$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft File: tkuBBCq0EWB9hgdv78nllia7iBY.mft (raw, json) Hash identifier: gZaCcGMY4TM3mjDWNG+nmrsZSI0oGf2RtdiiEw5bsIM= Subject key identifier: FE:15:C2:89:E5:C2:99:16:E2:42:B2:E2:56:F2:4E:13:A0:58:49:7C Authority key identifier: B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 Certificate issuer: /CN=A91D3037/serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft Manifest number: 87 Signing time: Thu 21 May 2026 07:43:17 +0000 Manifest this update: Thu 21 May 2026 07:43:16 +0000 Manifest next update: Thu 28 May 2026 07:43:16 +0000 Files and hashes: 1: tkuBBCq0EWB9hgdv78nllia7iBY.crl (hash: Hnyom0matY5EjgQZzPDlZws/8XwvITCMvS0mD+LxXsY=) 2: 0A16B10E8EE011F09A1AE72BC4F9AE02.roa (hash: oQE4lKjrb9uBnPjONyf7ZrBM9Hns2uL/UwtMTK49Mk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3037, serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Validity Not Before: May 21 07:43:16 2026 GMT Not After : May 28 07:43:16 2026 GMT Subject: CN=6a0eb795-70ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:ea:cc:11:d7:32:b6:0a:8b:66:fa:f5:47: 40:86:bb:52:db:54:25:e9:61:10:10:93:b0:a6:4d: 77:17:3a:be:92:96:0f:a9:30:6f:88:34:4e:59:ca: f8:64:0a:a2:02:33:5e:e1:6e:0d:c8:74:c7:04:82: 13:5e:79:42:ca:d2:29:3a:3d:5d:85:65:35:66:db: 05:04:5f:c6:2e:d0:e0:91:7e:69:2e:29:42:3e:76: c2:3f:35:e7:1c:b0:14:60:f0:a8:67:3f:3a:2e:71: ed:7f:47:a6:82:7c:21:03:b1:86:d1:5b:a3:69:d5: 97:29:69:a3:81:7b:9d:de:f0:98:b6:f6:b8:f5:bb: fb:98:ee:1b:b1:87:32:ef:e5:67:4c:49:8a:c2:37: 12:7a:b7:5d:ac:95:2f:1d:55:d6:35:8c:93:05:fe: 5d:ef:50:41:b9:6c:a5:26:8b:e0:cd:2f:b8:03:fb: 5c:a3:ae:2c:50:31:6d:40:f3:76:72:6a:94:95:1f: 9e:51:a6:38:3d:a6:7b:06:b8:d1:7d:2f:cf:91:1a: 8e:71:ca:11:d1:62:73:f3:b2:e9:f3:51:ba:4f:83: bc:26:8f:9c:0a:26:9c:ea:4c:e2:d5:5b:1f:ad:90: e5:85:5e:65:64:08:41:2e:f9:ec:f7:b3:92:ec:12: 73:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:15:C2:89:E5:C2:99:16:E2:42:B2:E2:56:F2:4E:13:A0:58:49:7C X509v3 Authority Key Identifier: keyid:B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:74:22:29:c3:8e:24:1d:ce:83:d7:f9:5a:05:a7:83:55:3e: 03:e7:71:1f:18:b3:00:ef:d4:f7:d3:50:e5:1a:3b:e2:2e:2a: 4d:a3:17:50:81:b5:c8:a2:29:6a:5d:ff:5f:2d:ee:4c:37:40: 68:dc:81:2f:45:fc:06:ee:15:a3:0c:a7:28:a4:d0:ab:d3:65: 87:63:39:d2:c0:e7:ff:a1:f8:75:6d:4c:72:28:46:fd:7c:cc: 66:f2:c9:ca:3e:e1:cf:ca:4a:b3:2f:83:e3:1e:4c:ad:ef:1e: e9:fb:00:ce:17:b7:d9:5f:9e:39:c2:97:05:df:5c:0b:36:93: 75:48:5c:95:1f:1d:42:56:4c:43:35:05:d1:3d:e8:b0:05:15: e7:26:34:7c:7f:5c:dc:ac:56:59:e7:cd:2b:97:a6:63:bb:98: f6:3f:44:f3:97:80:01:5e:05:63:b4:74:e2:ef:32:ca:45:02: 92:5c:74:13:41:1e:9a:52:3f:8d:1e:41:fb:ac:82:e5:b8:1c: 75:de:07:15:e8:56:b5:ac:8f:02:70:f5:b1:74:c1:0f:7c:d9: 76:be:e2:36:3d:de:fc:72:98:18:54:32:13:8a:fd:49:89:4c: 63:a1:1b:b5:5b:ed:99:38:36:39:bb:db:c5:a9:4d:2a:60:1b: 12:53:be:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMwMzcxMTAvBgNVBAUTKEI2NEI4MTA0MkFCNDExNjA3RDg2MDc2RkVGQzlFNTk2 MjZCQjg4MTYwHhcNMjYwNTIxMDc0MzE2WhcNMjYwNTI4MDc0MzE2WjAYMRYwFAYD VQQDEw02YTBlYjc5NS03MGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGfqzBHXMrYKi2b69UdAhrtS21Ql6WEQEJOwpk13Fzq+kpYPqTBviDROWcr4 ZAqiAjNe4W4NyHTHBIITXnlCytIpOj1dhWU1ZtsFBF/GLtDgkX5pLilCPnbCPzXn HLAUYPCoZz86LnHtf0emgnwhA7GG0VujadWXKWmjgXud3vCYtva49bv7mO4bsYcy 7+VnTEmKwjcSerddrJUvHVXWNYyTBf5d71BBuWylJovgzS+4A/tco64sUDFtQPN2 cmqUlR+eUaY4PaZ7BrjRfS/PkRqOccoR0WJz87Lp81G6T4O8Jo+cCiac6kzi1Vsf rZDlhV5lZAhBLvns97OS7BJz+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP4Vwonl wpkW4kKy4lbyThOgWEl8MB8GA1UdIwQYMBaAFLZLgQQqtBFgfYYHb+/J5ZYmu4gW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzAzNy84QjhERTI3RThF REMxMUYwOTg4MEM0NzhDNEY5QUUwMi90a3VCQkNxMEVXQjloZ2R2NzhubGxpYTdp QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrdUJCQ3EwRVdCOWhnZHY3OG5sbGlhN2lCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzAzNy84QjhERTI3RThFREMxMUYwOTg4MEM0NzhDNEY5QUUwMi90a3VCQkNxMEVX QjloZ2R2NzhubGxpYTdpQlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG3QiKcOOJB3Og9f5WgWng1U+A+dxHxizAO/U99NQ5Ro74i4qTaMXUIG1yKIp al3/Xy3uTDdAaNyBL0X8Bu4VowynKKTQq9Nlh2M50sDn/6H4dW1McihG/XzMZvLJ yj7hz8pKsy+D4x5Mre8e6fsAzhe32V+eOcKXBd9cCzaTdUhclR8dQlZMQzUF0T3o sAUV5yY0fH9c3KxWWefNK5emY7uY9j9E85eAAV4FY7R04u8yykUCklx0E0EemlI/ jR5B+6yC5bgcdd4HFehWtayPAnD1sXTBD3zZdr7iNj3e/HKYGFQyE4r9SYlMY6Eb tVvtmTg2ObvbxalNKmAbElO+Tw== -----END CERTIFICATE-----Generated at Thu May 21 10:29:13 2026 by rpki-client