$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json) Hash identifier: bqkAuI9TEHDzctm6pfZfNo2HVWT4pypw+tH6DoIYyyA= Subject key identifier: CC:F0:6E:D4:52:52:49:62:6A:58:3F:65:EC:BD:BF:D2:9F:64:EB:67 Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft Manifest number: 0211 Signing time: Thu 21 May 2026 03:02:03 +0000 Manifest this update: Thu 21 May 2026 03:02:03 +0000 Manifest next update: Thu 28 May 2026 03:02:03 +0000 Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: kFcjhU+oVtpv6J+F+INFtgFMS8Q7uCdBpg5QR4Vlel8=) 2: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: kQlooTOYF7DNmDZKuzweY7EEd5/y9UZLGCRSSGQFlGE=) 3: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: G4c9qIHjh7jRuzT8uRtPVyKbehGwTJD3pzh2RMSA5FQ=) 4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: /Ca02zsxpAL8gcjil39VFFafzNLGZS+o8ZdBBpzgYJE=) 5: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: +ktnd6zho24yZwUVIDb8JpM0wNDX8OLmDRgr8JefA9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C74B5, serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Validity Not Before: May 21 03:02:03 2026 GMT Not After : May 28 03:02:03 2026 GMT Subject: CN=6a0e75ab-41ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:88:53:a6:a7:4d:a5:db:f6:41:e7:26:22:46: 0b:ce:a2:41:b7:b9:21:b6:98:52:46:25:30:8f:85: 6f:c8:43:5a:73:51:cd:d1:bb:be:fb:c3:c8:98:54: 74:b1:72:2c:cf:f3:90:97:67:69:c0:48:85:1e:a6: 2a:c3:f5:05:a5:5c:12:cb:e5:58:fb:6d:c5:a5:2e: b4:18:24:07:ca:a4:70:9c:b4:61:04:eb:4b:48:71: c0:0f:33:d3:79:10:01:e8:14:77:08:3b:28:5e:a6: 01:e7:c7:e3:dc:37:22:1e:dc:ea:f5:a7:82:a2:85: 05:0b:2f:d7:03:14:f4:d2:11:1d:18:23:7c:c6:15: 59:e2:b3:eb:67:0d:88:67:de:dd:df:f4:5b:21:9c: 77:22:b7:a5:28:97:b4:2f:64:49:32:48:5a:c8:35: 66:16:40:4c:0c:e2:44:f0:e5:40:f7:84:c1:f1:be: 73:04:19:10:db:27:a0:79:31:a4:e3:be:ec:4f:dd: 64:ee:b8:30:c0:fa:93:46:59:24:bf:ec:51:05:e3: 1f:08:fb:10:ca:d8:e6:15:fe:71:48:48:ce:7e:bf: ce:c7:7c:51:99:85:05:47:e1:0c:72:64:85:58:2b: 74:76:e8:cc:21:fa:37:5d:50:45:71:8b:45:40:2d: f7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F0:6E:D4:52:52:49:62:6A:58:3F:65:EC:BD:BF:D2:9F:64:EB:67 X509v3 Authority Key Identifier: keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:5e:da:c3:12:5a:85:5d:c1:a4:5d:a6:75:88:58:04:75:29: fe:9e:16:f5:ef:53:f1:e2:38:38:4e:c3:89:66:c4:b0:ba:3e: c7:12:1c:76:21:a4:dc:40:bc:ab:c6:c1:35:77:c5:89:bd:df: 59:f0:46:5b:85:52:26:97:5f:3f:b7:4a:eb:65:1d:fb:1b:36: 8f:5f:b4:6a:30:b4:bb:4a:ff:47:31:e2:51:a5:12:64:b0:13: 44:95:5b:fe:35:20:ca:73:18:63:25:fa:33:ad:2d:75:00:c8: b6:b0:6e:37:00:78:b0:4a:b5:1b:48:e6:dc:b7:36:04:4b:c8: 15:84:6c:cc:14:25:92:c4:c0:b6:90:99:04:47:72:e0:2f:30: d4:3a:c0:62:3a:d2:9f:f1:bc:54:b0:22:26:55:d0:fb:ae:64: c8:14:92:79:91:e7:ca:fb:79:d1:51:32:c4:c0:7f:4e:45:66: 1f:57:92:a8:4d:af:20:2e:1f:e2:76:ad:2d:d3:a3:f0:0c:5b: ca:f3:de:8d:c6:e7:b3:69:86:00:3c:54:de:0f:fc:2c:27:04: b6:1d:e7:68:a1:fc:55:b9:6a:9c:f7:72:2c:8a:57:5c:05:c0: 62:94:5e:c3:02:c9:7f:c4:1a:27:bc:7f:e7:06:cb:44:ee:49: 2c:55:81:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0QjUxMTAvBgNVBAUTKEUwRUNBN0JDNUIyNUEwQ0EzNzREOUE4M0NDNENGOTBE RDZDRjIyMDkwHhcNMjYwNTIxMDMwMjAzWhcNMjYwNTI4MDMwMjAzWjAYMRYwFAYD VQQDEw02YTBlNzVhYi00MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14hTpqdNpdv2QecmIkYLzqJBt7khtphSRiUwj4VvyENac1HN0bu++8PImFR0 sXIsz/OQl2dpwEiFHqYqw/UFpVwSy+VY+23FpS60GCQHyqRwnLRhBOtLSHHADzPT eRAB6BR3CDsoXqYB58fj3DciHtzq9aeCooUFCy/XAxT00hEdGCN8xhVZ4rPrZw2I Z97d3/RbIZx3IrelKJe0L2RJMkhayDVmFkBMDOJE8OVA94TB8b5zBBkQ2yegeTGk 477sT91k7rgwwPqTRlkkv+xRBeMfCPsQytjmFf5xSEjOfr/Ox3xRmYUFR+EMcmSF WCt0dujMIfo3XVBFcYtFQC33swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMzwbtRS Uklialg/Zey9v9KfZOtnMB8GA1UdIwQYMBaAFODsp7xbJaDKN02ag8xM+Q3WzyIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzRCNS85ODA0MzU2RTM0 QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9NbzNUWnFEekV6NURkYlBJ Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPeW52RnNsb01vM1RacUR6RXo1RGRiUElnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzRCNS85ODA0MzU2RTM0QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9N bzNUWnFEekV6NURkYlBJZ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWF7awxJahV3BpF2mdYhYBHUp/p4W9e9T8eI4OE7DiWbEsLo+xxIcdiGk3EC8 q8bBNXfFib3fWfBGW4VSJpdfP7dK62Ud+xs2j1+0ajC0u0r/RzHiUaUSZLATRJVb /jUgynMYYyX6M60tdQDItrBuNwB4sEq1G0jm3Lc2BEvIFYRszBQlksTAtpCZBEdy 4C8w1DrAYjrSn/G8VLAiJlXQ+65kyBSSeZHnyvt50VEyxMB/TkVmH1eSqE2vIC4f 4natLdOj8AxbyvPejcbns2mGADxU3g/8LCcEth3naKH8VblqnPdyLIpXXAXAYpRe wwLJf8QaJ7x/5wbLRO5JLFWBqg== -----END CERTIFICATE-----Generated at Thu May 21 14:44:01 2026 by rpki-client