$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: 7zFDr42xzVdEiEiaWwFLGMIiO4l/ORq9wEdmXTIlMQQ= Subject key identifier: D6:0D:9C:30:BA:FF:1F:26:38:31:97:49:B9:98:43:47:10:19:4A:3B Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 021E Signing time: Thu 21 May 2026 02:50:22 +0000 Manifest this update: Thu 21 May 2026 02:50:22 +0000 Manifest next update: Thu 28 May 2026 02:50:22 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: BHBUniqNu4p5pfCMMKXHqH2CHZSTttTzDtowOV4vJ2w=) 2: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: xb0+uYgRF2Qsu64pqIvTIsaUIoIoJYA9r/GFBorr/Cw=) 3: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: LOVQf/LdRjlXMFrzIgrgv8KlqIFzre3Qe7jhRSJb4JQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: May 21 02:50:22 2026 GMT Not After : May 28 02:50:22 2026 GMT Subject: CN=6a0e72ee-d0e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b3:85:09:5a:8a:e7:ec:73:3c:c9:a4:23:34: 67:b2:0d:fc:3e:a2:17:08:35:3d:fe:5f:b8:d3:53: c7:5a:56:c6:0d:4b:88:da:62:bc:fb:77:5e:05:a2: 45:10:24:31:68:fa:1c:07:76:39:69:83:b6:3b:48: 14:ba:10:50:c6:72:b6:97:96:13:ef:26:66:7a:f1: f5:b2:83:32:5e:59:46:28:db:4f:41:f3:9b:0c:10: 3a:58:7f:7f:3b:52:02:28:d9:f0:88:8c:30:b2:7f: 99:85:c4:aa:eb:ed:4d:42:89:d1:fb:e2:4c:8d:c8: 1b:82:a9:3a:fd:85:9b:34:ec:fd:18:b7:0b:f1:bc: 08:ca:15:04:9b:0e:d3:9d:5e:e2:16:74:45:04:55: ca:3b:63:90:93:6e:00:43:7d:55:07:0f:49:45:99: 2d:52:a8:7e:b0:53:6f:30:eb:a7:0f:9f:55:f4:e8: b2:13:f7:7a:82:a4:f3:60:44:60:47:57:2f:44:78: 81:34:f7:32:fc:77:8a:fe:7b:2c:39:33:f7:0d:11: b2:40:45:59:70:75:3c:54:33:64:04:ba:cb:4b:f9: 7d:a5:5b:0f:a1:70:28:96:9f:e1:ce:8c:c0:90:0c: 19:51:86:9a:c6:22:66:fa:4d:ab:3b:21:8b:ee:d0: cc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0D:9C:30:BA:FF:1F:26:38:31:97:49:B9:98:43:47:10:19:4A:3B X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b3:7c:53:a2:7d:2f:c7:19:14:a9:f4:d5:a6:e5:d2:14:a6: 7a:53:49:bf:68:08:9b:b5:44:8f:92:11:2b:d6:bc:15:75:3a: 4b:75:13:8a:93:d1:4e:9d:4f:8e:eb:b3:7f:ea:ac:77:e2:48: 20:a0:19:a6:5a:90:33:06:f6:a2:9e:57:b4:44:7f:a9:e6:00: 06:6f:73:d2:e2:7f:9a:69:2d:cd:30:4e:9e:96:03:d7:c0:81: 2a:c8:69:35:aa:5e:42:e2:73:71:e3:a0:32:48:60:34:ac:40: 2b:58:8a:7d:dc:7b:00:87:61:da:f9:59:71:d2:0f:ad:14:88: f6:a6:85:92:e2:51:c7:9e:33:15:72:8a:f8:55:94:1a:68:2d: 49:cd:43:56:4d:cd:bd:a6:b0:e7:1e:98:76:a2:2c:9a:8f:74: 3e:4c:69:81:95:2b:c5:11:fd:07:ad:20:86:1f:88:29:9c:b8: de:a5:28:e2:54:ce:a1:c3:a0:ab:10:ac:81:12:36:06:29:39: 58:b2:5b:b9:b6:15:9a:eb:2a:ed:39:88:63:e0:0c:fe:dd:8c: 1a:bb:3a:9c:3f:1f:0e:43:7a:ca:98:5e:4f:45:86:58:79:ae: a0:32:c9:ca:47:b2:9a:0c:cc:e6:1d:d6:69:5c:53:83:9a:52: ad:99:69:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjYwNTIxMDI1MDIyWhcNMjYwNTI4MDI1MDIyWjAYMRYwFAYD VQQDEw02YTBlNzJlZS1kMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLOFCVqK5+xzPMmkIzRnsg38PqIXCDU9/l+401PHWlbGDUuI2mK8+3deBaJF ECQxaPocB3Y5aYO2O0gUuhBQxnK2l5YT7yZmevH1soMyXllGKNtPQfObDBA6WH9/ O1ICKNnwiIwwsn+ZhcSq6+1NQonR++JMjcgbgqk6/YWbNOz9GLcL8bwIyhUEmw7T nV7iFnRFBFXKO2OQk24AQ31VBw9JRZktUqh+sFNvMOunD59V9OiyE/d6gqTzYERg R1cvRHiBNPcy/HeK/nssOTP3DRGyQEVZcHU8VDNkBLrLS/l9pVsPoXAolp/hzozA kAwZUYaaxiJm+k2rOyGL7tDMfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNYNnDC6 /x8mODGXSbmYQ0cQGUo7MB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcbN8U6J9L8cZFKn01abl0hSmelNJv2gIm7VEj5IRK9a8FXU6S3UTipPRTp1P juuzf+qsd+JIIKAZplqQMwb2op5XtER/qeYABm9z0uJ/mmktzTBOnpYD18CBKshp NapeQuJzceOgMkhgNKxAK1iKfdx7AIdh2vlZcdIPrRSI9qaFkuJRx54zFXKK+FWU GmgtSc1DVk3Nvaaw5x6YdqIsmo90PkxpgZUrxRH9B60ghh+IKZy43qUo4lTOocOg qxCsgRI2Bik5WLJbubYVmusq7TmIY+AM/t2MGrs6nD8fDkN6ypheT0WGWHmuoDLJ ykeymgzM5h3WaVxTg5pSrZlpqg== -----END CERTIFICATE-----Generated at Thu May 21 10:53:39 2026 by rpki-client