$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: sxethfhbpI7rvSkDwtw5sFY5VsSxdYiT0A651I0YteA= Subject key identifier: B3:15:46:B8:A8:63:6D:FB:AC:3A:15:A4:29:0E:5B:5F:34:90:69:E3 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: 024A Signing time: Thu 21 May 2026 02:29:48 +0000 Manifest this update: Thu 21 May 2026 02:29:48 +0000 Manifest next update: Thu 28 May 2026 02:29:48 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: mDtW+H9OI6QEikrb3kg71fzgTOQUXWNzncIJG0U4eo0=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: 59GaugIUboIgNlDlRnXyjQ4DeYaCEIFAJ1XQPKcxrCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: May 21 02:29:48 2026 GMT Not After : May 28 02:29:48 2026 GMT Subject: CN=6a0e6e1c-e5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:28:c4:65:0e:22:d8:70:7a:90:22:9f:99:47: 8a:15:82:7e:be:5d:84:bc:d1:d0:0b:c6:6d:42:5e: a0:dc:de:fe:8f:a7:1d:b8:4e:6f:16:ba:ce:f3:df: c9:d2:18:ba:4a:53:30:e4:a3:4b:9b:47:a8:73:46: 14:23:65:60:c3:a8:fc:0d:7d:0a:58:c9:6e:f4:31: 7f:a2:12:3d:35:2b:55:dd:7b:8c:fa:41:7f:e0:4a: c4:09:14:1d:11:ed:fb:3e:47:69:d9:8f:54:1a:0f: ba:07:2f:1d:2f:eb:48:cd:9b:d2:b7:ae:61:06:85: 57:29:f4:a4:8a:01:2b:54:d0:6c:9a:c4:3e:8c:fb: 4e:c0:1c:a1:05:1d:2a:aa:fb:e5:bb:c8:34:bb:d1: 0d:f3:a8:c0:55:a3:21:28:b5:fd:71:bd:7e:29:a2: 38:19:5c:65:2a:04:76:aa:da:69:b7:7e:e2:e8:fc: 25:41:3b:d1:ba:78:9c:a1:1b:f8:37:f4:c4:2a:28: b7:bf:e1:bd:86:88:38:ec:e2:5f:28:19:90:41:f8: 03:02:5a:33:10:f1:a1:72:ae:0d:81:02:b3:3b:94: 8e:b3:5c:d0:10:f7:bc:04:15:cb:6d:53:78:e7:9a: 88:41:24:b3:9f:29:99:a0:10:34:b4:de:44:9a:77: a4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:15:46:B8:A8:63:6D:FB:AC:3A:15:A4:29:0E:5B:5F:34:90:69:E3 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:82:91:2e:9d:c8:b6:ad:b1:ba:5b:51:f9:1a:93:44:59:8e: ae:7e:d5:57:09:ba:9d:80:fd:7e:91:0c:a7:ee:b1:35:cc:f8: c3:78:2f:0d:8b:17:31:51:06:01:f0:21:32:50:5a:f0:85:d3: fc:b3:04:b1:4a:07:ad:e7:29:de:c3:36:f7:86:2d:c0:03:d9: 51:10:85:1d:ed:1e:66:64:da:b8:76:2b:d0:a2:4b:1a:3e:8a: c6:ec:25:8c:4d:96:70:bd:d4:cb:ce:b4:d8:58:84:52:c9:38: 21:38:bb:66:51:1d:b6:59:da:88:d8:c6:c4:ad:f2:bf:29:7d: 62:71:d7:fe:50:60:cc:de:e3:83:24:92:bd:6a:89:a3:28:d2: d9:84:17:e9:60:6a:08:b9:5b:cd:cd:2a:0a:f3:05:e6:64:d6: 04:06:f9:33:d1:0b:22:60:a4:f5:b3:14:89:c8:6c:26:58:fe: 20:8e:ab:2b:5c:e4:46:99:5f:05:bc:ab:c8:95:58:2b:9a:00: 88:79:f4:60:75:68:6f:c3:d3:95:7e:24:93:fa:96:76:24:51: 02:f7:39:7e:4b:34:8f:b7:7f:e0:f8:bc:9a:62:9c:76:01:0b: 82:fe:9d:1d:6c:37:e6:ec:0d:ed:37:04:6f:69:67:d0:d6:f5: c6:e6:26:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjYwNTIxMDIyOTQ4WhcNMjYwNTI4MDIyOTQ4WjAYMRYwFAYD VQQDEw02YTBlNmUxYy1lNWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqijEZQ4i2HB6kCKfmUeKFYJ+vl2EvNHQC8ZtQl6g3N7+j6cduE5vFrrO89/J 0hi6SlMw5KNLm0eoc0YUI2Vgw6j8DX0KWMlu9DF/ohI9NStV3XuM+kF/4ErECRQd Ee37Pkdp2Y9UGg+6By8dL+tIzZvSt65hBoVXKfSkigErVNBsmsQ+jPtOwByhBR0q qvvlu8g0u9EN86jAVaMhKLX9cb1+KaI4GVxlKgR2qtppt37i6PwlQTvRunicoRv4 N/TEKii3v+G9hog47OJfKBmQQfgDAlozEPGhcq4NgQKzO5SOs1zQEPe8BBXLbVN4 55qIQSSznymZoBA0tN5EmnekdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMVRrio Y237rDoVpCkOW180kGnjMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAoKRLp3Itq2xultR+RqTRFmOrn7VVwm6nYD9fpEMp+6xNcz4w3gvDYsXMVEG AfAhMlBa8IXT/LMEsUoHrecp3sM294YtwAPZURCFHe0eZmTauHYr0KJLGj6Kxuwl jE2WcL3Uy8602FiEUsk4ITi7ZlEdtlnaiNjGxK3yvyl9YnHX/lBgzN7jgySSvWqJ oyjS2YQX6WBqCLlbzc0qCvMF5mTWBAb5M9ELImCk9bMUichsJlj+II6rK1zkRplf BbyryJVYK5oAiHn0YHVob8PTlX4kk/qWdiRRAvc5fks0j7d/4Pi8mmKcdgELgv6d HWw35uwN7TcEb2ln0Nb1xuYm2g== -----END CERTIFICATE-----Generated at Thu May 21 10:15:59 2026 by rpki-client