$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft File: afotkTN0HoMAQ-tA5A0ivzU4684.mft (raw, json) Hash identifier: WFf+kYMAfsrC38Gn4RXPsN23rIlja0C7VzlEu/uFH2s= Subject key identifier: ED:9C:68:DC:67:54:BD:AD:AD:91:57:1B:D1:F1:D8:1C:E3:FD:5F:AB Authority key identifier: 69:FA:2D:91:33:74:1E:83:00:43:EB:40:E4:0D:22:BF:35:38:EB:CE Certificate issuer: /CN=A91CCB81/serialNumber=69FA2D9133741E830043EB40E40D22BF3538EBCE Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/afotkTN0HoMAQ-tA5A0ivzU4684.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft Manifest number: 43 Signing time: Tue 19 May 2026 08:21:48 +0000 Manifest this update: Tue 19 May 2026 08:21:48 +0000 Manifest next update: Tue 26 May 2026 08:21:48 +0000 Files and hashes: 1: afotkTN0HoMAQ-tA5A0ivzU4684.crl (hash: zBiMrqxde2zpkiRs9Ck+e9heVgvABBuI/aLwvewfPU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.crl rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/afotkTN0HoMAQ-tA5A0ivzU4684.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 08:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCB81, serialNumber=69FA2D9133741E830043EB40E40D22BF3538EBCE Validity Not Before: May 19 08:21:48 2026 GMT Not After : May 26 08:21:48 2026 GMT Subject: CN=6a0c1d9c-234e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b5:a1:e4:7c:86:da:03:cf:8c:ee:ce:e1:9a: a9:31:06:b3:77:20:41:a4:d3:70:c3:f7:0b:cd:6f: 53:e4:42:f1:d8:8f:f7:50:bc:cb:33:a6:87:f1:4f: 0a:2c:ad:7a:af:ea:f0:a9:80:2a:48:57:0b:4e:9f: fa:1f:47:9c:86:70:34:d9:ab:1f:51:4c:07:c1:3a: 65:cd:c3:fc:25:38:9e:82:b5:05:ab:47:25:99:ae: d5:70:7f:cc:aa:3a:f1:c8:f9:56:d3:3f:bb:e3:54: de:9f:5b:05:96:6d:47:52:08:e5:93:70:36:41:00: 28:71:62:39:cd:14:c6:b7:6d:b7:5d:56:3b:aa:1d: 1f:54:3c:17:78:1e:cb:77:d2:9f:43:f2:50:f8:29: 79:56:bc:86:ef:e3:11:d8:62:30:43:d3:8d:93:df: 2f:32:c2:d6:33:a7:9e:b9:b9:da:b5:97:8c:0e:1d: 7a:c0:8e:ca:0a:f2:78:e8:42:a6:26:08:df:05:a9: a3:0c:68:f6:af:62:fc:0f:e9:cf:bb:4e:e9:d2:3c: a5:99:31:67:90:36:ff:85:1b:66:51:00:d2:85:8f: 89:8d:f2:94:65:3d:07:33:2a:e4:b5:cb:b3:87:d3: 16:8c:e4:9c:fd:c1:d6:1c:c9:38:e1:c7:d7:82:be: 57:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9C:68:DC:67:54:BD:AD:AD:91:57:1B:D1:F1:D8:1C:E3:FD:5F:AB X509v3 Authority Key Identifier: keyid:69:FA:2D:91:33:74:1E:83:00:43:EB:40:E4:0D:22:BF:35:38:EB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/afotkTN0HoMAQ-tA5A0ivzU4684.