$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: tf7exLZDHIXtVzzcCSTYgAsTWdyVjN4rLW83VP8Yrgs= Subject key identifier: 0B:11:4B:84:EC:19:BD:26:42:25:EB:C9:9B:FF:00:D4:28:DC:07:D8 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 07EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 07B7 Signing time: Wed 20 May 2026 21:36:18 +0000 Manifest this update: Wed 20 May 2026 21:36:18 +0000 Manifest next update: Wed 27 May 2026 21:36:18 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: lPNddqXrM5xcEVtD275ezjGvlC4hariLTV8VJnAiUy8=) 2: F3BEC03CE13B11F090F650ED6F6F56BC.roa (hash: 73pAfLSC8B0XWc6KcAo6RSi0u4KosXge+3h5CVJGLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: May 20 21:36:18 2026 GMT Not After : May 27 21:36:18 2026 GMT Subject: CN=6a0e2952-fbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e2:d4:9a:5d:61:a1:b8:82:dd:1a:d5:2d:55: 07:e2:9e:f8:87:18:09:2f:72:fa:22:80:60:6d:aa: 89:8a:dd:5f:3d:8c:fb:c4:0f:6a:f0:b0:61:dc:da: bb:7f:35:9b:ff:82:16:87:84:1b:c0:7f:79:60:dd: 14:a4:b7:df:a7:f6:06:32:8b:2b:f3:2f:42:23:16: 1d:2f:c9:f9:e8:94:0b:99:2d:58:09:b2:8e:05:d2: 0a:ce:bf:60:48:13:71:b8:6b:18:df:ec:be:76:29: 88:bc:38:22:52:4f:ed:b6:7f:41:19:6f:45:79:34: 25:11:1d:f0:e1:9a:e2:04:29:76:b3:ec:37:5e:62: c9:f3:54:65:f2:43:93:55:8f:9f:4c:dc:8a:59:09: c8:22:a1:35:f6:f6:da:9a:c5:91:ac:4a:b6:ea:74: 3b:d6:ed:59:eb:06:d5:cd:d3:75:7c:09:87:c4:9c: 8e:66:31:f1:12:98:6f:20:54:58:d1:a6:20:82:37: 20:20:3b:e2:9d:2b:d5:33:b5:36:4f:28:d7:0b:7f: 4a:0e:43:a1:dd:e3:d0:6e:2e:09:a0:c3:c1:c0:db: 00:56:31:6e:65:5f:0b:42:66:2c:92:28:10:70:2a: 7d:4a:53:7d:8c:7f:58:a0:9f:d6:ea:f5:db:2a:3a: 6c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:11:4B:84:EC:19:BD:26:42:25:EB:C9:9B:FF:00:D4:28:DC:07:D8 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:fa:62:81:62:e8:f0:18:94:fb:65:75:71:93:71:89:70:b7: 18:b7:12:ef:39:83:27:1d:b1:76:36:22:43:f2:b9:19:bd:0e: 48:c8:a4:70:3d:22:de:4a:79:37:5c:8f:bd:e9:01:e5:27:0e: fb:d1:04:d9:df:91:6f:8a:46:9b:4b:48:09:56:2d:ce:36:ae: 05:9e:02:ec:fa:19:8a:ca:de:f7:ae:27:59:79:24:73:b9:92: a7:12:57:20:62:46:26:45:0e:cb:d3:6f:4d:e5:42:1f:72:c3: 63:df:ac:c5:b6:0f:b6:7a:20:51:e0:2b:2a:d3:19:ec:62:f8: b5:24:43:cf:be:7b:51:e1:1b:fa:31:0b:bd:da:e8:89:82:cc: 50:48:64:e5:b9:fa:fb:3b:00:8e:58:0a:e8:8e:d9:69:75:9a: be:4c:02:56:71:99:f0:ee:9e:d9:34:69:bc:c7:15:bf:d6:b7: 54:ea:e2:33:76:e2:d8:94:74:bd:75:5b:c5:59:71:7a:4b:5e: f9:a3:1d:07:25:5c:d9:25:a0:9f:25:53:eb:12:af:2a:d8:95: 43:3c:8e:67:1f:8d:95:f9:20:87:0d:c3:76:59:cb:2d:29:d2: 19:b0:68:77:bc:91:0a:15:b9:04:b8:dc:97:0f:59:c4:a3:98: 3b:16:d6:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjYwNTIwMjEzNjE4WhcNMjYwNTI3MjEzNjE4WjAYMRYwFAYD VQQDEw02YTBlMjk1Mi1mYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eLUml1hobiC3RrVLVUH4p74hxgJL3L6IoBgbaqJit1fPYz7xA9q8LBh3Nq7 fzWb/4IWh4QbwH95YN0UpLffp/YGMosr8y9CIxYdL8n56JQLmS1YCbKOBdIKzr9g SBNxuGsY3+y+dimIvDgiUk/ttn9BGW9FeTQlER3w4ZriBCl2s+w3XmLJ81Rl8kOT VY+fTNyKWQnIIqE19vbamsWRrEq26nQ71u1Z6wbVzdN1fAmHxJyOZjHxEphvIFRY 0aYggjcgIDvinSvVM7U2TyjXC39KDkOh3ePQbi4JoMPBwNsAVjFuZV8LQmYskigQ cCp9SlN9jH9YoJ/W6vXbKjps+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAsRS4Ts Gb0mQiXryZv/ANQo3AfYMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgPpigWLo8BiU+2V1cZNxiXC3GLcS7zmDJx2xdjYiQ/K5Gb0OSMikcD0i3kp5 N1yPvekB5ScO+9EE2d+Rb4pGm0tICVYtzjauBZ4C7PoZisre964nWXkkc7mSpxJX IGJGJkUOy9NvTeVCH3LDY9+sxbYPtnogUeArKtMZ7GL4tSRDz757UeEb+jELvdro iYLMUEhk5bn6+zsAjlgK6I7ZaXWavkwCVnGZ8O6e2TRpvMcVv9a3VOriM3bi2JR0 vXVbxVlxekte+aMdByVc2SWgnyVT6xKvKtiVQzyOZx+Nlfkghw3DdlnLLSnSGbBo d7yRChW5BLjclw9ZxKOYOxbW5Q== -----END CERTIFICATE-----Generated at Thu May 21 10:39:58 2026 by rpki-client