$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft File: ddHHozMD2o3GQirjUXA_KlKN874.mft (raw, json) Hash identifier: G2FmUam6nncJCz7cAPyp5/nQrG2g56le3f73xY8Sbhg= Subject key identifier: DF:E9:4C:AE:CA:06:67:45:F7:71:8B:73:99:93:43:DA:4E:FA:6B:C5 Authority key identifier: 75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE Certificate issuer: /CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft Manifest number: 01DF Signing time: Thu 21 May 2026 03:37:27 +0000 Manifest this update: Thu 21 May 2026 03:37:27 +0000 Manifest next update: Thu 28 May 2026 03:37:27 +0000 Files and hashes: 1: ddHHozMD2o3GQirjUXA_KlKN874.crl (hash: Cj3slieb0s1mB2WN0HeMIUCx97JDEC2y5WJ7JMPeN8I=) 2: 3E6CF84C883311EE8822D90BC4F9AE02.roa (hash: 21MbeL2c4YLwBExJY7PKPByiCkIBI9z7opJchOT4zUE=) 3: AC0E54A8C8E311EF98C2B365C4F9AE02.roa (hash: evBEm2b+wO5EWpkoyV0JMMubzQxUV9WEBqLzlOLXTBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5832, serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Validity Not Before: May 21 03:37:27 2026 GMT Not After : May 28 03:37:27 2026 GMT Subject: CN=6a0e7df7-691f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:6c:5f:6c:1d:b3:cd:35:8c:de:3a:4c:b6: 95:71:8a:fa:9a:0d:f4:f0:e7:bd:4a:22:09:ae:f8: c7:08:0b:87:d5:68:22:59:be:b1:bd:81:67:34:73: 50:e6:97:c6:88:87:1a:01:fe:cb:b9:65:57:ae:9d: 31:7b:d3:9d:d3:cc:dc:cb:5e:86:46:ed:53:78:41: 68:61:2f:a8:b1:9a:c8:1d:3b:94:db:c4:66:a1:35: 27:bb:48:da:ac:3b:49:91:0c:87:f0:ea:81:bf:0d: 3e:89:68:40:d8:96:ad:2c:7c:5e:3b:49:ee:4b:0b: 3a:d5:f7:82:89:07:84:ab:a4:f2:54:a8:72:d2:ab: 30:69:93:e1:61:57:df:07:10:1a:8f:7c:c1:a2:0e: 48:36:93:fe:09:6e:44:ce:a3:bc:34:8c:80:13:d2: 33:ef:01:e7:80:ba:ed:5d:4a:bf:e4:78:d1:69:50: 07:ff:28:0e:4d:f6:ac:e0:a2:eb:5c:51:e3:1e:87: de:16:14:57:2c:9b:4b:20:b0:c3:e1:2b:a1:f7:54: 1a:4a:ca:5b:67:56:34:26:b7:8e:eb:61:9c:2b:39: 6a:69:45:c0:81:be:70:c5:df:9c:c4:11:11:d9:66: 98:35:cc:2c:c5:f8:3e:c8:c0:0f:2b:94:d4:2e:bc: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E9:4C:AE:CA:06:67:45:F7:71:8B:73:99:93:43:DA:4E:FA:6B:C5 X509v3 Authority Key Identifier: keyid:75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e6:96:97:ca:60:8e:f9:4f:25:0a:97:98:be:47:aa:9f:c2: 80:d6:75:79:16:86:65:fa:c6:3b:3c:f1:d4:0a:65:b4:e2:e0: 32:b4:f8:74:11:fb:1c:2f:06:67:d3:80:af:aa:d7:46:5e:11: b7:69:f9:01:b6:9e:df:f9:42:7f:4c:1d:03:d9:34:ac:16:17: a1:47:fc:77:b0:60:15:c1:81:b3:3f:59:c7:1d:7c:5a:f3:5a: 24:b6:6d:bb:df:08:a8:e0:bf:7c:85:08:da:0c:8e:a3:24:65: d3:93:70:ed:d6:7a:ff:e6:df:5d:9f:37:44:8c:99:cd:fb:fd: a4:c1:2c:ac:84:b5:27:36:ec:89:b3:93:b9:09:fb:d9:45:f7: 18:5c:6d:71:2b:6a:8d:c0:e9:a8:52:eb:dc:b3:1c:3a:84:a7: 14:60:2d:e5:03:be:39:b5:55:d6:76:6f:3e:65:36:b4:4a:04: c3:b6:0a:60:71:ae:4f:ec:19:22:24:3f:af:b8:c0:cd:75:19: 5e:6c:c5:b7:19:00:35:1c:5e:0a:15:b4:ae:e5:3c:e2:fb:44: 1f:3e:90:bd:c5:31:8a:ec:7f:ba:6d:31:6f:3f:09:c8:74:f4: 9e:1c:52:5e:4a:21:ab:87:bb:ff:59:0b:0a:54:5b:80:b0:76: bc:36:b0:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU4MzIxMTAvBgNVBAUTKDc1RDFDN0EzMzMwM0RBOERDNjQyMkFFMzUxNzAzRjJB NTI4REYzQkUwHhcNMjYwNTIxMDMzNzI3WhcNMjYwNTI4MDMzNzI3WjAYMRYwFAYD VQQDEw02YTBlN2RmNy02OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup9sX2wds801jN46TLaVcYr6mg308Oe9SiIJrvjHCAuH1WgiWb6xvYFnNHNQ 5pfGiIcaAf7LuWVXrp0xe9Od08zcy16GRu1TeEFoYS+osZrIHTuU28RmoTUnu0ja rDtJkQyH8OqBvw0+iWhA2JatLHxeO0nuSws61feCiQeEq6TyVKhy0qswaZPhYVff BxAaj3zBog5INpP+CW5EzqO8NIyAE9Iz7wHngLrtXUq/5HjRaVAH/ygOTfas4KLr XFHjHofeFhRXLJtLILDD4Suh91QaSspbZ1Y0JreO62GcKzlqaUXAgb5wxd+cxBER 2WaYNcwsxfg+yMAPK5TULrz9zwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN/pTK7K BmdF93GLc5mTQ9pO+mvFMB8GA1UdIwQYMBaAFHXRx6MzA9qNxkIq41FwPypSjfO+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTgzMi82RDYwRjlEODg3 OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi9kZEhIb3pNRDJvM0dRaXJqVVhBX0tsS044 NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkSEhvek1EMm8zR1FpcmpVWEFfS2xLTjg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTgzMi82RDYwRjlEODg3OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi9kZEhIb3pNRDJv M0dRaXJqVVhBX0tsS044NzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQuaWl8pgjvlPJQqXmL5Hqp/CgNZ1eRaGZfrGOzzx1ApltOLgMrT4dBH7HC8G Z9OAr6rXRl4Rt2n5Abae3/lCf0wdA9k0rBYXoUf8d7BgFcGBsz9Zxx18WvNaJLZt u98IqOC/fIUI2gyOoyRl05Nw7dZ6/+bfXZ83RIyZzfv9pMEsrIS1JzbsibOTuQn7 2UX3GFxtcStqjcDpqFLr3LMcOoSnFGAt5QO+ObVV1nZvPmU2tEoEw7YKYHGuT+wZ IiQ/r7jAzXUZXmzFtxkANRxeChW0ruU84vtEHz6QvcUxiux/um0xbz8JyHT0nhxS Xkohq4e7/1kLClRbgLB2vDawlg== -----END CERTIFICATE-----Generated at Thu May 21 10:15:38 2026 by rpki-client