$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: PxYt0sFW3C7VX3hfPiQfjvLB6wtcP4RJLmdQ9hrOhfg= Subject key identifier: F9:C4:1A:9B:9A:E4:81:C2:84:C7:5B:63:FC:D4:57:2D:C8:DF:E1:98 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B94 Signing time: Wed 20 May 2026 19:07:20 +0000 Manifest this update: Wed 20 May 2026 19:07:19 +0000 Manifest next update: Wed 27 May 2026 19:07:19 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: fZ5lP7NKDrGLrPEbmQo5qiVSksYEObug53BGcIouqaU=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 1+jD0Tan+qw9lGGMHwgX8x7RXas01clsSnD+5FJCfx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: May 20 19:07:19 2026 GMT Not After : May 27 19:07:19 2026 GMT Subject: CN=6a0e0667-289d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:04:59:c2:f2:6f:3e:8c:8f:d1:24:b8:0d:c7: f8:19:94:c9:b1:d3:a6:ca:5d:16:e8:a9:6b:40:51: 8e:b5:13:3d:50:1e:ae:b1:94:7d:33:22:eb:d2:1e: 33:5d:6c:89:c6:96:e2:c5:68:19:d7:bf:d4:aa:19: 54:8a:8e:cf:cc:c3:5e:e6:81:c3:71:6c:4f:2a:eb: 72:2c:d9:37:4a:2c:79:58:e4:cf:48:10:54:24:03: 72:4b:f1:09:d8:dc:59:aa:0a:c9:e7:1b:3b:6c:f9: 79:8a:04:aa:91:e0:a2:b0:48:95:cb:de:7f:5c:fb: 90:5d:53:90:67:87:9c:20:37:e0:d7:74:64:2e:43: 9e:49:70:01:21:61:92:cd:fb:a9:be:e6:25:0d:1d: 37:99:fd:c9:15:b0:12:75:55:ef:a9:e0:a6:93:73: d7:f8:3f:a8:d5:43:1a:36:aa:e1:62:8a:1f:2c:ce: d4:da:69:b6:f3:50:88:6e:85:6c:cf:1b:83:14:0e: 1a:72:47:d5:59:64:56:f0:8d:d9:24:26:f8:d4:cf: 64:a6:d5:bf:85:2f:a7:da:e4:7a:19:c5:be:98:e4: 1f:39:1a:73:69:ec:69:a5:cf:c3:4b:6e:f2:dd:f3: 63:a4:fd:97:9b:98:88:51:a5:75:58:5e:35:82:33: e3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C4:1A:9B:9A:E4:81:C2:84:C7:5B:63:FC:D4:57:2D:C8:DF:E1:98 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:8d:f7:49:aa:1a:b6:af:13:03:b9:aa:37:6d:b6:c0:40:1a: 37:0b:b3:73:73:76:4c:a7:40:a5:f8:a8:06:d4:04:f6:42:6b: 1c:9b:a2:b7:ab:3d:bb:65:77:bb:34:d2:cc:f5:f7:71:cb:da: 0f:16:91:8e:84:ae:40:e1:c8:9d:82:05:ab:08:4c:82:d7:e7: c0:55:02:31:cd:19:26:de:5b:0a:7b:c1:51:ec:d7:6e:ef:1b: 76:4f:c2:3b:ca:83:d3:a6:d9:f2:64:35:59:5d:54:8c:d9:8a: a4:91:0d:e7:98:cf:d2:94:c7:a4:9a:e7:fa:26:02:04:97:5a: 1b:80:f3:f4:54:f8:b4:91:03:86:ac:8d:d4:df:9c:11:79:c3: 41:1e:7e:77:97:55:87:72:b5:64:1b:2f:d5:86:90:84:b9:a8: 23:ce:e3:d4:63:e9:e6:5e:0c:9b:ea:b0:ea:10:e8:74:02:aa: 68:55:45:b3:d8:55:ff:74:9e:f4:a4:29:ba:a4:7c:a8:4a:dd: 87:64:3d:93:de:b7:93:4e:01:72:24:e2:90:b4:bc:2b:b8:d4: 11:0d:08:bf:d1:2d:85:bc:0b:50:82:d4:8b:db:f4:e0:ae:87: 00:10:f8:9f:d6:75:d0:68:6c:50:50:00:7e:a8:45:f6:e1:53: 56:26:55:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjYwNTIwMTkwNzE5WhcNMjYwNTI3MTkwNzE5WjAYMRYwFAYD VQQDEw02YTBlMDY2Ny0yODlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QRZwvJvPoyP0SS4Dcf4GZTJsdOmyl0W6KlrQFGOtRM9UB6usZR9MyLr0h4z XWyJxpbixWgZ17/UqhlUio7PzMNe5oHDcWxPKutyLNk3Six5WOTPSBBUJANyS/EJ 2NxZqgrJ5xs7bPl5igSqkeCisEiVy95/XPuQXVOQZ4ecIDfg13RkLkOeSXABIWGS zfupvuYlDR03mf3JFbASdVXvqeCmk3PX+D+o1UMaNqrhYoofLM7U2mm281CIboVs zxuDFA4ackfVWWRW8I3ZJCb41M9kptW/hS+n2uR6GcW+mOQfORpzaexppc/DS27y 3fNjpP2Xm5iIUaV1WF41gjPjlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPnEGpua 5IHChMdbY/zUVy3I3+GYMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAz433Saoatq8TA7mqN222wEAaNwuzc3N2TKdApfioBtQE9kJrHJuit6s9u2V3 uzTSzPX3ccvaDxaRjoSuQOHInYIFqwhMgtfnwFUCMc0ZJt5bCnvBUezXbu8bdk/C O8qD06bZ8mQ1WV1UjNmKpJEN55jP0pTHpJrn+iYCBJdaG4Dz9FT4tJEDhqyN1N+c EXnDQR5+d5dVh3K1ZBsv1YaQhLmoI87j1GPp5l4Mm+qw6hDodAKqaFVFs9hV/3Se 9KQpuqR8qErdh2Q9k963k04BciTikLS8K7jUEQ0Iv9EthbwLUILUi9v04K6HABD4 n9Z10GhsUFAAfqhF9uFTViZVPg== -----END CERTIFICATE-----Generated at Thu May 21 10:37:35 2026 by rpki-client