$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: aNJp0ZMbqK0kstGquP0P9a/JKuGCq8llWpvdcl0fmVc= Subject key identifier: 31:66:76:88:38:A0:1C:93:69:2A:C9:03:8D:B7:36:12:C8:BE:AE:D9 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 090C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 0904 Signing time: Wed 20 May 2026 20:18:56 +0000 Manifest this update: Wed 20 May 2026 20:18:55 +0000 Manifest next update: Wed 27 May 2026 20:18:55 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: x6zTt5L7GAJemILL3QFwVnsERPkLrZvNGFt6+hd0wjM=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: C9SJEB+K9J+a2aEjNLQZMOXVR8Yr7jgVdMpBsNeJ+gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2316 (0x90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: May 20 20:18:55 2026 GMT Not After : May 27 20:18:55 2026 GMT Subject: CN=6a0e172f-59a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9a:76:8d:87:c7:e1:26:00:23:39:ee:b5:84: d0:d2:df:5f:35:f5:d5:78:56:8d:bc:20:15:3d:89: 41:15:71:8b:87:92:e4:78:33:2c:f5:5e:7e:8c:32: 1b:91:b8:da:11:01:c5:43:53:ae:45:6c:df:35:19: c3:6f:3a:67:4b:78:3a:6f:6a:f8:b4:e3:ba:0e:cb: dd:a9:8e:dc:b2:c6:05:11:f4:75:13:6d:6e:f4:24: 66:8a:6c:a1:4f:7e:13:59:7e:14:14:7a:1c:90:27: d5:61:18:1e:2f:71:b7:a7:5c:bc:4a:51:6f:77:43: e4:f5:6a:85:91:4c:3b:72:6f:1b:da:28:34:2d:b9: 52:0f:25:a6:4f:15:dd:0b:8c:61:43:31:e0:c6:5a: ec:b5:ce:b6:a9:a1:17:fc:7e:86:63:28:12:f1:45: 2b:db:1e:f9:cf:0a:36:d2:90:5c:46:3d:1c:6c:d5: 31:c6:49:90:29:ed:4e:bb:09:e0:28:e7:56:fd:23: 57:68:45:5c:52:52:cc:e9:c1:37:aa:13:8b:07:70: 4b:db:34:43:5d:76:5c:1f:58:23:bf:36:9a:72:83: ce:c5:91:55:9f:24:12:e2:2c:18:91:3d:c6:b7:d4: 5c:6a:dd:04:f4:81:a8:7a:bb:ab:6a:76:bd:56:fe: 4c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:66:76:88:38:A0:1C:93:69:2A:C9:03:8D:B7:36:12:C8:BE:AE:D9 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:2e:e6:1c:74:67:02:05:31:0b:e6:bf:4a:13:60:2a:84:78: 38:81:1b:9f:10:a2:de:40:c9:87:be:7a:9a:77:3e:24:35:8e: 6f:fe:cb:32:50:47:86:2b:8c:ba:26:8a:7d:41:aa:25:59:2c: 24:8b:48:e1:32:ef:e8:ea:d1:8b:81:41:17:b0:16:56:e8:04: 7a:aa:37:6c:8a:f3:9f:da:b5:c7:0a:16:2b:21:7e:82:7b:b5: 66:64:89:2b:4a:e1:35:93:f0:f2:9b:45:5c:43:8f:f6:98:30: 33:82:11:83:9c:9c:79:96:80:58:27:de:32:70:a9:95:a4:10: 59:8d:3d:c7:b5:62:2b:18:37:fe:a1:e9:37:f3:d5:91:93:d5: 64:55:e8:f4:5c:f6:7f:3b:63:e3:76:fe:eb:ce:ca:73:8a:32: 60:81:7a:7a:2e:7e:fd:82:fb:57:64:0f:76:5d:6e:98:b2:b5: 10:91:67:94:3b:33:89:e1:2b:52:b7:32:fc:c1:ea:a8:2a:5f: 05:a3:3b:94:4a:cc:e1:7c:8e:57:16:97:fb:7a:30:29:bf:db: 0d:b0:4e:0d:21:87:52:99:43:ca:cc:00:6f:73:85:32:d2:c9: 31:4c:9c:34:5f:38:63:49:58:79:3b:e9:03:05:27:6d:32:14: c4:2b:e1:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjYwNTIwMjAxODU1WhcNMjYwNTI3MjAxODU1WjAYMRYwFAYD VQQDEw02YTBlMTcyZi01OWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Zp2jYfH4SYAIznutYTQ0t9fNfXVeFaNvCAVPYlBFXGLh5LkeDMs9V5+jDIb kbjaEQHFQ1OuRWzfNRnDbzpnS3g6b2r4tOO6DsvdqY7cssYFEfR1E21u9CRmimyh T34TWX4UFHockCfVYRgeL3G3p1y8SlFvd0Pk9WqFkUw7cm8b2ig0LblSDyWmTxXd C4xhQzHgxlrstc62qaEX/H6GYygS8UUr2x75zwo20pBcRj0cbNUxxkmQKe1Ouwng KOdW/SNXaEVcUlLM6cE3qhOLB3BL2zRDXXZcH1gjvzaacoPOxZFVnyQS4iwYkT3G t9Rcat0E9IGoerurana9Vv5MPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDFmdog4 oByTaSrJA423NhLIvq7ZMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmS7mHHRnAgUxC+a/ShNgKoR4OIEbnxCi3kDJh756mnc+JDWOb/7LMlBHhiuM uiaKfUGqJVksJItI4TLv6OrRi4FBF7AWVugEeqo3bIrzn9q1xwoWKyF+gnu1ZmSJ K0rhNZPw8ptFXEOP9pgwM4IRg5yceZaAWCfeMnCplaQQWY09x7ViKxg3/qHpN/PV kZPVZFXo9Fz2fztj43b+687Kc4oyYIF6ei5+/YL7V2QPdl1umLK1EJFnlDszieEr Urcy/MHqqCpfBaM7lErM4XyOVxaX+3owKb/bDbBODSGHUplDyswAb3OFMtLJMUyc NF84Y0lYeTvpAwUnbTIUxCvhag== -----END CERTIFICATE-----Generated at Thu May 21 09:30:45 2026 by rpki-client