$ rpki-client -vvf rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft File: 10XhyGsYGPfQVj-Q6LoSvosa43g.mft (raw, json) Hash identifier: 8nbBbLfDk4mbEaUw7GZkCCm58uSl53s5+6iw+P4VewU= Subject key identifier: D1:D3:EC:1B:3F:E4:C4:DB:E8:E1:D6:38:C0:13:8F:EC:2D:96:14:A8 Authority key identifier: D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 Certificate issuer: /CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft Manifest number: 020B Signing time: Thu 21 May 2026 03:04:55 +0000 Manifest this update: Thu 21 May 2026 03:04:55 +0000 Manifest next update: Thu 28 May 2026 03:04:55 +0000 Files and hashes: 1: 10XhyGsYGPfQVj-Q6LoSvosa43g.crl (hash: NqnAe+OZxYwuakof6aLZKTdQVyM93xOzuBFy7+waL1A=) 2: 12DD779467A211EEA8239268C4F9AE02.roa (hash: HImP9VOFFXqJoFjOOctJYpYNAjV+ZRGn0lHyorjq5bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D97C4, serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Validity Not Before: May 21 03:04:55 2026 GMT Not After : May 28 03:04:55 2026 GMT Subject: CN=6a0e7657-58de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b0:b9:8c:74:87:08:40:cb:45:cf:75:67:80: 46:83:67:87:51:31:55:62:80:6a:55:da:ae:58:a2: 47:53:f6:d3:3c:b8:70:19:fe:e0:62:2c:9a:ca:a6: aa:cd:34:61:01:7a:aa:fc:1f:a2:0a:e8:39:31:3e: 4e:87:05:01:7a:64:43:c8:20:c0:36:17:20:80:c1: d6:ff:e0:9d:eb:89:da:f5:8d:85:70:17:c5:61:d9: 7f:8a:da:df:86:79:92:48:63:a8:3f:42:bb:95:21: 59:df:2f:d5:b5:2a:9f:7e:5c:e2:34:50:b6:7c:84: bf:8a:bf:e0:65:1e:d8:1f:fc:13:f8:6f:f0:3a:ef: e4:3e:2e:7c:94:e3:c6:4f:77:54:da:88:63:49:b2: 67:a8:3a:a0:52:57:63:99:1b:93:ca:14:d5:64:8a: 2a:4d:89:af:21:a6:f7:89:ea:66:da:93:5b:19:0d: 54:9a:03:8a:14:89:49:6e:ba:1e:7d:57:f9:11:29: e7:2f:16:51:ff:48:0c:d2:d6:39:85:68:3f:cb:5a: 5a:43:f6:18:72:92:c8:bb:28:b6:47:8d:9c:d2:b9: 96:72:ac:86:3a:60:09:b6:3b:fe:e7:fe:a2:a0:8a: e5:86:e1:1a:fd:8f:47:d7:41:c4:01:3f:ec:c2:19: 34:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D3:EC:1B:3F:E4:C4:DB:E8:E1:D6:38:C0:13:8F:EC:2D:96:14:A8 X509v3 Authority Key Identifier: keyid:D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:62:75:95:0c:a4:41:ec:aa:bf:af:30:a9:c0:35:d7:cc:a6: 28:f3:65:fa:d6:2a:75:6b:39:ac:06:8b:98:15:1a:d5:ef:19: 63:ab:36:46:31:f3:36:38:77:aa:81:4a:e7:9f:c2:73:34:40: 48:ac:ab:c3:83:c4:2e:dd:34:13:a1:f9:e8:a0:f7:e0:a5:75: 0a:b7:3b:2a:42:ac:b3:f2:d2:f9:4e:7d:46:2c:2f:03:15:dd: 72:b7:f5:d7:be:9a:81:69:32:4a:0d:e9:4c:15:87:a5:ec:3b: 9a:80:6e:fe:31:fa:70:7f:84:7c:32:8a:74:d4:47:df:bc:47: 94:96:93:39:4f:af:e4:0f:c1:f0:a9:b0:63:2a:c7:07:2f:f6: fd:3c:40:b1:65:ee:5f:5f:d0:4e:6b:22:9c:9e:1f:4e:db:cb: 74:18:56:cd:2a:5c:38:54:e8:b2:ea:d6:c3:82:43:5f:94:44: 52:0f:b9:aa:b5:6c:f4:79:48:cd:58:ed:bc:1b:b4:46:72:39: 65:91:48:00:d1:5d:7f:cb:9a:35:2b:a4:07:57:e8:b3:c6:61: 42:c8:4f:67:cb:fd:0a:1c:d5:ce:be:f5:96:18:0e:0a:33:83: f0:63:99:a9:b3:4e:db:2c:7a:65:1a:2e:fc:f0:74:ca:a4:25: 42:55:fa:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk3QzQxMTAvBgNVBAUTKEQ3NDVFMUM4NkIxODE4RjdEMDU2M0Y5MEU4QkExMkJF OEIxQUUzNzgwHhcNMjYwNTIxMDMwNDU1WhcNMjYwNTI4MDMwNDU1WjAYMRYwFAYD VQQDEw02YTBlNzY1Ny01OGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rC5jHSHCEDLRc91Z4BGg2eHUTFVYoBqVdquWKJHU/bTPLhwGf7gYiyayqaq zTRhAXqq/B+iCug5MT5OhwUBemRDyCDANhcggMHW/+Cd64na9Y2FcBfFYdl/itrf hnmSSGOoP0K7lSFZ3y/VtSqfflziNFC2fIS/ir/gZR7YH/wT+G/wOu/kPi58lOPG T3dU2ohjSbJnqDqgUldjmRuTyhTVZIoqTYmvIab3iepm2pNbGQ1UmgOKFIlJbroe fVf5ESnnLxZR/0gM0tY5hWg/y1paQ/YYcpLIuyi2R42c0rmWcqyGOmAJtjv+5/6i oIrlhuEa/Y9H10HEAT/swhk0KQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNHT7Bs/ 5MTb6OHWOMATj+wtlhSoMB8GA1UdIwQYMBaAFNdF4chrGBj30FY/kOi6Er6LGuN4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTdDNC9DNjNERjIwMDND NjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQZlFWai1RNkxvU3Zvc2E0 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwWGh5R3NZR1BmUVZqLVE2TG9Tdm9zYTQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTdDNC9DNjNERjIwMDNDNjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQ ZlFWai1RNkxvU3Zvc2E0M2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATWJ1lQykQeyqv68wqcA118ymKPNl+tYqdWs5rAaLmBUa1e8ZY6s2RjHzNjh3 qoFK55/CczRASKyrw4PELt00E6H56KD34KV1Crc7KkKss/LS+U59RiwvAxXdcrf1 176agWkySg3pTBWHpew7moBu/jH6cH+EfDKKdNRH37xHlJaTOU+v5A/B8KmwYyrH By/2/TxAsWXuX1/QTmsinJ4fTtvLdBhWzSpcOFTosurWw4JDX5REUg+5qrVs9HlI zVjtvBu0RnI5ZZFIANFdf8uaNSukB1fos8ZhQshPZ8v9ChzVzr71lhgOCjOD8GOZ qbNO2yx6ZRou/PB0yqQlQlX6Mg== -----END CERTIFICATE-----Generated at Thu May 21 09:36:57 2026 by rpki-client