$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: ScoPzrbIeDk0G7Nz6npny8zcvENKdzqRru7D1BRrpS4= Subject key identifier: 31:20:B6:87:22:42:D8:FE:58:1B:CB:13:E3:E2:C5:F9:D7:F7:40:DA Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 0638 Signing time: Wed 20 May 2026 22:48:23 +0000 Manifest this update: Wed 20 May 2026 22:48:23 +0000 Manifest next update: Wed 27 May 2026 22:48:23 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: bdyz6VcZJgaXtpaBUItXhpuZdM0JUYZ/ppvyrGuiE/Y=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: paFsFa6qVLCDV+k1MXzHkgPkBlhBBEj3AZlBzmVS9gs=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: KJ2mFEWkTtrCEZw9NVFYAAnTanzrSc/7NwbR3vngF7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: May 20 22:48:23 2026 GMT Not After : May 27 22:48:23 2026 GMT Subject: CN=6a0e3a37-78ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:38:5e:da:2a:53:9b:65:ab:48:55:7d:8c:4d: 39:a1:99:2a:7c:85:04:d2:ed:d7:b8:a7:63:7a:4f: 20:b1:4c:e7:06:6c:be:dc:11:bd:12:5b:9b:4b:e4: 00:96:0f:36:8b:08:29:db:a7:ec:56:1f:b4:72:f0: 1e:58:22:59:17:3e:f3:56:88:5f:45:98:f0:36:f7: 57:5c:8a:e8:49:93:76:6e:8b:fa:55:eb:83:f9:05: 98:b7:b6:d4:df:97:05:c7:a1:cc:79:07:b6:ea:08: e1:e2:fe:17:9b:b0:2e:c9:cf:3f:a2:e0:54:48:5b: 69:b1:27:9d:d7:f8:9f:29:75:c3:5a:16:21:27:6d: 2d:18:a9:00:74:21:af:82:03:22:8c:59:d7:ee:ee: 9d:1f:cc:52:a8:bf:a5:48:9d:8a:9c:7b:29:fa:c2: 4d:c4:ba:6b:83:57:cf:3a:e6:9d:78:57:3c:39:d7: 99:25:e6:e2:20:d7:79:34:fa:b0:ac:5d:b6:b0:8d: f4:da:7d:86:da:d5:45:ef:02:72:63:b2:1d:3e:98: 67:75:01:b3:13:12:3f:c3:1c:5f:17:80:d3:97:fb: c7:d3:67:c2:08:93:1d:89:bc:72:57:29:00:f9:02: 37:4f:6a:80:f0:98:bd:c7:e6:a7:67:a8:06:83:c0: 92:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:20:B6:87:22:42:D8:FE:58:1B:CB:13:E3:E2:C5:F9:D7:F7:40:DA X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:5f:a5:84:3f:76:99:b4:8c:d7:e1:4c:95:b2:1b:fe:e5:9d: da:da:ad:d7:50:a0:87:66:d2:b4:1d:9c:4c:57:80:18:d5:24: d9:50:d8:b2:1a:30:ae:d6:93:97:27:a9:f6:0b:b2:de:9f:c8: 1b:21:63:e2:5c:a7:d2:f7:fb:54:1f:65:c5:ef:5b:33:65:33: 51:db:36:51:46:81:05:7b:8e:6b:81:ec:96:d0:60:bf:b0:6c: 93:dc:87:d8:8b:3f:3b:26:3a:b4:37:3d:11:4a:a1:8d:92:67: ed:c5:e8:0b:46:ea:2f:b1:17:5e:60:a9:03:41:66:c3:2c:a1: 92:18:fb:d5:c3:e3:df:44:00:18:b4:e2:e4:2f:bc:21:85:4f: 3e:cd:c4:07:fd:df:30:85:ea:dd:99:97:eb:53:37:aa:a0:46: 70:99:de:58:7d:91:5e:10:1b:84:b6:43:37:03:de:16:f4:90: ea:ff:7a:33:36:c7:fc:ed:80:5d:1d:13:88:46:54:40:36:71: b0:db:69:33:bd:49:37:4d:9a:d8:7f:a6:67:7a:f0:34:86:75: 30:0e:e3:dd:a6:1e:c4:19:d9:9b:7c:45:8f:bd:a5:ef:18:9e: 2f:a6:f0:e9:e4:08:93:8a:84:b9:ac:73:7c:42:e9:43:4a:31: 54:d2:6a:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwNTIwMjI0ODIzWhcNMjYwNTI3MjI0ODIzWjAYMRYwFAYD VQQDEw02YTBlM2EzNy03OGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDhe2ipTm2WrSFV9jE05oZkqfIUE0u3XuKdjek8gsUznBmy+3BG9ElubS+QA lg82iwgp26fsVh+0cvAeWCJZFz7zVohfRZjwNvdXXIroSZN2bov6VeuD+QWYt7bU 35cFx6HMeQe26gjh4v4Xm7Auyc8/ouBUSFtpsSed1/ifKXXDWhYhJ20tGKkAdCGv ggMijFnX7u6dH8xSqL+lSJ2KnHsp+sJNxLprg1fPOuadeFc8OdeZJebiINd5NPqw rF22sI302n2G2tVF7wJyY7IdPphndQGzExI/wxxfF4DTl/vH02fCCJMdibxyVykA +QI3T2qA8Ji9x+anZ6gGg8CSrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDEgtoci Qtj+WBvLE+PixfnX90DaMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApV+lhD92mbSM1+FMlbIb/uWd2tqt11Cgh2bStB2cTFeAGNUk2VDYshowrtaT lyep9guy3p/IGyFj4lyn0vf7VB9lxe9bM2UzUds2UUaBBXuOa4HsltBgv7Bsk9yH 2Is/OyY6tDc9EUqhjZJn7cXoC0bqL7EXXmCpA0Fmwyyhkhj71cPj30QAGLTi5C+8 IYVPPs3EB/3fMIXq3ZmX61M3qqBGcJneWH2RXhAbhLZDNwPeFvSQ6v96MzbH/O2A XR0TiEZUQDZxsNtpM71JN02a2H+mZ3rwNIZ1MA7j3aYexBnZm3xFj72l7xieL6bw 6eQIk4qEuaxzfELpQ0oxVNJqZA== -----END CERTIFICATE-----Generated at Thu May 21 10:15:04 2026 by rpki-client