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:63:19:87:de:ec:4d:7d:c1:94:eb:c5:e0:99:46:4f:cf:36: b7:1e:ea:9e:23:ca:20:aa:e7:69:7a:57:5c:72:b4:f5:69:4a: ca:f6:96:39:d3:6c:68:87:ce:4a:c7:fd:72:7b:bd:f9:35:11: f6:b9:e5:3c:d6:78:f0:fe:3a:37:e0:56:87:f9:a5:c9:5a:cd: a2:f4:d5:5c:3f:6c:0d:e1:fe:d6:fb:a6:5a:bc:8f:ef:41:49: 9d:80:46:2f:52:bd:be:09:81:7a:32:99:5f:1f:47:7b:db:ba: 3a:cd:ba:9d:d8:de:15:09:d0:11:62:6c:bb:28:7e:ff:84:1e: 05:d5:3e:bc:d7:69:4d:df:5a:c9:d3:41:13:52:17:e3:3c:e7: 38:e4:a4:8e:db:fb:98:c6:4e:d2:72:6a:bb:f5:cf:d6:64:ca: 3b:d5:cc:21:d3:a6:2e:ae:aa:fa:51:87:9f:b9:67:a8:13:77: aa:c6:4a:dd:6e:4c:45:bc:7f:57:35:f5:e6:64:c7:66:19:2d: 30:26:2b:dc:76:e7:3b:2b:6f:6d:23:bc:bb:0e:24:87:f1:95: 0c:42:11:7d:30:38:95:be:65:f4:c4:38:3f:de:ca:f5:09:9b: df:72:8c:24:48:64:ab:9c:1d:ea:df:a9:4e:d2:c3:3b:d9:5e: dd:40:ee:3d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0I4MTExMC8GA1UEBRMoNjlGQTJEOTEzMzc0MUU4MzAwNDNFQjQwRTQwRDIyQkYz NTM4RUJDRTAeFw0yNjA1MTkwODIxNDhaFw0yNjA1MjYwODIxNDhaMBgxFjAUBgNV BAMTDTZhMGMxZDljLTIzNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1taHkfIbaA8+M7s7hmqkxBrN3IEGk03DD9wvNb1PkQvHYj/dQvMszpofxTwos rXqv6vCpgCpIVwtOn/ofR5yGcDTZqx9RTAfBOmXNw/wlOJ6CtQWrRyWZrtVwf8yq OvHI+VbTP7vjVN6fWwWWbUdSCOWTcDZBAChxYjnNFMa3bbddVjuqHR9UPBd4Hst3 0p9D8lD4KXlWvIbv4xHYYjBD042T3y8ywtYzp565udq1l4wOHXrAjsoK8njoQqYm CN8FqaMMaPavYvwP6c+7TunSPKWZMWeQNv+FG2ZRANKFj4mN8pRlPQczKuS1y7OH 0xaM5Jz9wdYcyTjhx9eCvldVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU7Zxo3GdU va2tkVcb0fHYHOP9X6swHwYDVR0jBBgwFoAUafotkTN0HoMAQ+tA5A0ivzU4684w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQjgxLzI4NjFFNDk2Rjg2 QTExRjBCNEJCQUYzQzRBNkY1NkJDL2Fmb3RrVE4wSG9NQVEtdEE1QTBpdnpVNDY4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWZvdGtUTjBIb01BUS10QTVBMGl2elU0Njg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QjgxLzI4NjFFNDk2Rjg2QTExRjBCNEJCQUYzQzRBNkY1NkJDL2Fmb3RrVE4wSG9N QVEtdEE1QTBpdnpVNDY4NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAuYxmH3uxNfcGU68XgmUZPzza3HuqeI8ogqudpeldccrT1aUrK9pY502xoh85K x/1ye735NRH2ueU81njw/jo34FaH+aXJWs2i9NVcP2wN4f7W+6ZavI/vQUmdgEYv Ur2+CYF6MplfH0d727o6zbqd2N4VCdARYmy7KH7/hB4F1T6812lN31rJ00ETUhfj POc45KSO2/uYxk7Scmq79c/WZMo71cwh06Yurqr6UYefuWeoE3eqxkrdbkxFvH9X NfXmZMdmGS0wJivcduc7K29tI7y7DiSH8ZUMQhF9MDiVvmX0xDg/3sr1CZvfcowk SGSrnB3q36lO0sM72V7dQO49 -----END CERTIFICATE-----Generated at Thu May 21 10:23:56 2026 by rpki-client