$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json) Hash identifier: 5c3dkgbhpms2W47G4fIsSh2MWPlHlBbGPh5xqQkxbyI= Subject key identifier: 6E:0F:EE:49:4B:45:4A:14:3D:B1:F0:F9:D1:BE:45:AF:92:74:76:31 Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Certificate serial: 1277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft Manifest number: 1245 Signing time: Wed 20 May 2026 17:08:36 +0000 Manifest this update: Wed 20 May 2026 17:08:35 +0000 Manifest next update: Wed 27 May 2026 17:08:35 +0000 Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: p7YqcjeBoiYNlJaAHMEgGq61KUvZyU+HBIO4XmEgizQ=) 2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: f+/uDtECPh4z9lUgGecamZwBqy/HTP1IaGpVkdXlDqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4727 (0x1277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE7DE, serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Validity Not Before: May 20 17:08:35 2026 GMT Not After : May 27 17:08:35 2026 GMT Subject: CN=6a0dea94-fcf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2d:f8:be:a8:0f:bf:42:85:6a:1f:cd:02:46: dd:d1:dc:b0:c8:30:85:da:66:ff:a5:c0:4a:ad:40: a5:ed:0f:07:93:a4:0b:27:79:a8:3c:e5:6b:a2:0a: c9:7f:40:92:e5:d6:c1:3b:ce:27:8b:8b:67:cb:d1: 39:ad:7a:d7:f8:4e:8e:c5:6c:45:8f:52:6e:05:94: ce:10:97:0c:39:bc:dd:ac:df:37:a8:f6:48:9c:ea: 8d:cc:76:2e:56:c3:11:23:88:a7:64:82:cb:5e:6a: f8:38:6d:7b:cb:85:04:5c:2c:86:e5:51:dc:ad:67: 8f:bf:38:40:67:d4:0e:98:ca:3c:31:4b:6e:58:15: 96:31:eb:98:4a:e2:dc:04:63:7b:ed:48:2d:3b:8c: 33:96:c4:eb:13:a0:2e:35:76:74:c0:a2:3d:09:d5: f2:7f:97:ad:76:44:fa:c6:07:4f:9c:ae:ea:92:64: 52:99:31:5f:03:c1:8c:f4:a1:31:96:1b:93:37:e7: 26:41:9a:23:e7:0e:19:b4:83:de:a0:68:79:48:29: ec:50:05:db:5d:e4:a1:a2:54:58:e1:96:b0:21:63: 87:32:ef:d0:ca:f3:50:9a:a2:f0:43:6b:22:f4:27: d4:cb:9d:9f:ad:1e:37:2d:72:d2:12:bb:d2:b7:f4: 1a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0F:EE:49:4B:45:4A:14:3D:B1:F0:F9:D1:BE:45:AF:92:74:76:31 X509v3 Authority Key Identifier: keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:7a:78:d0:07:ba:58:f0:a4:99:a8:9c:51:ff:10:ca:08:25: c8:c5:f6:2b:23:3c:a1:0c:e9:8e:ed:d8:9c:c2:a0:d8:37:76: 5a:0e:3d:70:0c:ae:c5:76:a3:75:1b:89:76:77:50:e5:01:40: ee:f8:dc:d4:45:fb:2c:33:f3:92:60:6d:a7:9d:7c:8b:98:76: 6f:dc:ea:57:df:65:39:9c:25:51:8f:c9:49:94:ac:17:a9:94: 81:85:a9:87:d4:d2:d1:d3:02:32:d3:81:73:db:12:8e:b2:b0: bc:8a:5c:9e:ac:dc:32:eb:c0:be:da:26:17:30:21:ba:a4:bb: 08:e3:99:19:42:c0:40:42:1f:e6:ac:2e:f0:82:d1:45:ef:17: 97:b8:75:e9:d5:96:a4:6c:59:87:96:3f:80:26:84:7a:42:75: 86:22:01:d2:76:55:c3:22:83:e2:18:c9:78:3b:d1:03:f1:ea: e7:0a:7a:6f:e2:98:a6:45:d1:2a:ca:25:b2:45:93:b7:9b:2d: 5a:35:a1:af:dd:2e:0c:5b:ad:11:14:81:6f:ab:e2:43:f1:10: 17:d9:dc:c6:cb:e8:99:8c:48:11:89:78:25:09:dd:8a:91:f5: 67:96:84:42:a3:eb:0d:3c:6f:de:80:89:1d:74:26:2d:cb:91: 1c:c7:e4:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU3REUxMTAvBgNVBAUTKDM3MTI3M0NGRDhDMkM5MDhCNjkxRDZCRUExNzVFOERF ODJCRDQzOUEwHhcNMjYwNTIwMTcwODM1WhcNMjYwNTI3MTcwODM1WjAYMRYwFAYD VQQDEw02YTBkZWE5NC1mY2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S34vqgPv0KFah/NAkbd0dywyDCF2mb/pcBKrUCl7Q8Hk6QLJ3moPOVrogrJ f0CS5dbBO84ni4tny9E5rXrX+E6OxWxFj1JuBZTOEJcMObzdrN83qPZInOqNzHYu VsMRI4inZILLXmr4OG17y4UEXCyG5VHcrWePvzhAZ9QOmMo8MUtuWBWWMeuYSuLc BGN77UgtO4wzlsTrE6AuNXZ0wKI9CdXyf5etdkT6xgdPnK7qkmRSmTFfA8GM9KEx lhuTN+cmQZoj5w4ZtIPeoGh5SCnsUAXbXeSholRY4ZawIWOHMu/QyvNQmqLwQ2si 9CfUy52frR43LXLSErvSt/Qa2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG4P7klL RUoUPbHw+dG+Ra+SdHYxMB8GA1UdIwQYMBaAFDcSc8/YwskItpHWvqF16N6CvUOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTdERS9DRUUzRDcxODA0 RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lRaTJrZGEtb1hYbzNvSzlR NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054Snp6OWpDeVFpMmtkYS1vWFhvM29LOVE1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTdERS9DRUUzRDcxODA0RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lR aTJrZGEtb1hYbzNvSzlRNW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApnp40Ae6WPCkmaicUf8QygglyMX2KyM8oQzpju3YnMKg2Dd2Wg49cAyuxXaj dRuJdndQ5QFA7vjc1EX7LDPzkmBtp518i5h2b9zqV99lOZwlUY/JSZSsF6mUgYWp h9TS0dMCMtOBc9sSjrKwvIpcnqzcMuvAvtomFzAhuqS7COOZGULAQEIf5qwu8ILR Re8Xl7h16dWWpGxZh5Y/gCaEekJ1hiIB0nZVwyKD4hjJeDvRA/Hq5wp6b+KYpkXR KsolskWTt5stWjWhr90uDFutERSBb6viQ/EQF9ncxsvomYxIEYl4JQndipH1Z5aE QqPrDTxv3oCJHXQmLcuRHMfkkQ== -----END CERTIFICATE-----Generated at Thu May 21 09:39:21 2026 by rpki-client