$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: RyiXlgMMdiFdyCLYqvUyUyff6q7X65eKPDNealVK5gY= Subject key identifier: FD:EF:32:38:F3:27:8C:05:76:D6:A1:A7:05:9A:7C:CA:68:85:45:7C Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 09BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 09A7 Signing time: Wed 20 May 2026 20:01:36 +0000 Manifest this update: Wed 20 May 2026 20:01:36 +0000 Manifest next update: Wed 27 May 2026 20:01:36 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: fALvJG3t9pJecr7QNULg0dGK/GSO+4eMB/3S6jJ4bzI=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: ynhPE5wAgaVqH7nCW5tR8ne/clm5wNEfqCy2a6X1yEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2493 (0x9bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: May 20 20:01:36 2026 GMT Not After : May 27 20:01:36 2026 GMT Subject: CN=6a0e1320-61c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:bc:30:d9:15:ea:37:35:d5:3d:e3:21:54: 82:b8:9c:44:66:0f:24:24:4e:22:a5:22:d9:85:4a: 2c:74:de:53:22:d0:d3:ae:df:bb:f5:98:72:d2:76: 7c:1a:1d:c8:28:a1:56:1d:fd:e5:a1:3b:fa:38:ec: 84:d7:cb:62:91:89:6f:ce:83:9f:77:5d:8a:84:39: dc:bc:49:a6:27:47:58:6a:81:95:d0:30:95:65:00: 3f:be:49:c9:1c:86:4d:55:a4:d3:07:7b:d6:bd:e7: ec:20:13:0c:a2:72:28:d4:d0:1c:8d:b8:6a:6d:19: d9:8a:41:3b:60:c0:26:b1:84:48:6b:81:fa:ac:26: 3b:00:61:ac:30:f7:1d:c0:25:39:b5:34:e1:6b:0f: f6:70:80:94:b2:4b:f8:81:64:51:40:f3:23:2f:65: d1:04:2e:1a:a5:ac:05:7b:de:c4:5c:79:2c:b6:10: f3:b0:cc:78:68:38:b2:cd:f7:18:58:0a:aa:56:fc: 5f:1d:8c:56:b6:fe:a8:b8:fd:dd:05:9b:36:0d:65: d7:31:ab:b3:8f:11:fe:f1:f8:95:83:34:f9:4a:4f: 39:98:ed:35:20:8f:d3:5a:e0:46:c4:d9:97:b3:95: d3:23:18:bd:1e:cb:e9:f2:9b:10:d3:10:41:d1:e2: ff:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:EF:32:38:F3:27:8C:05:76:D6:A1:A7:05:9A:7C:CA:68:85:45:7C X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:7a:3e:19:63:c4:71:55:e4:95:f6:59:5f:2c:cb:66:d0:52: 2d:40:98:83:dc:af:69:2e:a5:36:3d:40:4d:6c:78:a7:3b:4c: 0e:f6:b5:75:b8:ca:9c:a8:b3:a6:b5:86:cb:a8:42:88:10:a9: 95:87:fd:8c:1a:9b:72:06:cf:23:12:89:6d:f0:20:6f:dc:97: 84:4f:4d:ef:a5:35:7c:e3:57:32:97:90:54:bd:a8:30:0c:2c: 38:87:ac:54:4e:d3:d0:ce:df:16:8c:96:6a:98:cc:f2:42:c1: 1e:1b:16:e6:e0:0d:ef:bb:11:73:df:c4:e2:08:7c:83:e0:cb: 62:4a:dc:b4:2a:5b:dc:30:a9:d7:33:03:3d:a9:00:27:38:56: c8:1b:60:d2:a9:f3:99:a2:08:d8:91:25:9d:da:7c:ef:b7:b0: dd:8d:b9:c2:4f:21:d6:14:ac:f5:23:72:34:d2:b1:5a:b5:a7: 94:54:11:43:a4:42:f3:b8:36:41:45:39:66:fb:d2:7c:51:1f: de:c6:ea:77:67:4e:2a:72:0d:4e:cf:99:0a:fa:64:3f:65:0a: 8d:57:6a:29:b8:e9:47:f3:75:a0:14:6d:c5:b8:73:31:1d:12: 65:b6:a1:dc:fc:aa:45:e7:78:40:17:5b:28:44:45:12:70:07: e3:ee:79:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjYwNTIwMjAwMTM2WhcNMjYwNTI3MjAwMTM2WjAYMRYwFAYD VQQDEw02YTBlMTMyMC02MWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBm8MNkV6jc11T3jIVSCuJxEZg8kJE4ipSLZhUosdN5TItDTrt+79Zhy0nZ8 Gh3IKKFWHf3loTv6OOyE18tikYlvzoOfd12KhDncvEmmJ0dYaoGV0DCVZQA/vknJ HIZNVaTTB3vWvefsIBMMonIo1NAcjbhqbRnZikE7YMAmsYRIa4H6rCY7AGGsMPcd wCU5tTThaw/2cICUskv4gWRRQPMjL2XRBC4apawFe97EXHksthDzsMx4aDiyzfcY WAqqVvxfHYxWtv6ouP3dBZs2DWXXMauzjxH+8fiVgzT5Sk85mO01II/TWuBGxNmX s5XTIxi9Hsvp8psQ0xBB0eL/HQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP3vMjjz J4wFdtahpwWafMpohUV8MB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASXo+GWPEcVXklfZZXyzLZtBSLUCYg9yvaS6lNj1ATWx4pztMDva1dbjKnKiz prWGy6hCiBCplYf9jBqbcgbPIxKJbfAgb9yXhE9N76U1fONXMpeQVL2oMAwsOIes VE7T0M7fFoyWapjM8kLBHhsW5uAN77sRc9/E4gh8g+DLYkrctCpb3DCp1zMDPakA JzhWyBtg0qnzmaII2JElndp877ew3Y25wk8h1hSs9SNyNNKxWrWnlFQRQ6RC87g2 QUU5ZvvSfFEf3sbqd2dOKnINTs+ZCvpkP2UKjVdqKbjpR/N1oBRtxbhzMR0SZbah 3PyqRed4QBdbKERFEnAH4+55Mw== -----END CERTIFICATE-----Generated at Thu May 21 09:38:13 2026 by rpki-client