$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft File: MxG_l-IbcmqcAFa75KhbH38pXzU.mft (raw, json) Hash identifier: +344NObdvBsgZYji2oGUDwXZIJDlOIAkokMgINPhB6k= Subject key identifier: 3A:8F:BD:F9:A4:AA:15:FF:B3:9D:33:4F:0F:AF:2D:9F:25:28:17:33 Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 Certificate issuer: /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Certificate serial: 1211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft Manifest number: 1203 Signing time: Wed 20 May 2026 17:09:07 +0000 Manifest this update: Wed 20 May 2026 17:09:06 +0000 Manifest next update: Wed 27 May 2026 17:09:06 +0000 Files and hashes: 1: MxG_l-IbcmqcAFa75KhbH38pXzU.crl (hash: T25S236aw3j/pSqYkq8SYtgfYtODjDOlWRN0LsrQuMQ=) 2: 51273D9A08EE11E99E30172AC4F9AE02.roa (hash: /gFPuZArkGe71y+RmxZKgGm693+bY0y50nJRlydDJi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4625 (0x1211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7454, serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Validity Not Before: May 20 17:09:06 2026 GMT Not After : May 27 17:09:06 2026 GMT Subject: CN=6a0deab3-5629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fe:2f:46:e4:35:8d:8b:88:93:64:0f:8b:bd: a4:c4:10:5e:78:b4:17:da:70:82:d8:00:93:04:9f: f6:aa:da:1f:dd:ae:7a:32:ee:f8:a0:2a:f0:cb:80: 06:06:03:66:7f:20:45:c9:c6:58:1f:72:b5:c3:a9: a7:e3:ca:93:15:06:60:f9:7e:68:23:ec:df:c1:5d: 39:f4:86:e1:e7:e8:cf:69:0c:74:20:76:9e:d8:98: 35:6d:90:52:df:8a:4b:f2:b1:66:21:94:25:44:d3: 27:25:2b:09:ec:82:10:fa:20:1e:5f:24:78:70:2e: 55:09:fa:be:a7:ea:87:d2:73:d9:fe:ed:88:34:8c: fc:e8:7e:a2:20:1e:a7:a2:9a:9d:60:54:d6:bd:ce: c7:8d:72:50:01:8a:d3:86:fb:9d:36:a6:03:80:a2: 08:57:a4:4d:57:71:c3:19:b0:19:d1:4e:de:a8:f1: f8:18:f2:67:14:50:21:8e:a2:ff:48:62:27:cd:37: c6:7c:cc:0f:94:fe:f5:24:08:70:bb:61:69:84:7b: 7c:77:1c:07:e2:aa:f7:19:c9:17:37:c4:ef:08:d7: b6:54:85:9c:15:7e:67:5a:e2:55:7d:9d:26:53:42: 12:12:64:a1:14:db:6d:71:10:71:95:49:39:cd:16: fd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8F:BD:F9:A4:AA:15:FF:B3:9D:33:4F:0F:AF:2D:9F:25:28:17:33 X509v3 Authority Key Identifier: keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:35:06:7e:e6:3e:f8:e9:2a:d7:f7:e7:c7:67:ba:38:db:cd: a2:5e:eb:09:be:1b:b5:d1:64:f9:d5:94:e9:49:95:3b:ef:86: d2:73:39:21:b9:17:81:b0:eb:81:77:c5:4d:72:d5:dc:61:cf: 12:1e:d4:b3:11:09:45:2b:ec:7b:57:0c:af:0e:16:29:20:e3: a1:db:f7:34:e6:a1:ed:9c:79:09:e5:78:18:7f:62:d2:48:e1: 51:d2:33:47:83:fb:03:7d:e0:87:9a:a9:38:d1:8a:a2:e4:ea: 69:a8:ae:45:a6:3c:1f:6f:f5:d8:45:73:f3:c2:bb:c5:23:3e: ec:42:7f:13:bf:cd:8b:de:a1:9a:32:74:2f:c2:09:3c:70:67: ce:76:c4:3b:30:98:c6:3f:1f:b9:b2:17:14:dd:17:00:b0:56: f1:48:3c:97:c1:96:77:11:4d:50:f1:98:7d:a9:66:3b:a9:cb: 2e:b2:4c:f6:4c:ae:23:e7:3a:17:28:23:71:bd:3c:98:b1:14: 55:d4:e5:15:5f:37:17:93:0c:9b:e2:32:9b:dd:fa:11:23:7e: 1b:50:ce:9f:a6:ca:e9:ad:9e:9d:9b:16:fe:63:c9:cd:09:75: 9a:19:da:3e:94:6a:04:5a:7c:84:6d:d0:df:e5:c2:88:ef:d5: df:e9:6a:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0NTQxMTAvBgNVBAUTKDMzMTFCRjk3RTIxQjcyNkE5QzAwNTZCQkU0QTg1QjFG N0YyOTVGMzUwHhcNMjYwNTIwMTcwOTA2WhcNMjYwNTI3MTcwOTA2WjAYMRYwFAYD VQQDEw02YTBkZWFiMy01NjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxf4vRuQ1jYuIk2QPi72kxBBeeLQX2nCC2ACTBJ/2qtof3a56Mu74oCrwy4AG BgNmfyBFycZYH3K1w6mn48qTFQZg+X5oI+zfwV059Ibh5+jPaQx0IHae2Jg1bZBS 34pL8rFmIZQlRNMnJSsJ7IIQ+iAeXyR4cC5VCfq+p+qH0nPZ/u2INIz86H6iIB6n opqdYFTWvc7HjXJQAYrThvudNqYDgKIIV6RNV3HDGbAZ0U7eqPH4GPJnFFAhjqL/ SGInzTfGfMwPlP71JAhwu2FphHt8dxwH4qr3GckXN8TvCNe2VIWcFX5nWuJVfZ0m U0ISEmShFNttcRBxlUk5zRb9TQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDqPvfmk qhX/s50zTw+vLZ8lKBczMB8GA1UdIwQYMBaAFDMRv5fiG3JqnABWu+SoWx9/KV81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzQ1NC83OUM2MUU3QzA4 RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNtcWNBRmE3NUtoYkgzOHBY elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014R19sLUliY21xY0FGYTc1S2hiSDM4cFh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzQ1NC83OUM2MUU3QzA4RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNt cWNBRmE3NUtoYkgzOHBYelUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAETUGfuY++Okq1/fnx2e6ONvNol7rCb4btdFk+dWU6UmVO++G0nM5IbkXgbDr gXfFTXLV3GHPEh7UsxEJRSvse1cMrw4WKSDjodv3NOah7Zx5CeV4GH9i0kjhUdIz R4P7A33gh5qpONGKouTqaaiuRaY8H2/12EVz88K7xSM+7EJ/E7/Ni96hmjJ0L8IJ PHBnznbEOzCYxj8fubIXFN0XALBW8Ug8l8GWdxFNUPGYfalmO6nLLrJM9kyuI+c6 Fygjcb08mLEUVdTlFV83F5MMm+Iym936ESN+G1DOn6bK6a2enZsW/mPJzQl1mhna PpRqBFp8hG3Q3+XCiO/V3+lqcQ== -----END CERTIFICATE-----Generated at Thu May 21 10:16:05 2026 by rpki-client