$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: c8bCLh/CH+5haz91daWitqMenimua0i95HMO7tQDF+Y= Subject key identifier: C0:DE:6C:A1:72:91:53:E3:08:D6:6D:CF:F9:8C:38:8A:1D:4D:B7:7E Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 231B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 22C4 Signing time: Fri 15 May 2026 04:25:14 +0000 Manifest this update: Fri 15 May 2026 04:25:13 +0000 Manifest next update: Fri 22 May 2026 04:25:13 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: GnStWxDHizQetSMTw1aiXZefVRp8cerP/gxlmnKyTH0=) 2: 0EB9C488501611F1BCA6FB50C1833773.roa (hash: hjLor0naDuB1MHE0ASMpLEp5N2HxCBYq1jwBVQbTUI4=) 3: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: fekDwvX/Pg2YZ9Fe3QZAnU92TpFpbncEnNKE83KMH+M=) 4: B4A61D2A501511F19B7490E3C0833773.roa (hash: ULhHp7+sYXuEA4oAMAlvVXNC4B0eNrv0HmhmrXot1Bo=) 5: 05302944D38811F096791A31C4F9AE02.roa (hash: 0TpazCbbP+eq5jbcmOC+QEukwM8XRQa407MbLaS5Vso=) 6: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: qG9igdUpXB7wk8yx/k2tOuq/gYueDRGW4t5eH6cDkms=) 7: E049BA50335911F193981E57CA833773.roa (hash: ccrqPCbKxkHUXLuFhP49NrNOV6bbgxDvMbrEYPU0/70=) 8: D128F6A2366111F19FA677FACA833773.roa (hash: ZY7Vk9qpQDHcmIYTowz44r/Aadjt59khWHwSNvAaAYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 04:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8987 (0x231b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: May 15 04:25:13 2026 GMT Not After : May 22 04:25:13 2026 GMT Subject: CN=6a06a02a-4039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:67:47:21:81:65:f0:44:0e:42:34:c3:02:3a: 08:0a:e5:f8:d3:5a:8f:2d:65:86:c9:6d:65:90:0b: 44:a5:3d:2e:4b:ca:18:ab:da:e7:81:0f:c1:b0:8d: 27:8d:77:39:4f:39:97:2a:58:e4:0a:d2:da:29:8e: 26:4b:1b:36:91:95:14:bf:9c:d8:82:53:0b:bc:38: ed:19:38:35:45:85:e8:ce:a7:f5:60:29:ad:d0:be: 16:b3:f6:14:f0:11:16:3b:b1:73:fc:72:ad:b7:a1: 09:54:d4:e7:b7:01:ac:a8:b5:b0:19:4e:40:2c:bb: 47:b3:19:70:c3:70:e9:45:91:a2:62:e8:96:fc:85: 3e:8d:90:7b:03:2b:55:f4:f0:22:ba:03:a4:6c:48: c2:fd:8b:d6:08:e9:a7:14:3e:f7:ee:d2:6c:6a:52: 27:d9:97:ac:88:07:f3:8d:1b:2e:10:70:c2:45:3c: 38:9e:7b:6c:09:4d:fd:84:ee:25:d7:66:85:12:6e: fc:46:a6:f2:49:68:bb:db:75:1d:80:28:6c:76:78: 85:77:be:c1:7f:75:67:bb:ae:74:57:8b:45:89:aa: f7:ef:9f:ff:06:44:64:c5:4b:00:02:f5:63:60:a2: ea:87:a3:36:71:76:2f:2b:76:5b:06:71:84:44:27: b5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DE:6C:A1:72:91:53:E3:08:D6:6D:CF:F9:8C:38:8A:1D:4D:B7:7E X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:4f:47:f2:12:bc:48:a7:db:36:14:5e:b1:17:3e:ee:5b:77: 72:73:7d:24:b7:98:f3:9a:93:35:9f:46:52:44:5f:d4:27:91: cd:d3:59:25:21:b1:7d:b1:7f:1a:80:27:3b:20:92:ee:d4:4e: 2a:50:d1:73:62:67:3a:68:97:17:1a:64:7d:df:a9:c9:c4:b2: 9c:7d:59:71:b6:57:89:e8:fc:47:a8:be:7c:24:a2:a3:9c:24: 3c:57:fd:40:66:5e:6b:ba:ec:6a:17:2e:53:c5:d2:57:7b:45: b0:19:cc:e5:ce:d4:6a:7d:23:b8:d7:24:28:9b:af:0c:54:4a: 7f:e3:94:b6:b9:79:ec:51:0d:f7:a3:92:d5:dd:91:b4:9e:ec: b3:2c:eb:7d:da:72:47:84:b8:ea:c2:45:42:84:30:c9:a1:f0: b7:da:d1:20:78:ad:f0:61:97:47:8c:c2:06:f6:1f:e7:70:0e: 0a:77:61:a5:49:9a:97:ec:41:c1:a5:cc:53:a4:71:8e:23:5d: 7f:4f:4a:03:8c:1b:07:c3:22:b9:35:68:c1:ff:5a:80:5e:90: ec:ea:a2:fd:81:f0:bb:c9:d7:68:e4:b2:11:3e:b9:54:3a:47: 61:80:5e:36:7c:0d:04:c3:0a:70:96:ae:cd:2d:98:55:90:2b: a8:c8:82:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjYwNTE1MDQyNTEzWhcNMjYwNTIyMDQyNTEzWjAYMRYwFAYD VQQDEw02YTA2YTAyYS00MDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWdHIYFl8EQOQjTDAjoICuX401qPLWWGyW1lkAtEpT0uS8oYq9rngQ/BsI0n jXc5TzmXKljkCtLaKY4mSxs2kZUUv5zYglMLvDjtGTg1RYXozqf1YCmt0L4Ws/YU 8BEWO7Fz/HKtt6EJVNTntwGsqLWwGU5ALLtHsxlww3DpRZGiYuiW/IU+jZB7AytV 9PAiugOkbEjC/YvWCOmnFD737tJsalIn2ZesiAfzjRsuEHDCRTw4nntsCU39hO4l 12aFEm78RqbySWi723UdgChsdniFd77Bf3Vnu650V4tFiar375//BkRkxUsAAvVj YKLqh6M2cXYvK3ZbBnGERCe1vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMDebKFy kVPjCNZtz/mMOIodTbd+MB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiE9H8hK8SKfbNhResRc+7lt3cnN9JLeY85qTNZ9GUkRf1CeRzdNZJSGxfbF/ GoAnOyCS7tROKlDRc2JnOmiXFxpkfd+pycSynH1ZcbZXiej8R6i+fCSio5wkPFf9 QGZea7rsahcuU8XSV3tFsBnM5c7Uan0juNckKJuvDFRKf+OUtrl57FEN96OS1d2R tJ7ssyzrfdpyR4S46sJFQoQwyaHwt9rRIHit8GGXR4zCBvYf53AOCndhpUmal+xB waXMU6RxjiNdf09KA4wbB8MiuTVowf9agF6Q7Oqi/YHwu8nXaOSyET65VDpHYYBe NnwNBMMKcJauzS2YVZArqMiCoA== -----END CERTIFICATE-----Generated at Fri May 15 09:06:56 2026 by rpki-client