$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: gsw3dN7jYniY88xTL9b0xv/iqSEro00DHjXzHdiGnBA= Subject key identifier: 90:9C:25:14:38:07:EC:8C:C6:52:C9:57:BF:2A:51:5E:B4:28:41:88 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 0130 Signing time: Thu 21 May 2026 05:36:34 +0000 Manifest this update: Thu 21 May 2026 05:36:34 +0000 Manifest next update: Thu 28 May 2026 05:36:34 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: DcO8KSGJrDNwTJ0dMO51ZOQ2/zHMakBOEI5EZdLWsiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: May 21 05:36:34 2026 GMT Not After : May 28 05:36:34 2026 GMT Subject: CN=6a0e99e2-026f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:50:ee:71:41:a4:6c:73:a0:76:62:53:77:ac: e6:cc:f6:b9:92:7c:ab:fe:fd:e5:74:2b:62:57:6b: dd:77:52:5a:2b:f1:6f:63:67:f7:9b:ee:9c:09:a5: 42:ed:11:bc:4b:b3:a5:45:6a:d3:01:dd:fc:74:d4: 31:80:af:e6:48:c3:db:10:13:d4:8a:00:30:2f:f0: e1:74:b6:59:22:6f:0f:68:1b:f4:7b:44:3a:6c:92: dd:c9:98:07:78:2c:ec:81:d6:74:b5:fc:a6:a6:78: ff:91:49:37:0a:65:21:2c:ed:40:19:9f:bb:01:f5: 56:40:d0:fd:3a:ea:1a:35:25:5b:5c:6f:28:d2:93: a3:b3:eb:3b:f7:07:cd:97:c5:4f:9f:6c:43:cb:fb: dc:a0:dc:d0:26:98:d8:c2:f6:fc:74:8c:3a:a1:3c: d4:57:ca:f0:62:4e:63:c1:c7:a4:1b:71:b5:b7:e8: 68:81:7c:f5:08:77:bb:e7:8d:68:3b:a3:53:d6:bf: fb:7b:f5:8a:ca:99:2d:69:e3:4d:1f:8d:5a:ba:0b: e1:c3:69:c9:19:cb:da:e4:8d:23:bd:6a:7e:60:f7: c7:87:79:d6:4d:73:36:fd:ba:0b:b2:96:25:1b:31: 4d:3c:67:9f:6e:43:38:ae:cc:76:33:4a:6f:29:71: b5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9C:25:14:38:07:EC:8C:C6:52:C9:57:BF:2A:51:5E:B4:28:41:88 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0b:cf:12:50:77:b1:3f:cd:4d:1d:84:c7:be:6e:01:2e:bb: 17:f1:b2:5e:f5:ff:54:71:63:85:30:c0:fa:19:dd:bc:ae:b9: a7:a8:e2:dd:e5:db:65:07:47:7a:fd:1b:7f:59:c8:7d:50:54: 08:35:2f:7b:a4:4f:45:11:d6:cc:7c:6b:9c:cf:8b:7d:5b:b5: 86:3b:4e:49:b2:f4:f4:b0:a5:a3:a2:c9:19:eb:bb:c1:29:fe: 3a:f4:7c:99:7c:db:16:46:96:ff:6e:8c:18:49:b3:7a:d5:80: 75:d5:07:bf:cc:62:1b:d2:a2:92:bd:78:bd:e0:c2:32:2c:99: ba:55:c2:59:9a:56:4c:23:ef:c7:62:03:30:30:5a:3b:e3:74: 60:db:54:24:80:1f:13:e0:eb:4c:73:52:40:68:3b:a7:93:2e: 2b:60:db:70:5b:77:85:eb:07:93:36:80:1b:0b:ba:6f:c1:bd: bc:74:e9:99:2a:18:34:61:94:be:b3:3f:ad:7c:0a:71:c8:6d: 9b:56:f8:84:0d:58:2b:62:54:d8:72:d8:18:25:11:e6:62:93: 87:e8:c2:99:4d:03:45:df:57:39:ab:cd:96:29:23:cc:17:14: 8f:b3:28:50:ae:00:96:8c:55:7d:82:b6:8c:51:c9:ac:3f:90: 0f:16:f5:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjYwNTIxMDUzNjM0WhcNMjYwNTI4MDUzNjM0WjAYMRYwFAYD VQQDEw02YTBlOTllMi0wMjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1DucUGkbHOgdmJTd6zmzPa5knyr/v3ldCtiV2vdd1JaK/FvY2f3m+6cCaVC 7RG8S7OlRWrTAd38dNQxgK/mSMPbEBPUigAwL/DhdLZZIm8PaBv0e0Q6bJLdyZgH eCzsgdZ0tfympnj/kUk3CmUhLO1AGZ+7AfVWQND9OuoaNSVbXG8o0pOjs+s79wfN l8VPn2xDy/vcoNzQJpjYwvb8dIw6oTzUV8rwYk5jwcekG3G1t+hogXz1CHe7541o O6NT1r/7e/WKypktaeNNH41augvhw2nJGcva5I0jvWp+YPfHh3nWTXM2/boLspYl GzFNPGefbkM4rsx2M0pvKXG1hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJCcJRQ4 B+yMxlLJV78qUV60KEGIMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAugvPElB3sT/NTR2Ex75uAS67F/GyXvX/VHFjhTDA+hndvK65p6ji3eXbZQdH ev0bf1nIfVBUCDUve6RPRRHWzHxrnM+LfVu1hjtOSbL09LClo6LJGeu7wSn+OvR8 mXzbFkaW/26MGEmzetWAddUHv8xiG9Kikr14veDCMiyZulXCWZpWTCPvx2IDMDBa O+N0YNtUJIAfE+DrTHNSQGg7p5MuK2DbcFt3hesHkzaAGwu6b8G9vHTpmSoYNGGU vrM/rXwKcchtm1b4hA1YK2JU2HLYGCUR5mKTh+jCmU0DRd9XOavNlikjzBcUj7Mo UK4AloxVfYK2jFHJrD+QDxb1Tg== -----END CERTIFICATE-----Generated at Thu May 21 10:14:51 2026 by rpki-client