$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: ri5dTN2E1iMDUKYuox8STZetdUDLtHTbFg/24abY44A= Subject key identifier: A6:97:D3:0D:0C:07:4E:96:7F:93:DD:2C:F2:86:F8:A7:DB:D8:9A:04 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 090B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0900 Signing time: Wed 20 May 2026 20:19:50 +0000 Manifest this update: Wed 20 May 2026 20:19:49 +0000 Manifest next update: Wed 27 May 2026 20:19:49 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: mfM0ZCpj5LuOAGO/KCjj+XiHFtDBEANe0K2xXecaVmQ=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: wbC8vyImx6v6ewZMr1D8zOdi43W+XjTwWRTdg25wKL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2315 (0x90b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: May 20 20:19:49 2026 GMT Not After : May 27 20:19:49 2026 GMT Subject: CN=6a0e1766-6bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e6:a6:94:73:16:2a:c0:7d:5f:c5:ec:3d:7c: 0e:72:3f:ed:e6:8d:8a:af:24:ec:11:ff:c6:b9:86: 45:2d:2f:7f:94:f2:7b:d2:ba:0d:ed:eb:77:f7:1d: b8:bb:58:3d:1d:37:0e:26:e2:4b:40:5e:7e:9a:a6: 29:67:2c:d3:56:22:13:45:d8:3a:37:d4:21:08:6e: 29:4a:6a:f2:2a:b9:61:21:36:d7:a9:43:4c:9f:e8: e9:63:9a:24:1d:50:bd:06:42:08:60:c2:0d:fe:33: 79:ae:3d:78:35:0a:ec:fb:18:26:9c:c0:d7:ab:36: a0:a2:99:2a:1b:dc:1f:5c:1c:26:2a:16:31:95:84: f7:13:2d:3d:a4:18:76:fd:70:51:48:f5:5c:60:ae: e7:46:9a:9f:b2:49:70:3b:db:b3:4c:28:5e:f9:e2: 7d:11:15:3b:9b:e4:40:d5:5d:d3:14:ff:bf:b4:51: 20:0d:2a:d0:c8:4e:13:30:bc:80:e5:ed:94:88:e3: ce:59:00:8e:93:e2:0f:0f:55:df:ad:0f:3e:a8:23: 6c:da:d4:b4:a2:6b:9c:90:de:0a:72:5d:2f:86:05: bc:7c:bc:de:66:4d:cf:b4:a5:08:ce:72:2d:ca:95: 3c:65:ce:ac:64:c9:bc:73:16:b9:3f:ce:ba:57:9a: fc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:97:D3:0D:0C:07:4E:96:7F:93:DD:2C:F2:86:F8:A7:DB:D8:9A:04 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:9c:12:6a:f8:d8:68:7b:74:9b:b7:45:36:d3:dc:00:dd:1f: 6b:a9:81:ea:ea:e2:61:12:11:5b:1b:cd:96:61:f8:27:76:34: fb:32:9b:71:44:ca:33:c4:84:ee:5e:2b:ca:71:a7:eb:8d:76: bd:10:95:aa:6f:0a:89:99:b2:ee:bc:bf:7d:97:33:d3:c7:19: 00:44:87:2a:ac:e9:ee:7f:2a:50:d2:31:2f:b9:ac:e1:f3:d0: 22:12:12:50:f1:92:d0:57:32:54:9b:70:d3:63:9f:1e:92:8f: a0:f2:15:70:4c:b3:e6:76:d7:f5:b0:0a:fd:cb:ec:4a:65:1e: 24:6b:94:0e:20:b2:90:1d:88:2a:22:59:6a:49:3c:01:ec:9f: c4:bc:9c:7a:34:b3:46:d7:e7:18:a0:43:12:80:65:0b:c7:d3: f0:fb:cb:08:01:df:79:3b:61:93:68:c2:0e:3e:05:9e:9a:2c: bc:c1:fd:27:6c:6b:9d:44:71:9c:0e:ae:89:22:48:be:14:1a: a4:a5:2e:50:e1:e4:37:7c:0b:b0:5b:49:7e:93:6e:be:f2:23: 66:f2:90:11:78:f4:40:9e:e2:84:44:61:7c:aa:19:9b:9e:f0: af:20:5f:a9:a3:1a:0c:0e:54:cc:56:be:c7:fc:c6:ab:3b:14: 33:17:05:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjYwNTIwMjAxOTQ5WhcNMjYwNTI3MjAxOTQ5WjAYMRYwFAYD VQQDEw02YTBlMTc2Ni02YmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuamlHMWKsB9X8XsPXwOcj/t5o2KryTsEf/GuYZFLS9/lPJ70roN7et39x24 u1g9HTcOJuJLQF5+mqYpZyzTViITRdg6N9QhCG4pSmryKrlhITbXqUNMn+jpY5ok HVC9BkIIYMIN/jN5rj14NQrs+xgmnMDXqzagopkqG9wfXBwmKhYxlYT3Ey09pBh2 /XBRSPVcYK7nRpqfsklwO9uzTChe+eJ9ERU7m+RA1V3TFP+/tFEgDSrQyE4TMLyA 5e2UiOPOWQCOk+IPD1XfrQ8+qCNs2tS0omuckN4Kcl0vhgW8fLzeZk3PtKUIznIt ypU8Zc6sZMm8cxa5P866V5r8gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKaX0w0M B06Wf5PdLPKG+Kfb2JoEMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYpwSavjYaHt0m7dFNtPcAN0fa6mB6uriYRIRWxvNlmH4J3Y0+zKbcUTKM8SE 7l4rynGn6412vRCVqm8KiZmy7ry/fZcz08cZAESHKqzp7n8qUNIxL7ms4fPQIhIS UPGS0FcyVJtw02OfHpKPoPIVcEyz5nbX9bAK/cvsSmUeJGuUDiCykB2IKiJZakk8 AeyfxLycejSzRtfnGKBDEoBlC8fT8PvLCAHfeTthk2jCDj4FnposvMH9J2xrnURx nA6uiSJIvhQapKUuUOHkN3wLsFtJfpNuvvIjZvKQEXj0QJ7ihERhfKoZm57wryBf qaMaDA5UzFa+x/zGqzsUMxcFXQ== -----END CERTIFICATE-----Generated at Thu May 21 10:16:15 2026 by rpki-client