$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft File: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json) Hash identifier: +Wqno780FUH59jrAMXJ6xQYPkP5khbwKjbcDtqn3NNA= Subject key identifier: 31:B4:86:54:E4:01:36:72:1B:C9:14:08:D0:F0:28:8D:86:05:60:47 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft Manifest number: 024A Signing time: Thu 21 May 2026 02:35:06 +0000 Manifest this update: Thu 21 May 2026 02:35:06 +0000 Manifest next update: Thu 28 May 2026 02:35:06 +0000 Files and hashes: 1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: IHGj/8Yiz2lUokpg8zY8P/4yaygLEcx9/Q4RY0agdHk=) 2: 1333404E5A0D11EF8810E217C4F9AE02.roa (hash: 4mVa0DqBaCflYNU9bhCT5eYUo2wiGhZvFPJW9PpsrbY=) 3: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: vqGdVaaDYf6gNLNH5VIBJ2NRjMzmVVMM9ASsA3cNz2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: May 21 02:35:06 2026 GMT Not After : May 28 02:35:06 2026 GMT Subject: CN=6a0e6f5a-bfc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:81:36:90:aa:28:ff:7e:69:e3:40:1c:5a:05: b2:f0:60:e0:51:8e:5b:97:5d:d4:81:19:1c:ac:e5: 6c:78:5c:5c:5c:7d:5c:ad:cd:e7:50:4b:84:82:19: d2:7d:d5:c1:8b:0e:c9:71:f9:f0:05:78:34:5f:3d: d5:b5:15:14:b3:56:87:f6:f0:b0:14:a1:b0:e9:f2: 43:ae:6d:af:be:2a:72:77:ff:f6:6b:2e:a9:0d:ec: 55:f6:f0:c6:23:33:01:d1:0f:6a:76:84:61:33:71: 22:35:23:6d:04:47:45:1e:c9:4a:11:cb:99:57:ce: 3b:e4:cb:21:3d:a2:c2:bf:15:25:39:05:7a:3e:bb: c8:a3:fa:18:0e:d5:de:f2:d8:cc:b9:dd:3e:39:1d: 57:2b:35:89:96:60:94:b6:69:86:e6:32:3d:71:48: e1:bb:45:c3:c5:e9:f6:52:57:3e:8c:0e:9c:e0:7b: e4:51:8e:7e:2f:9b:5e:9f:29:2a:5a:da:28:48:4e: 5f:df:35:cd:c9:3b:75:74:46:62:a4:29:8e:9a:67: a0:f3:21:7a:16:11:88:3e:f9:00:9a:b5:02:e7:ce: a3:06:b5:a0:80:c5:97:05:b8:0f:5a:5c:e2:04:68: cc:9b:85:c0:d7:2e:a4:98:1d:30:8d:01:6a:91:9c: 13:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B4:86:54:E4:01:36:72:1B:C9:14:08:D0:F0:28:8D:86:05:60:47 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:f0:5b:db:bd:b2:da:a8:db:c2:b2:60:34:28:81:b3:87:0f: a3:6e:dc:5a:b3:f3:cc:e2:5b:a6:75:a4:7b:38:20:41:d2:3a: 17:39:87:84:b6:20:11:09:85:9a:a8:dd:42:7a:81:ae:4a:8c: af:d9:7c:fa:b4:e3:fd:2f:3e:d9:59:ab:f9:9b:46:56:4b:8b: f9:b8:56:7d:01:c9:54:ab:05:c7:ed:76:ce:2b:2c:1e:60:2d: 9c:cf:f2:57:1a:cd:68:4c:5c:98:5f:da:37:07:44:aa:b4:17: 35:fa:94:98:f0:8c:2b:6c:d6:46:8f:a6:e4:27:d8:e3:c4:49: 58:28:f9:23:79:fa:10:30:be:f1:ee:50:d9:be:28:23:7f:1a: 55:47:4c:d2:bd:36:de:53:e8:5c:bc:3a:60:57:06:66:b5:ba: e2:be:da:73:fe:61:b5:5d:6d:ec:f8:78:97:57:32:58:a3:7a: d2:e0:9d:9c:c0:bd:d6:61:85:cc:f3:89:af:31:c0:8d:20:f8: 82:e1:3a:05:b2:0f:f7:6e:db:a1:4e:e0:f6:a4:5c:fd:0d:08: d4:3f:54:1e:c2:a2:df:cc:8b:7e:db:70:07:fd:e0:2d:02:77: 74:13:cd:55:cc:81:21:1e:c5:b6:36:77:2e:fb:11:1e:f5:5f: 64:dc:2f:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjYwNTIxMDIzNTA2WhcNMjYwNTI4MDIzNTA2WjAYMRYwFAYD VQQDEw02YTBlNmY1YS1iZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IE2kKoo/35p40AcWgWy8GDgUY5bl13UgRkcrOVseFxcXH1crc3nUEuEghnS fdXBiw7JcfnwBXg0Xz3VtRUUs1aH9vCwFKGw6fJDrm2vvipyd//2ay6pDexV9vDG IzMB0Q9qdoRhM3EiNSNtBEdFHslKEcuZV8475MshPaLCvxUlOQV6PrvIo/oYDtXe 8tjMud0+OR1XKzWJlmCUtmmG5jI9cUjhu0XDxen2Ulc+jA6c4HvkUY5+L5tenykq WtooSE5f3zXNyTt1dEZipCmOmmeg8yF6FhGIPvkAmrUC586jBrWggMWXBbgPWlzi BGjMm4XA1y6kmB0wjQFqkZwT3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDG0hlTk ATZyG8kUCNDwKI2GBWBHMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFOS9CQkNENUQyQ0VGQ0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2 WEJsYVhtMng2a1pIWTB2dmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsPBb272y2qjbwrJgNCiBs4cPo27cWrPzzOJbpnWkezggQdI6FzmHhLYgEQmF mqjdQnqBrkqMr9l8+rTj/S8+2Vmr+ZtGVkuL+bhWfQHJVKsFx+12zissHmAtnM/y VxrNaExcmF/aNwdEqrQXNfqUmPCMK2zWRo+m5CfY48RJWCj5I3n6EDC+8e5Q2b4o I38aVUdM0r023lPoXLw6YFcGZrW64r7ac/5htV1t7Ph4l1cyWKN60uCdnMC91mGF zPOJrzHAjSD4guE6BbIP927boU7g9qRc/Q0I1D9UHsKi38yLfttwB/3gLQJ3dBPN VcyBIR7FtjZ3LvsRHvVfZNwviA== -----END CERTIFICATE-----Generated at Thu May 21 12:50:55 2026 by rpki-client