$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: xuL12WEbDzI6qnQ527FVlA1+UE/DyDjySF+rpfp6jfw= Subject key identifier: AC:24:17:2F:CA:34:0D:FE:E7:02:1D:BF:D2:76:F1:E5:88:FF:78:E3 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 0246 Signing time: Fri 15 May 2026 02:29:57 +0000 Manifest this update: Fri 15 May 2026 02:29:56 +0000 Manifest next update: Fri 22 May 2026 02:29:56 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: eZMf22IMK9K70SV36w+VTcXJFKPn20vp08lYLT02d6U=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: oP7yfPUopKTY379R1+NbnqkO2F627ZT0pvcHFpcrXM4=) 3: C9D1E34E3E6511F18329E1A9CD833773.roa (hash: fxREVBfLQ0OUrc4Pzc878YVu0ctHMKvERrQEBHifNvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 02:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: May 15 02:29:56 2026 GMT Not After : May 22 02:29:56 2026 GMT Subject: CN=6a068525-d352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:32:52:b1:82:cd:86:2d:c7:91:79:ff:73:9e: 91:78:b5:aa:e8:b2:48:f7:28:46:7f:a6:8f:f0:76: 80:da:36:2b:a0:b1:c7:3c:e6:f3:28:d7:ad:f3:b5: 1f:2f:f0:d5:f0:87:db:d2:86:09:65:40:0f:6f:2a: 76:f6:b9:62:59:1d:e2:da:e6:85:5a:91:e9:c9:64: 33:ff:e1:88:65:77:6c:87:60:f3:6e:8e:94:46:0a: af:38:73:9c:e1:f2:aa:02:82:02:10:ad:a0:c2:0a: d6:8e:85:45:a6:aa:f8:45:a1:bf:37:a7:a9:12:6e: 19:bf:0b:3d:b1:fb:f5:de:15:d0:37:10:a6:d4:8e: aa:d3:f7:2a:1f:67:b7:03:68:04:5c:6c:66:26:e0: 4e:0b:62:98:ed:7a:32:5f:0e:94:3f:12:16:0e:50: f8:83:c3:61:3f:80:0c:8c:db:90:a9:0b:7d:cf:48: b2:b0:de:42:e7:1a:28:10:d7:1e:13:5c:fd:a5:8c: 25:3e:c1:4c:23:f3:42:17:5d:20:b7:19:cf:2c:97: 87:f4:6f:ce:ca:00:61:f7:e4:95:ae:fa:28:9d:42: ae:3f:d7:fc:31:45:6a:11:39:30:f2:1e:0f:3f:68: ee:e9:a4:c7:6b:c9:2d:2e:b0:5a:94:bf:fa:fd:c0: 1f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:24:17:2F:CA:34:0D:FE:E7:02:1D:BF:D2:76:F1:E5:88:FF:78:E3 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:e4:7e:ba:5f:03:e1:4c:c4:c3:36:6a:01:ee:60:4e:c7:af: 8b:d2:77:0d:6f:51:82:85:60:c5:11:64:e7:61:52:9b:f8:7b: 02:dc:cf:47:2f:b6:6e:d5:81:69:a2:2b:ae:6d:e7:3d:2f:0f: fc:f2:96:c4:7e:0b:bc:69:91:80:39:c2:a0:52:48:17:f4:0c: 6e:c4:a8:b9:80:11:09:e5:19:a5:3c:68:d8:8f:df:7c:0c:8f: e6:5f:2e:6a:46:63:de:23:32:8d:58:3b:3b:84:b2:72:f8:94: 40:ea:71:84:d4:36:e5:76:46:96:ca:f5:91:81:e4:c0:9d:c0: c4:b2:e9:72:5f:8f:96:1c:e4:3e:31:99:95:a1:22:df:ba:b1: b7:37:32:55:31:73:7c:5d:9f:05:54:50:a2:f1:03:e3:c9:84: 44:d2:07:1a:e8:29:7f:d7:13:27:aa:f6:23:73:38:ee:d3:d7: 28:0d:75:1a:d9:af:b9:8d:54:23:1e:93:d3:da:29:53:c2:a6: a0:3e:99:29:94:01:09:6b:bd:41:b5:8b:be:46:6b:ca:25:a3: 47:74:18:e2:26:d1:af:5a:9b:ec:fa:7b:f7:27:fa:db:bb:a6: e5:96:5e:0f:b6:3f:3c:4e:79:6f:12:b4:4e:28:ee:72:d9:bb: df:73:9f:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjYwNTE1MDIyOTU2WhcNMjYwNTIyMDIyOTU2WjAYMRYwFAYD VQQDEw02YTA2ODUyNS1kMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8TJSsYLNhi3HkXn/c56ReLWq6LJI9yhGf6aP8HaA2jYroLHHPObzKNet87Uf L/DV8Ifb0oYJZUAPbyp29rliWR3i2uaFWpHpyWQz/+GIZXdsh2Dzbo6URgqvOHOc 4fKqAoICEK2gwgrWjoVFpqr4RaG/N6epEm4Zvws9sfv13hXQNxCm1I6q0/cqH2e3 A2gEXGxmJuBOC2KY7XoyXw6UPxIWDlD4g8NhP4AMjNuQqQt9z0iysN5C5xooENce E1z9pYwlPsFMI/NCF10gtxnPLJeH9G/OygBh9+SVrvoonUKuP9f8MUVqETkw8h4P P2ju6aTHa8ktLrBalL/6/cAfwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKwkFy/K NA3+5wIdv9J28eWI/3jjMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANOR+ul8D4UzEwzZqAe5gTsevi9J3DW9RgoVgxRFk52FSm/h7AtzPRy+2btWB aaIrrm3nPS8P/PKWxH4LvGmRgDnCoFJIF/QMbsSouYARCeUZpTxo2I/ffAyP5l8u akZj3iMyjVg7O4SycviUQOpxhNQ25XZGlsr1kYHkwJ3AxLLpcl+PlhzkPjGZlaEi 37qxtzcyVTFzfF2fBVRQovED48mERNIHGugpf9cTJ6r2I3M47tPXKA11GtmvuY1U Ix6T09opU8KmoD6ZKZQBCWu9QbWLvkZryiWjR3QY4ibRr1qb7Pp79yf627um5ZZe D7Y/PE55bxK0Tijuctm733Ofng== -----END CERTIFICATE-----Generated at Sat May 16 05:09:58 2026 by rpki-client