$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: uzY38Hut/4qwGbNtcWKoS2RtoLkDfmHaqcZyvVVK4jw= Subject key identifier: 2C:2D:E7:BA:DB:7A:6D:C8:2C:CA:7A:6F:3E:2B:45:CA:34:79:03:34 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 029F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: 0285 Signing time: Thu 21 May 2026 02:02:04 +0000 Manifest this update: Thu 21 May 2026 02:02:03 +0000 Manifest next update: Thu 28 May 2026 02:02:03 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: IwI3sB/pkg/UGRGxnBK7Ngd7z2FYj8oyNrfv5/g//NQ=) 2: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: wTvqX5lh+hQgLml0mergBNQIB7VUtx22kJjyPfNulFg=) 3: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (hash: 4eriJ+anZ8scJn8XHXKnKYPlWoQjR5KP9FszJSNrcus=) 4: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: 5SoS9wM/g+HshG7EbVwFWNY7qgmWv+2rIEwCE8gvraE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 671 (0x29f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: May 21 02:02:03 2026 GMT Not After : May 28 02:02:03 2026 GMT Subject: CN=6a0e679c-a96e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:99:3e:b5:c6:81:20:39:cf:9e:9e:b0:63:a1: e5:b4:c6:97:80:d2:3d:29:d2:ee:99:4f:44:f4:69: 20:ee:b7:8b:50:49:bd:4b:66:d0:a7:c3:4c:b0:07: 71:ca:b7:5e:01:e3:a6:42:9a:2b:7f:e5:8f:4b:ad: fe:c8:75:3a:8b:15:fe:04:98:2e:2b:12:b8:86:72: 0c:e8:e9:b4:1e:01:56:dc:76:7c:ac:9c:64:fa:2f: ce:2d:70:4b:b5:88:60:8f:13:43:f3:a7:be:be:04: df:e8:99:0f:28:19:cf:4f:1d:6e:6d:40:15:86:f4: 43:f9:0a:62:28:2c:3e:d2:fb:1d:8e:e0:aa:dd:a8: ee:be:3c:93:30:44:e8:32:ad:c7:15:9a:39:c7:7d: 61:a7:ae:ee:87:3c:9d:22:1e:80:ea:d0:35:87:1a: e1:8a:58:f8:7f:48:a0:45:0d:f3:e9:f1:79:16:d3: 34:d5:74:cf:8d:24:63:3e:b3:49:3c:20:d3:b0:de: f5:f1:2b:56:e2:12:84:a7:4e:58:48:c1:8b:45:ec: 7c:f0:94:df:7a:13:40:43:a3:7a:e7:e1:9b:28:b0: 5f:6f:d4:f1:17:71:d0:f1:0d:79:dc:76:1e:ee:34: ac:82:fd:f3:62:14:87:97:64:85:a3:33:98:e8:4c: ca:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2D:E7:BA:DB:7A:6D:C8:2C:CA:7A:6F:3E:2B:45:CA:34:79:03:34 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c3:de:9c:24:ad:ef:00:d9:c2:67:d1:a5:14:ed:92:8d:2c: 8b:f3:4a:9a:ce:43:d5:a8:70:98:bc:c3:be:03:18:c4:49:bd: 38:b2:43:cb:c3:7a:4b:4b:8b:0a:65:39:97:14:72:7a:1c:49: 02:82:72:e9:a4:87:8c:c5:dd:e7:ac:14:68:96:b3:78:71:8c: 1e:50:bd:32:31:62:c3:02:48:e8:ad:76:86:df:99:ab:6e:52: 6b:ba:5b:aa:28:dc:33:a0:bd:2c:ed:18:51:90:c9:6b:a4:9c: 44:f2:10:6c:fa:55:2f:7d:58:76:7b:39:ad:9e:77:a7:9c:c2: 5a:31:28:b2:26:2c:62:00:3a:10:42:95:12:fd:b6:a6:ae:5a: 15:37:ed:0a:79:30:9d:c2:b0:31:2e:b1:c1:d3:5d:8a:24:74: 20:12:1e:be:fd:1d:51:08:fc:26:ad:02:e4:e9:89:84:6e:e6: 81:9a:fc:da:5a:40:5d:2e:f0:a5:97:d1:37:6d:f7:59:9d:37: 01:1d:a1:86:63:cc:b1:9d:6c:f7:af:3f:98:36:36:c1:7a:1b: bf:f7:0b:7f:17:d8:3c:8f:4d:c1:09:99:fd:3a:01:49:5d:84: c5:1f:e2:a3:2e:91:3a:c7:8f:48:9d:e1:85:4b:c6:83:6d:38: 1b:9b:f1:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjYwNTIxMDIwMjAzWhcNMjYwNTI4MDIwMjAzWjAYMRYwFAYD VQQDEw02YTBlNjc5Yy1hOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpk+tcaBIDnPnp6wY6HltMaXgNI9KdLumU9E9Gkg7reLUEm9S2bQp8NMsAdx yrdeAeOmQporf+WPS63+yHU6ixX+BJguKxK4hnIM6Om0HgFW3HZ8rJxk+i/OLXBL tYhgjxND86e+vgTf6JkPKBnPTx1ubUAVhvRD+QpiKCw+0vsdjuCq3ajuvjyTMETo Mq3HFZo5x31hp67uhzydIh6A6tA1hxrhilj4f0igRQ3z6fF5FtM01XTPjSRjPrNJ PCDTsN718StW4hKEp05YSMGLRex88JTfehNAQ6N65+GbKLBfb9TxF3HQ8Q153HYe 7jSsgv3zYhSHl2SFozOY6EzKxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCwt57rb em3ILMp6bz4rRco0eQM0MB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIsPenCSt7wDZwmfRpRTtko0si/NKms5D1ahwmLzDvgMYxEm9OLJDy8N6S0uL CmU5lxRyehxJAoJy6aSHjMXd56wUaJazeHGMHlC9MjFiwwJI6K12ht+Zq25Sa7pb qijcM6C9LO0YUZDJa6ScRPIQbPpVL31Ydns5rZ53p5zCWjEosiYsYgA6EEKVEv22 pq5aFTftCnkwncKwMS6xwdNdiiR0IBIevv0dUQj8Jq0C5OmJhG7mgZr82lpAXS7w pZfRN233WZ03AR2hhmPMsZ1s968/mDY2wXobv/cLfxfYPI9NwQmZ/ToBSV2ExR/i oy6ROsePSJ3hhUvGg204G5vxyQ== -----END CERTIFICATE-----Generated at Thu May 21 10:17:24 2026 by rpki-client