$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: nTXJREoIAkUqqwmUYjGBrcl4GTofw5rgi7IMCXsk30k= Subject key identifier: 07:C7:CB:E5:B1:CC:F6:13:36:D6:66:9B:39:B4:39:96:06:A2:CE:EE Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 064E Signing time: Mon 18 May 2026 22:35:24 +0000 Manifest this update: Mon 18 May 2026 22:35:24 +0000 Manifest next update: Mon 25 May 2026 22:35:24 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: hfKMFWXEwxQ2+iI0tnyeSS36TItMZVGaEBZwgQ6Ji5I=) 2: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: ljhzAAAHOEbQtw8/O2WirKoWv6XtLYHxhjuJKY3iiZM=) 3: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: GBummmykHnsRNOp2UTZVHW61aelGglaz1bE3tCnWo5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 22:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: May 18 22:35:24 2026 GMT Not After : May 25 22:35:24 2026 GMT Subject: CN=6a0b942c-903f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:36:aa:90:9a:09:92:c7:af:cc:f8:0f:fd:b1: 73:cb:04:a0:d6:63:51:73:c8:d8:38:80:2e:a5:f7: ca:f9:23:77:81:0b:99:09:db:ea:1b:4b:42:02:03: ae:d7:71:17:22:a2:2a:b2:53:40:88:0c:f5:fd:2d: 82:15:dc:1d:63:c5:7b:ea:14:48:82:f6:77:90:d7: 15:10:12:b1:47:7d:ea:ac:97:2a:63:76:9d:79:bd: ce:6b:49:ff:85:6f:a8:38:7d:8a:3d:8c:00:58:eb: 22:f7:0a:9f:ac:36:8e:ee:2e:89:a3:50:b9:2f:bd: c1:79:5b:28:f3:07:61:0c:9f:ff:94:99:6e:c5:8d: 26:46:8c:68:98:88:55:64:bf:94:6d:3e:f9:91:b2: 58:2c:c2:0f:49:19:6f:ff:2f:d9:a8:db:92:db:5c: a3:1e:02:c2:2a:55:21:e3:db:b6:8b:07:92:65:52: 20:e4:90:64:ca:0f:75:b1:32:5d:bf:1d:cc:8c:da: b1:77:e7:9b:77:9a:09:e3:31:a0:5b:d1:37:4e:56: 45:bf:d0:a3:ea:35:44:a3:ab:eb:b4:a6:c3:02:18: 94:3f:61:d2:68:cd:4e:b8:59:44:7f:b1:5c:86:c9: fe:55:b6:a3:5d:11:c3:41:69:0c:3f:5a:76:8d:79: 0e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C7:CB:E5:B1:CC:F6:13:36:D6:66:9B:39:B4:39:96:06:A2:CE:EE X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f0:b9:04:2e:d6:a6:57:b1:7e:32:50:67:4f:be:9f:b1:a2:59: ff:76:54:df:5c:d1:ee:95:bf:aa:93:e4:06:c4:6f:c9:13:c9: c7:89:77:8c:20:5f:1b:ec:97:74:2e:fa:bc:cd:48:fc:8b:3a: fa:79:50:3d:4a:a9:a0:52:af:93:85:0c:ba:75:22:49:b0:68: 70:75:eb:0f:5c:43:6d:c6:f3:2a:e0:d9:99:20:c4:87:38:3c: 2c:ea:d8:34:7e:af:d6:3d:63:9d:40:3a:04:6c:ed:7b:f6:49: 2b:9d:04:c3:28:b6:83:3b:47:b1:f1:8f:dc:a1:0e:c5:f5:71: 8f:b2:51:fb:72:27:fd:4a:12:76:e2:63:6c:04:66:4a:68:90: 5f:87:5f:46:3d:93:4a:fd:85:8d:2c:3c:d7:30:37:1d:c7:3e: 9a:b2:22:c8:ae:69:55:a7:3a:9e:40:39:67:f5:bf:5f:58:8b: 71:a4:bd:2f:3d:a6:4f:cb:15:da:98:ca:33:c2:a1:83:66:8c: 4e:34:0d:c9:1f:49:b8:20:c2:a5:c8:12:d9:1d:81:47:06:e7: b5:d3:d5:a6:cf:8c:a4:39:12:58:1b:53:1b:79:1b:cc:03:53: 23:67:93:10:06:a0:d7:98:0c:51:47:d4:0e:21:e3:7a:1d:a5: 31:75:ee:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjYwNTE4MjIzNTI0WhcNMjYwNTI1MjIzNTI0WjAYMRYwFAYD VQQDEw02YTBiOTQyYy05MDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiTaqkJoJksevzPgP/bFzywSg1mNRc8jYOIAupffK+SN3gQuZCdvqG0tCAgOu 13EXIqIqslNAiAz1/S2CFdwdY8V76hRIgvZ3kNcVEBKxR33qrJcqY3adeb3Oa0n/ hW+oOH2KPYwAWOsi9wqfrDaO7i6Jo1C5L73BeVso8wdhDJ//lJluxY0mRoxomIhV ZL+UbT75kbJYLMIPSRlv/y/ZqNuS21yjHgLCKlUh49u2iweSZVIg5JBkyg91sTJd vx3MjNqxd+ebd5oJ4zGgW9E3TlZFv9Cj6jVEo6vrtKbDAhiUP2HSaM1OuFlEf7Fc hsn+VbajXRHDQWkMP1p2jXkOHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfHy+Wx zPYTNtZmmzm0OZYGos7uMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA8LkELtamV7F+MlBnT76fsaJZ/3ZU31zR7pW/qpPkBsRvyRPJx4l3jCBfG+yX dC76vM1I/Is6+nlQPUqpoFKvk4UMunUiSbBocHXrD1xDbcbzKuDZmSDEhzg8LOrY NH6v1j1jnUA6BGzte/ZJK50Ewyi2gztHsfGP3KEOxfVxj7JR+3In/UoSduJjbARm SmiQX4dfRj2TSv2FjSw81zA3Hcc+mrIiyK5pVac6nkA5Z/W/X1iLcaS9Lz2mT8sV 2pjKM8Khg2aMTjQNyR9JuCDCpcgS2R2BRwbntdPVps+MpDkSWBtTG3kbzANTI2eT EAag15gMUUfUDiHjeh2lMXXuSQ== -----END CERTIFICATE-----Generated at Tue May 19 10:21:42 2026 by rpki-client