$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: y8m+EXZbFkbskVltoSc2Rmgos7sOiH67HCRgS2iYmcg= Subject key identifier: BD:2A:A7:13:5B:C1:F2:16:41:1C:88:85:B9:66:69:D5:28:47:7E:F4 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 029B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 0293 Signing time: Thu 21 May 2026 01:46:38 +0000 Manifest this update: Thu 21 May 2026 01:46:38 +0000 Manifest next update: Thu 28 May 2026 01:46:38 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: Dxuaeuwh95BUj8Hmym1PShSgulMS32CyytkV8jRrhPo=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: EhbdEYMmyBbOg+c6cZePofT5T8fPpEuhHFd/+ssLJFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0, serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: May 21 01:46:38 2026 GMT Not After : May 28 01:46:38 2026 GMT Subject: CN=6a0e63fe-9153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9c:32:72:9f:ba:d3:8a:60:b7:ef:f8:34:ea: c9:96:df:3d:29:98:74:89:c4:a7:6b:d2:4a:31:db: cc:0e:22:2b:c3:81:01:ce:27:a6:b2:d6:ed:8a:34: 00:cc:6d:57:0a:d3:7c:c5:8b:ab:1e:56:a1:05:68: 79:d5:f7:53:8c:f2:4b:65:f1:9c:3e:10:77:85:1f: eb:49:16:27:07:02:c8:1d:84:46:4c:4d:6a:44:8f: 9d:b3:16:f8:b7:29:23:b0:bc:84:7e:53:0a:a0:9b: e1:b0:51:bc:e6:98:95:a4:b0:6c:e2:b0:63:df:3f: 5b:34:af:3b:30:23:22:54:e3:86:47:7b:78:0f:b6: 14:99:bc:9c:fd:e3:ab:e6:e5:97:59:6c:b8:b7:90: 7e:89:fe:a2:e9:a3:c3:70:20:36:a8:dd:33:10:0a: c5:4e:b1:54:0c:75:07:12:32:cb:33:50:9a:1a:78: 0c:2a:4a:e1:d6:cf:1c:cb:27:db:06:cd:e4:7e:b0: 61:8d:89:20:d4:f2:58:92:81:d8:29:dd:4c:4b:d1: 66:5c:a5:00:b3:95:d4:da:7c:07:43:ae:f2:06:ce: 57:0f:49:7f:ed:62:24:b0:ae:dd:fd:d4:7e:c0:95: 9c:10:01:e3:47:0d:29:e6:f5:93:18:2b:ea:48:b5: 08:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2A:A7:13:5B:C1:F2:16:41:1C:88:85:B9:66:69:D5:28:47:7E:F4 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:de:87:0e:dc:8e:fc:a4:3b:f7:55:5a:73:68:08:df:2a:e9: f4:6e:af:85:67:29:65:7c:2a:d3:00:db:de:f1:98:15:df:e5: 94:93:f4:98:1a:56:7e:86:51:a7:ae:14:c9:be:21:85:8e:be: ea:5d:2d:34:c8:ec:e4:73:07:8e:f4:e4:6e:a1:30:09:96:80: a1:bf:b0:84:ac:75:09:59:db:6c:f2:a9:74:06:c5:4f:6a:7b: 84:f5:f6:c1:a1:9b:c3:cf:9d:2d:d4:c5:21:d7:fa:d5:4e:22: d1:bb:a5:fc:56:0e:97:12:59:5f:eb:ac:64:b8:64:85:ad:63: d4:bf:07:5d:72:b2:41:f9:17:dd:71:2b:be:d8:07:b1:c3:de: bb:e1:d7:da:53:0e:35:6f:97:8c:ba:a5:9f:54:69:1e:03:b8: 1a:28:1d:1f:fd:39:ea:f3:b0:07:0b:d7:b1:84:70:01:7d:0f: 35:b2:d4:49:3a:94:ac:ac:b0:86:cb:7c:83:eb:ae:fc:da:d7: 01:4d:bb:da:60:c3:e8:f1:b7:f2:4d:ad:ab:18:8c:2c:b5:da: 06:94:ab:09:66:cd:22:0f:9a:4d:9c:c9:e6:bb:20:49:19:a9: 2d:82:51:4e:d5:50:66:ec:85:1f:d9:5c:53:e9:f5:fd:69:8a: 52:9b:0e:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjYwNTIxMDE0NjM4WhcNMjYwNTI4MDE0NjM4WjAYMRYwFAYD VQQDEw02YTBlNjNmZS05MTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5wycp+604pgt+/4NOrJlt89KZh0icSna9JKMdvMDiIrw4EBziemstbtijQA zG1XCtN8xYurHlahBWh51fdTjPJLZfGcPhB3hR/rSRYnBwLIHYRGTE1qRI+dsxb4 tykjsLyEflMKoJvhsFG85piVpLBs4rBj3z9bNK87MCMiVOOGR3t4D7YUmbyc/eOr 5uWXWWy4t5B+if6i6aPDcCA2qN0zEArFTrFUDHUHEjLLM1CaGngMKkrh1s8cyyfb Bs3kfrBhjYkg1PJYkoHYKd1MS9FmXKUAs5XU2nwHQ67yBs5XD0l/7WIksK7d/dR+ wJWcEAHjRw0p5vWTGCvqSLUIKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0qpxNb wfIWQRyIhblmadUoR370MB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVt6HDtyO/KQ791Vac2gI3yrp9G6vhWcpZXwq0wDb3vGYFd/llJP0mBpWfoZR p64Uyb4hhY6+6l0tNMjs5HMHjvTkbqEwCZaAob+whKx1CVnbbPKpdAbFT2p7hPX2 waGbw8+dLdTFIdf61U4i0bul/FYOlxJZX+usZLhkha1j1L8HXXKyQfkX3XErvtgH scPeu+HX2lMONW+XjLqln1RpHgO4GigdH/056vOwBwvXsYRwAX0PNbLUSTqUrKyw hst8g+uu/NrXAU272mDD6PG38k2tqxiMLLXaBpSrCWbNIg+aTZzJ5rsgSRmpLYJR TtVQZuyFH9lcU+n1/WmKUpsO/g== -----END CERTIFICATE-----Generated at Thu May 21 09:38:29 2026 by rpki-client