIr/E44CqrjPdliAxPYTzE= Subject key identifier: 16:02:C2:8E:44:C0:DD:14:60:5B:29:07:1D:18:46:15:66:C7:A8:DD Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0CE5 Signing time: Wed 20 May 2026 18:22:33 +0000 Manifest this update: Wed 20 May 2026 18:22:32 +0000 Manifest next update: Wed 27 May 2026 18:22:32 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: qk0W36mk/xxAB6WvcXdFTJhBH5lgAxbUn5S+VtHhs1M=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: PLVzOLnz/S3yAyLEYTQXk6jeemE0Coa5Zb4ZLWaW+pE=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: OtV6b8befwkPsOuYarHGh5SRZOjkzLz1qANk490i9b8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3321 (0xcf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: May 20 18:22:32 2026 GMT Not After : May 27 18:22:32 2026 GMT Subject: CN=6a0dfbe9-cec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f4:8d:7e:4a:74:2a:47:51:87:b6:3a:da:75: ba:40:5b:e8:d6:a3:d8:1c:7c:f3:a7:cd:7a:4a:7c: cf:d7:ef:e7:34:7f:c1:c7:f1:b7:87:4a:7a:bf:fa: ab:22:43:dc:99:b9:22:38:71:c5:b1:61:bf:54:ea: ab:cd:92:fa:04:9a:b3:78:cc:55:e2:b2:bd:61:55: bf:ac:b5:eb:b9:30:72:cd:02:95:bb:67:80:1f:5f: 2e:d1:b0:54:74:ff:d8:0d:6a:b5:3d:a5:34:35:7d: 1e:1f:a5:d9:d9:78:42:9b:dc:67:81:6f:67:0b:4d: 5f:02:72:e0:7c:ce:91:6e:1c:79:f7:c5:d9:c4:31: a3:fc:1b:54:24:25:0c:0d:56:3b:b0:f2:86:d2:2a: ce:4c:16:5b:b8:61:d1:ea:87:e4:98:f2:9e:61:eb: 06:92:f5:89:4e:21:c6:3c:bc:7a:53:ba:23:45:9d: 08:2a:01:63:33:64:58:3b:27:8a:1c:cd:e3:33:64: 2b:7e:34:41:1b:30:a4:ec:80:b1:61:d8:51:01:8c: c5:30:6d:f1:cc:0e:33:be:f8:75:bc:1e:26:60:8b: 45:29:83:93:c8:1e:fa:14:57:ce:ad:91:67:26:e6: b1:60:52:ed:b1:98:6d:05:bc:5c:45:57:2e:83:73: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:02:C2:8E:44:C0:DD:14:60:5B:29:07:1D:18:46:15:66:C7:A8:DD X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:37:b0:1b:78:6a:19:1b:11:e5:87:c9:53:59:98:7e:a8:a4: ed:01:23:92:2a:19:b4:cf:af:5f:ca:ef:77:a4:ba:2d:19:f0: ec:66:2d:12:87:6a:04:76:4d:f7:39:7c:98:db:08:4d:fd:4c: ee:d8:1b:e1:72:fb:77:be:91:67:af:60:cc:ce:f8:cd:ae:33: d6:c4:ee:47:8d:81:59:81:ea:10:3e:93:1f:26:3c:87:fb:aa: 37:79:4c:af:a3:c6:f4:9d:b9:68:e4:28:e0:eb:ee:ee:3c:48: 28:ee:48:04:81:e6:95:56:bb:60:2a:fc:2b:f4:15:1f:66:8b: b8:d0:35:0c:29:f5:8c:8a:ec:97:6a:5b:1c:22:9c:37:b7:b9: bc:37:92:a8:09:22:99:94:ac:5d:24:e5:07:7b:4b:4f:e3:6a: 28:58:a1:79:77:60:62:32:1b:da:62:03:f2:ac:50:64:96:22: 04:ef:a6:66:86:45:ac:a9:44:43:51:2e:55:5a:d1:0e:7d:8b: 01:39:a4:86:10:b7:79:15:c3:26:32:e8:11:1d:4e:12:08:5e: e0:33:0a:bf:12:a1:78:fc:52:c1:5e:94:fc:c6:68:7d:58:47: 66:ca:79:39:9e:00:c5:76:c6:d6:d2:8f:67:33:93:bf:fe:6c: d7:e7:60:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjYwNTIwMTgyMjMyWhcNMjYwNTI3MTgyMjMyWjAYMRYwFAYD VQQDEw02YTBkZmJlOS1jZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvSNfkp0KkdRh7Y62nW6QFvo1qPYHHzzp816SnzP1+/nNH/Bx/G3h0p6v/qr IkPcmbkiOHHFsWG/VOqrzZL6BJqzeMxV4rK9YVW/rLXruTByzQKVu2eAH18u0bBU dP/YDWq1PaU0NX0eH6XZ2XhCm9xngW9nC01fAnLgfM6Rbhx598XZxDGj/BtUJCUM DVY7sPKG0irOTBZbuGHR6ofkmPKeYesGkvWJTiHGPLx6U7ojRZ0IKgFjM2RYOyeK HM3jM2QrfjRBGzCk7ICxYdhRAYzFMG3xzA4zvvh1vB4mYItFKYOTyB76FFfOrZFn JuaxYFLtsZhtBbxcRVcug3Ml+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBYCwo5E wN0UYFspBx0YRhVmx6jdMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsDewG3hqGRsR5YfJU1mYfqik7QEjkioZtM+vX8rvd6S6LRnw7GYtEodqBHZN 9zl8mNsITf1M7tgb4XL7d76RZ69gzM74za4z1sTuR42BWYHqED6THyY8h/uqN3lM r6PG9J25aOQo4Ovu7jxIKO5IBIHmlVa7YCr8K/QVH2aLuNA1DCn1jIrsl2pbHCKc N7e5vDeSqAkimZSsXSTlB3tLT+NqKFiheXdgYjIb2mID8qxQZJYiBO+mZoZFrKlE Q1EuVVrRDn2LATmkhhC3eRXDJjLoER1OEghe4DMKvxKhePxSwV6U/MZofVhHZsp5 OZ4AxXbG1tKPZzOTv/5s1+dgjg== -----END CERTIFICATE-----Generated at Thu May 21 17:46:09 2026 by rpki-client