$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: fne4CoAxu+o4V6dvqwF5HVEE4wjSjBKVcHh7Y17NsFU= Subject key identifier: 2E:B4:03:E3:70:F5:A4:13:A6:FA:F0:B0:F3:CB:A0:37:4B:F7:4B:24 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 096D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 0962 Signing time: Wed 20 May 2026 20:08:01 +0000 Manifest this update: Wed 20 May 2026 20:08:01 +0000 Manifest next update: Wed 27 May 2026 20:08:01 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: vSaBYP50BE7H7UJfJqViZ3I5Ugg4okOerc1UpwSiOuE=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: K8ifKpf1OxSentj2ShFOfGXT/u0aCJtaC2BhvsjDEzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2413 (0x96d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: May 20 20:08:01 2026 GMT Not After : May 27 20:08:01 2026 GMT Subject: CN=6a0e14a1-a0b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:78:9e:8a:61:f7:00:37:c3:19:a5:90:13: 8d:6a:c4:3c:39:6d:d8:f9:2a:e3:19:56:b4:5c:28: e3:50:bc:4c:17:4f:e9:1c:40:57:ce:5c:8a:d8:52: a6:b2:66:81:c6:5b:04:0b:6b:35:3e:5b:fc:f4:f4: 2e:f9:ec:38:c6:85:67:21:49:66:06:95:e3:20:ee: a3:39:f1:c0:0e:c4:03:8c:00:9c:70:55:b5:1c:04: 42:8e:a6:72:34:12:b7:01:72:0f:a0:fa:6d:0a:ad: 3b:c1:71:5b:b2:53:78:ad:35:14:be:42:c0:38:77: 9d:b1:3d:18:25:4e:11:a3:6e:9a:ae:fb:4a:93:2c: 2c:c9:0d:91:bc:30:52:d1:77:33:c8:ec:ec:86:d8: 9c:0b:c4:9f:1e:8d:8c:76:d8:7c:3c:ee:18:fb:a0: d9:97:63:5f:4e:12:df:b1:fe:46:21:8d:ae:58:d2: 77:68:11:57:13:fb:42:d3:fb:bc:e1:66:04:4c:1b: c3:fe:41:83:a8:7c:46:06:66:56:e4:88:d5:e0:2e: c0:6e:db:41:76:7e:73:48:59:fa:cf:17:e2:da:7a: 4c:d8:bd:35:1a:35:31:9f:57:f7:f5:94:7a:6e:f1: b9:de:1a:b0:75:2f:90:4e:2b:1d:b2:1c:df:4d:8d: 29:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B4:03:E3:70:F5:A4:13:A6:FA:F0:B0:F3:CB:A0:37:4B:F7:4B:24 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:0d:0c:d0:0c:c9:93:03:e6:04:0f:98:9e:1b:00:b2:ef:3d: 0d:2e:e0:14:e9:63:2f:73:49:c5:11:18:af:54:65:41:06:3d: 67:26:8e:5a:6a:ae:a9:6e:5f:b0:46:06:6a:89:2a:c2:97:ab: e9:5f:31:50:18:80:ac:6b:10:67:8d:1f:8b:39:64:fa:85:30: a6:45:9d:e4:a5:72:1f:e6:de:6c:87:00:c1:76:44:91:0d:0b: 5e:15:c2:c4:cc:5f:97:1d:e8:61:5b:78:4e:e2:2e:69:69:1a: 70:44:67:dd:79:36:a8:f8:9c:82:d0:f3:67:e0:ca:ce:57:48: 7a:6b:6e:26:58:c9:50:a2:eb:b8:65:ea:e8:16:a1:98:87:61: f9:a0:ad:1f:f4:36:4a:cb:58:f2:98:25:bd:c6:57:01:b5:5b: 0e:86:be:0a:44:bf:86:76:19:9c:50:61:c8:d6:85:a4:aa:c2: 0d:1a:5f:51:a1:30:fc:11:5e:b9:4b:3c:7d:16:f1:00:35:75: bd:6c:2d:2a:13:97:18:54:8f:3e:5e:92:f4:34:28:35:f0:25: 05:d3:28:e4:24:9b:86:b5:33:1d:27:be:49:dc:1c:39:86:30: 38:c4:89:61:8e:20:36:d5:df:c7:89:7e:67:28:ee:dd:d8:bd: fb:2e:b0:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjYwNTIwMjAwODAxWhcNMjYwNTI3MjAwODAxWjAYMRYwFAYD VQQDEw02YTBlMTRhMS1hMGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKR4noph9wA3wxmlkBONasQ8OW3Y+SrjGVa0XCjjULxMF0/pHEBXzlyK2FKm smaBxlsEC2s1Plv89PQu+ew4xoVnIUlmBpXjIO6jOfHADsQDjACccFW1HARCjqZy NBK3AXIPoPptCq07wXFbslN4rTUUvkLAOHedsT0YJU4Ro26arvtKkywsyQ2RvDBS 0XczyOzshticC8SfHo2Mdth8PO4Y+6DZl2NfThLfsf5GIY2uWNJ3aBFXE/tC0/u8 4WYETBvD/kGDqHxGBmZW5IjV4C7AbttBdn5zSFn6zxfi2npM2L01GjUxn1f39ZR6 bvG53hqwdS+QTisdshzfTY0puQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC60A+Nw 9aQTpvrwsPPLoDdL90skMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFQ0M0AzJkwPmBA+YnhsAsu89DS7gFOljL3NJxREYr1RlQQY9ZyaOWmquqW5f sEYGaokqwper6V8xUBiArGsQZ40fizlk+oUwpkWd5KVyH+bebIcAwXZEkQ0LXhXC xMxflx3oYVt4TuIuaWkacERn3Xk2qPicgtDzZ+DKzldIemtuJljJUKLruGXq6Bah mIdh+aCtH/Q2SstY8pglvcZXAbVbDoa+CkS/hnYZnFBhyNaFpKrCDRpfUaEw/BFe uUs8fRbxADV1vWwtKhOXGFSPPl6S9DQoNfAlBdMo5CSbhrUzHSe+SdwcOYYwOMSJ YY4gNtXfx4l+Zyju3di9+y6wAQ== -----END CERTIFICATE-----Generated at Thu May 21 11:16:41 2026 by rpki-client