$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: ivferzLhwQPUCIgi8KTEvovJhldx3XEGWS5mRqTRr24= Subject key identifier: 46:5D:07:BA:F3:EC:2F:F7:1D:57:D2:C1:A7:AA:87:96:A8:67:20:A3 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0AD3 Signing time: Wed 20 May 2026 19:28:09 +0000 Manifest this update: Wed 20 May 2026 19:28:09 +0000 Manifest next update: Wed 27 May 2026 19:28:09 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: ZdB3TAvDfnSPyEbVW0VET7aG+9g3F0JqQieRoXvCLus=) 2: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: 2CxBlSEZ4s9h+CG+sdkPtbZiMyYV71gXHZ/DNWmS4OY=) 3: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: fFsNR12R3pP/AJUsoiljuBLUKnPB5wu9KTa5f+JWnzE=) 4: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: 3zmhoqDN3914HCGCg2WBUkiHp98MLEWrF9AHJiv1VWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: May 20 19:28:09 2026 GMT Not After : May 27 19:28:09 2026 GMT Subject: CN=6a0e0b49-32ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:2a:ea:1d:50:9d:a1:aa:44:24:ee:7c:2f: f5:b2:bc:34:4f:ae:23:d6:ca:3a:ab:84:12:8b:9c: fd:0d:ac:9a:cd:b0:5d:69:b3:36:c7:f4:f9:f1:b4: 6f:e6:c4:03:5d:19:2f:8a:c0:58:24:31:2d:0c:b0: 43:79:44:67:8c:2c:2b:c7:ec:41:05:dd:07:42:9a: c3:cc:e2:e2:3d:4b:30:59:a1:e4:1d:09:1b:e5:4a: 67:e1:a3:5a:17:4a:2a:10:df:fd:dd:1d:36:56:dd: 9c:ac:93:e6:42:59:fe:d1:ad:c5:49:ab:12:d8:8b: a4:10:b9:e8:8c:9a:fd:73:6f:93:af:8a:a0:d7:e2: e6:60:1d:f4:97:5d:ec:3d:55:c4:5c:a9:b1:97:f6: 96:61:7f:76:91:a5:ac:a9:8a:2e:9b:8e:cf:72:61: b4:52:af:a6:11:29:97:4d:e0:1c:fa:2d:80:8b:b3: f6:26:ac:8a:18:f1:30:ae:b0:55:7f:ff:79:80:61: bc:4d:b7:94:79:24:ea:f2:04:ab:c8:58:83:0d:e0: 75:70:87:f6:6d:8f:cb:c2:3e:7b:ba:c6:4c:87:cc: 6b:fa:c6:fd:07:e5:ec:f5:ac:53:f6:9b:5e:c5:33: 3d:c7:c1:b6:da:ba:8a:d7:40:9f:93:c9:7f:0c:16: 59:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5D:07:BA:F3:EC:2F:F7:1D:57:D2:C1:A7:AA:87:96:A8:67:20:A3 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:e7:4f:18:3d:e1:47:fd:cc:ff:d5:ea:a8:95:1b:c5:c0:bf: ca:ff:4c:cb:6a:e4:6a:cc:0a:ca:65:41:c8:fc:ad:5b:71:88: ea:b4:f8:6d:15:36:97:ba:a1:23:1d:0c:cd:84:38:19:d1:25: 07:23:9d:4d:ab:d3:70:ae:bf:fd:63:33:89:a6:be:d8:5f:9d: 7a:fb:03:c4:e3:1b:02:95:e6:22:31:17:ed:15:0c:79:17:b7: 06:bb:94:88:57:ba:5c:f4:b6:70:7a:4f:77:6b:01:99:71:cb: 44:58:81:df:c2:fe:91:f7:37:a6:94:18:7d:9e:4d:9a:aa:52: 30:ed:fc:5f:f9:3e:a1:e3:9b:6d:d5:98:14:40:d6:15:36:3e: c9:81:f7:93:12:67:ba:bf:5f:05:7c:7d:31:05:43:83:8a:ee: f7:e0:9b:96:28:ed:de:34:bc:d1:48:04:e0:54:a7:2f:88:a9: 8e:37:51:d3:e0:6f:b5:a4:2a:9a:71:9b:5f:58:7e:33:a5:4a: a7:6d:5f:02:a1:f2:2c:82:1b:db:1c:04:fb:fa:bd:05:c2:2c: 31:4f:75:42:dd:28:94:ac:4d:bd:db:9d:e5:15:a9:b5:bb:0b: 69:b2:34:4d:f8:6c:df:4b:c9:07:2e:8c:19:4a:3b:23:51:37: 8b:4c:eb:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjYwNTIwMTkyODA5WhcNMjYwNTI3MTkyODA5WjAYMRYwFAYD VQQDEw02YTBlMGI0OS0zMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7Uq6h1QnaGqRCTufC/1srw0T64j1so6q4QSi5z9DayazbBdabM2x/T58bRv 5sQDXRkvisBYJDEtDLBDeURnjCwrx+xBBd0HQprDzOLiPUswWaHkHQkb5Upn4aNa F0oqEN/93R02Vt2crJPmQln+0a3FSasS2IukELnojJr9c2+Tr4qg1+LmYB30l13s PVXEXKmxl/aWYX92kaWsqYoum47PcmG0Uq+mESmXTeAc+i2Ai7P2JqyKGPEwrrBV f/95gGG8TbeUeSTq8gSryFiDDeB1cIf2bY/Lwj57usZMh8xr+sb9B+Xs9axT9pte xTM9x8G22rqK10Cfk8l/DBZZawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEZdB7rz 7C/3HVfSwaeqh5aoZyCjMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbedPGD3hR/3M/9XqqJUbxcC/yv9My2rkaswKymVByPytW3GI6rT4bRU2l7qh Ix0MzYQ4GdElByOdTavTcK6//WMziaa+2F+devsDxOMbApXmIjEX7RUMeRe3BruU iFe6XPS2cHpPd2sBmXHLRFiB38L+kfc3ppQYfZ5NmqpSMO38X/k+oeObbdWYFEDW FTY+yYH3kxJnur9fBXx9MQVDg4ru9+Cblijt3jS80UgE4FSnL4ipjjdR0+BvtaQq mnGbX1h+M6VKp21fAqHyLIIb2xwE+/q9BcIsMU91Qt0olKxNvdud5RWptbsLabI0 Tfhs30vJBy6MGUo7I1E3i0zrkg== -----END CERTIFICATE-----Generated at Thu May 21 09:37:54 2026 by rpki-client