$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: MuxACAACB2soSTtD8LUsqdvF7/eb0serdEZta2E9LoE= Subject key identifier: 87:50:24:75:24:EB:66:D6:44:45:67:30:4C:59:3A:B3:DB:F0:6E:5E Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 3635 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 35A7 Signing time: Mon 04 May 2026 14:16:25 +0000 Manifest this update: Mon 04 May 2026 14:16:25 +0000 Manifest next update: Mon 11 May 2026 14:16:25 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: 3i0JH8z1TlEpFiykUKZIp4/8k6AGfM6ku4WfZYsZWGo=) 2: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: Zl7CL1hILK98z1K1OQnmQBFBX3AF5k+q1EWP8nnTBiE=) 3: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: y6ZiKIpbO8nVe1RhgWjLdE8kQETpbK+AjZQf/Ewa3Fk=) 4: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: 13OCzHbeP84SVts3fLFM8ezvX9wYG+xk9oztS8IQ/oo=) 5: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: 0TLVORl6wSPXD4zN0o2eNo/c7mH0Sa6LVUUSVrU3gGs=) 6: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: oS/2Yr0f0AX3IY6Qw0kprzC/haS0V2Vl/e9gsEC9t0o=) 7: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: US7l9IRW6KnysaR3hgfIHQKP61jxpaRsUq+BQajlvlE=) 8: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: 46CC9LcyzFfBkRedCj8zONrcqyJIMjuxJScGt32qKqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13877 (0x3635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: May 4 14:16:25 2026 GMT Not After : May 11 14:16:25 2026 GMT Subject: CN=69f8aa39-c90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:f7:fe:8b:22:4e:6b:74:10:5a:ab:7c:bc: f8:1e:c8:95:5c:a2:23:3c:d5:35:d4:eb:b1:ec:40: e3:b7:85:31:d7:be:b9:b0:6e:78:a8:2c:1f:d9:e1: 80:e8:8e:7d:b3:53:fa:b8:c6:77:87:6c:c6:5a:87: bd:ad:37:21:af:3f:4e:fb:05:d1:80:71:27:87:a5: 71:53:8f:ab:b9:bf:2b:08:24:76:e3:06:71:3f:9b: a3:63:df:1d:c5:00:7a:b3:ef:30:75:74:fc:ff:df: 0a:a1:c7:fd:be:e6:38:b1:d9:23:ac:07:22:a3:79: e3:ed:6c:a5:80:48:55:1a:02:7c:e1:49:78:cf:56: e1:ab:d9:06:c2:03:4c:7e:b1:1c:d2:6a:b2:5b:0a: ee:7a:88:15:17:4c:3f:2e:57:bd:ba:70:b4:dc:ed: 80:8a:ef:e7:66:da:cd:26:04:bb:76:06:60:3c:ad: 7a:c2:c4:3f:71:4f:8c:70:4e:16:56:57:e8:fc:d0: 85:90:c2:a2:68:75:35:88:94:11:89:7d:ed:95:ca: 7c:15:3d:1a:c8:53:23:f9:54:01:89:f9:20:86:99: 1e:1c:49:d1:93:d3:3b:27:84:a3:59:d6:ca:e9:68: 88:fb:2b:dd:86:f7:70:96:6e:71:01:2f:40:21:65: 81:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:50:24:75:24:EB:66:D6:44:45:67:30:4C:59:3A:B3:DB:F0:6E:5E X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:e3:1a:57:5d:e3:b9:3d:a7:f0:30:fc:f1:40:57:ac:58:a5: 97:dc:c4:6f:04:a4:0f:5d:8b:af:e0:5c:7b:ab:50:b2:cf:22: 9e:46:e6:93:b5:e3:fc:08:08:37:6d:dc:8e:3d:76:9d:71:45: 82:27:c0:8b:75:40:e6:81:8a:a4:58:44:53:5f:64:49:b9:87: 88:dc:be:d6:05:dc:37:8c:a3:02:a4:9d:cb:c0:a0:ed:9e:a0: 26:16:7a:ea:dc:1e:5a:6b:8b:cf:a1:b6:3d:b2:1b:3d:82:a9: ab:d3:a6:6b:44:13:da:79:56:30:50:9e:4e:f7:c5:cc:30:ce: ae:05:db:fa:c5:25:87:6e:9e:ed:34:de:bf:16:17:a9:6f:c1: 34:b5:77:03:04:b4:26:97:b1:b3:b4:d1:80:6f:be:59:12:c4: 19:4c:1e:ee:49:d1:e1:18:a7:3e:7d:73:e3:d3:20:6f:37:fa: 4b:5d:5f:04:0d:f0:9f:5d:b8:be:2a:f2:1b:49:7c:87:df:c2: 52:44:b8:ec:5c:2e:62:16:9b:9d:bf:35:60:4c:54:fc:f2:a9: 95:b2:e4:1f:aa:16:1e:88:1b:ad:46:a2:17:50:17:0d:0d:05: 85:11:84:a2:dc:c0:f4:f1:ab:4d:1a:26:3a:36:a9:70:38:0d: e2:52:38:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwNTA0MTQxNjI1WhcNMjYwNTExMTQxNjI1WjAYMRYwFAYD VQQDEw02OWY4YWEzOS1jOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tz3/osiTmt0EFqrfLz4HsiVXKIjPNU11Oux7EDjt4Ux1765sG54qCwf2eGA 6I59s1P6uMZ3h2zGWoe9rTchrz9O+wXRgHEnh6VxU4+rub8rCCR24wZxP5ujY98d xQB6s+8wdXT8/98Kocf9vuY4sdkjrAcio3nj7WylgEhVGgJ84Ul4z1bhq9kGwgNM frEc0mqyWwrueogVF0w/Lle9unC03O2Aiu/nZtrNJgS7dgZgPK16wsQ/cU+McE4W Vlfo/NCFkMKiaHU1iJQRiX3tlcp8FT0ayFMj+VQBifkghpkeHEnRk9M7J4SjWdbK 6WiI+yvdhvdwlm5xAS9AIWWBnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIdQJHUk 62bWREVnMExZOrPb8G5eMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR+MaV13juT2n8DD88UBXrFill9zEbwSkD12Lr+Bce6tQss8inkbmk7Xj/AgI N23cjj12nXFFgifAi3VA5oGKpFhEU19kSbmHiNy+1gXcN4yjAqSdy8Cg7Z6gJhZ6 6tweWmuLz6G2PbIbPYKpq9Oma0QT2nlWMFCeTvfFzDDOrgXb+sUlh26e7TTevxYX qW/BNLV3AwS0Jpexs7TRgG++WRLEGUwe7knR4RinPn1z49Mgbzf6S11fBA3wn124 viryG0l8h9/CUkS47FwuYhabnb81YExU/PKplbLkH6oWHogbrUaiF1AXDQ0FhRGE otzA9PGrTRomOjapcDgN4lI4+w== -----END CERTIFICATE-----Generated at Tue May 5 09:39:21 2026 by rpki-client