$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: zcUvUeLfMnAlRvJxRGhiqwV8mv0GAiGylMHvt68WNCU= Subject key identifier: C8:51:60:EA:B7:56:AB:FF:09:97:CE:27:AE:6C:54:3E:3F:89:2D:42 Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 0502 Signing time: Wed 20 May 2026 23:45:58 +0000 Manifest this update: Wed 20 May 2026 23:45:57 +0000 Manifest next update: Wed 27 May 2026 23:45:57 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: I6+k2A9KpzUdoxCTUrjYbG9K3Vz7zRsHX44MrMxs1go=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: +cG95cMT4bOP7gonlzVBmEDm9qPAdHE8HAO4W9Qjhh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: May 20 23:45:57 2026 GMT Not After : May 27 23:45:57 2026 GMT Subject: CN=6a0e47b5-a187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:12:d4:bf:f4:1f:57:93:ec:75:86:3a:bb:0c: 1b:7f:e0:f0:be:65:1c:33:b0:bd:c4:30:6f:19:c6: bc:63:5c:cc:90:60:70:23:0b:5a:e7:c2:cb:d7:94: 49:cb:0e:be:eb:2e:1c:20:5e:2a:0c:ec:0d:83:0d: f9:fb:5c:91:74:c2:00:3e:0a:b1:37:b2:0e:be:17: 19:bc:6e:3f:ed:62:78:cc:c0:c8:ff:6a:49:ce:b1: 2e:b6:ee:75:e7:34:07:36:b1:50:16:60:db:33:d1: 96:64:d6:26:56:91:bb:13:30:88:db:a8:b3:10:05: 18:4c:7f:41:4e:23:5d:99:d0:16:e4:50:c6:31:2b: cc:51:8b:b5:66:d9:06:57:f5:45:79:28:1d:08:4a: b6:f6:b7:b7:cc:de:29:c8:bd:82:86:f6:ff:b8:52: 59:2a:41:a8:b8:7a:6d:8e:97:99:31:59:5a:90:6a: d2:20:d3:8e:fa:fd:67:26:55:f6:74:e8:e4:29:2f: 52:20:11:87:31:28:04:97:b2:07:84:5b:4a:3b:19: 77:11:6b:ba:a5:89:2f:c2:f7:7d:c6:9e:af:52:b6: e4:ec:c1:38:a0:8c:64:27:0d:ec:a8:c1:ea:80:2c: 7a:50:4f:a2:f9:32:fc:09:95:5f:89:d3:e3:dc:fb: 5c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:51:60:EA:B7:56:AB:FF:09:97:CE:27:AE:6C:54:3E:3F:89:2D:42 X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:70:8a:92:ff:db:63:ac:41:be:86:aa:2c:c2:7a:56:0f:57: c7:0b:60:27:e8:dc:77:1b:5d:83:18:8f:bb:a6:d8:03:f3:4d: b0:51:dc:af:a2:c7:ea:f3:e8:75:2c:aa:a5:48:48:39:02:c2: e7:75:01:7f:44:55:3c:94:ec:3d:92:f0:a1:2e:b0:fd:c2:6d: c6:a0:fb:e3:b6:8f:3c:76:07:53:f5:2c:d9:45:88:f8:06:a2: ff:d3:a5:d5:e1:08:ae:6b:c6:44:61:d2:a9:30:81:cb:ba:f8: 63:46:84:3b:ce:c8:19:cc:fa:a5:76:bd:f2:1c:09:e4:a5:07: 93:d9:7a:71:3a:ef:42:16:31:af:44:cc:7a:5e:e9:19:1f:de: 31:b6:47:a8:d6:d8:cf:da:09:a1:8b:41:e9:10:04:b7:bb:8a: 67:11:20:25:6d:42:84:19:7e:b6:9b:d2:fd:95:ff:c0:76:37: 84:1b:54:79:c0:57:ad:9b:47:42:5d:0a:29:e7:f9:a7:0b:c2: e0:c2:cb:d9:07:eb:6a:38:d4:ad:dd:22:25:84:4b:31:5a:a7: f8:fe:d0:b6:1c:6c:81:80:6f:0f:df:94:56:ab:fd:2c:2e:2b: 4f:f8:13:d0:cc:63:8f:57:e0:7a:05:a9:24:fd:55:61:5d:02: b4:b3:3f:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjYwNTIwMjM0NTU3WhcNMjYwNTI3MjM0NTU3WjAYMRYwFAYD VQQDEw02YTBlNDdiNS1hMTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBLUv/QfV5PsdYY6uwwbf+DwvmUcM7C9xDBvGca8Y1zMkGBwIwta58LL15RJ yw6+6y4cIF4qDOwNgw35+1yRdMIAPgqxN7IOvhcZvG4/7WJ4zMDI/2pJzrEutu51 5zQHNrFQFmDbM9GWZNYmVpG7EzCI26izEAUYTH9BTiNdmdAW5FDGMSvMUYu1ZtkG V/VFeSgdCEq29re3zN4pyL2Chvb/uFJZKkGouHptjpeZMVlakGrSINOO+v1nJlX2 dOjkKS9SIBGHMSgEl7IHhFtKOxl3EWu6pYkvwvd9xp6vUrbk7ME4oIxkJw3sqMHq gCx6UE+i+TL8CZVfidPj3PtcGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMhRYOq3 Vqv/CZfOJ65sVD4/iS1CMB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEXCKkv/bY6xBvoaqLMJ6Vg9XxwtgJ+jcdxtdgxiPu6bYA/NNsFHcr6LH6vPo dSyqpUhIOQLC53UBf0RVPJTsPZLwoS6w/cJtxqD747aPPHYHU/Us2UWI+Aai/9Ol 1eEIrmvGRGHSqTCBy7r4Y0aEO87IGcz6pXa98hwJ5KUHk9l6cTrvQhYxr0TMel7p GR/eMbZHqNbYz9oJoYtB6RAEt7uKZxEgJW1ChBl+tpvS/ZX/wHY3hBtUecBXrZtH Ql0KKef5pwvC4MLL2QfrajjUrd0iJYRLMVqn+P7QthxsgYBvD9+UVqv9LC4rT/gT 0Mxjj1fgegWpJP1VYV0CtLM/Ng== -----END CERTIFICATE-----Generated at Thu May 21 10:14:06 2026 by rpki-client