$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: wViwSVD4vnHnYJclHxbBHdQdZaGZ4U0xRwkozLOsj4E= Subject key identifier: AD:1F:48:0B:41:2C:1B:73:61:E0:92:6F:7D:6B:20:3B:B7:B1:EB:36 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3582 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3560 Signing time: Wed 20 May 2026 14:19:26 +0000 Manifest this update: Wed 20 May 2026 14:19:26 +0000 Manifest next update: Wed 27 May 2026 14:19:26 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: CFonHs4I5kd6xmHk7VWyhE4CEXM0EbVCqubuEkCuMiY=) 2: E404430CB0F811E595E0F761C4F9AE02.roa (hash: owZAiKzsMVZHcu5y/uvghCfcRo2W0WEoElBFnrF91Ts=) 3: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: wULzE/YcKLKygpTy9Qm31PPUJvQ48rS9tgycJrdEzjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13698 (0x3582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 20 14:19:26 2026 GMT Not After : May 27 14:19:26 2026 GMT Subject: CN=6a0dc2ee-7030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:61:ee:2b:c9:ee:ca:30:df:c8:e3:b9:71:4b: c1:5b:f4:ef:17:52:11:11:ac:d3:7f:ef:2b:9c:99: 0c:a4:52:b4:1b:f5:11:42:b0:ff:67:9f:29:08:dd: fd:69:d6:0f:92:3a:58:e0:23:1d:c3:37:37:48:c0: f5:13:5d:4b:7e:b6:6e:13:82:66:1b:3b:0d:3d:33: dd:a8:82:e6:e9:ed:6b:c0:ca:c8:cc:0c:2f:57:79: 85:09:90:5c:05:35:1b:a1:09:03:08:fd:c8:bb:2d: 77:19:b5:14:b7:98:b7:48:1b:8a:fe:a3:ff:e6:7c: 87:c6:c4:53:ec:b1:4d:62:f5:ee:ba:bf:50:1d:34: 1b:a6:22:21:d4:a4:ac:19:50:e0:98:fb:35:18:49: 88:1a:e2:bc:c5:a6:ce:b3:d4:f6:2a:73:53:31:a5: 0d:ed:70:b4:f8:6b:a4:a3:b1:da:f0:e3:2f:d5:36: a0:a1:7a:22:c9:90:0a:8f:fd:af:8d:6d:27:46:db: 29:77:b5:16:6f:d5:c2:cc:ae:4f:97:e4:ab:e1:b1: ed:b9:9c:ff:0f:40:64:21:40:9b:60:d0:cf:1a:e5: ca:1d:59:32:b0:81:de:50:a3:e6:a8:f1:ec:49:9e: c9:14:e4:43:b0:b4:15:ae:49:96:4c:9c:50:a8:a9: 03:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1F:48:0B:41:2C:1B:73:61:E0:92:6F:7D:6B:20:3B:B7:B1:EB:36 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:9c:49:8c:2e:88:b1:84:b4:87:5b:cd:34:de:9f:55:c8:fd: d7:e6:92:e8:6b:9c:80:f2:d3:67:06:05:a6:f1:51:a6:79:f3: ea:ca:e4:2e:98:68:9b:0d:d9:5f:89:87:61:10:37:18:5d:04: 6c:9f:bf:c7:37:7a:e6:9d:9f:ff:2c:96:fb:e1:b1:fa:97:ad: 4e:5e:5e:ce:ee:95:3d:5a:15:23:8e:2f:27:74:3f:74:25:20: bb:ba:1f:10:4e:08:59:00:75:00:f8:4a:5e:7b:cd:47:3d:1b: f8:92:6a:1d:eb:66:57:c6:a4:02:60:35:f7:49:f2:7e:12:2d: c7:34:db:be:d9:f3:d9:a3:27:15:41:de:20:49:19:54:ba:fd: 6f:42:12:41:b3:80:3c:e2:4d:f8:2b:1b:ab:42:b7:98:37:0c: 06:14:b9:ee:0d:58:5d:17:b1:ae:43:6c:33:e2:50:b3:89:61: 95:1a:a1:11:6a:ab:0c:c2:92:2c:7c:f3:01:c2:ae:df:3a:b2: 50:16:0d:27:91:fe:8b:84:fb:5a:bf:cc:68:31:59:13:0b:0a: 0b:61:4f:eb:60:fd:a4:b8:34:0d:e0:68:94:5f:49:74:17:ea: d3:3f:29:91:7e:b9:05:aa:56:bc:14:00:17:68:94:67:cd:02: 7d:54:10:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjYwNTIwMTQxOTI2WhcNMjYwNTI3MTQxOTI2WjAYMRYwFAYD VQQDEw02YTBkYzJlZS03MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymHuK8nuyjDfyOO5cUvBW/TvF1IREazTf+8rnJkMpFK0G/URQrD/Z58pCN39 adYPkjpY4CMdwzc3SMD1E11LfrZuE4JmGzsNPTPdqILm6e1rwMrIzAwvV3mFCZBc BTUboQkDCP3Iuy13GbUUt5i3SBuK/qP/5nyHxsRT7LFNYvXuur9QHTQbpiIh1KSs GVDgmPs1GEmIGuK8xabOs9T2KnNTMaUN7XC0+Guko7Ha8OMv1TagoXoiyZAKj/2v jW0nRtspd7UWb9XCzK5Pl+Sr4bHtuZz/D0BkIUCbYNDPGuXKHVkysIHeUKPmqPHs SZ7JFORDsLQVrkmWTJxQqKkDXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK0fSAtB LBtzYeCSb31rIDu3ses2MB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ5xJjC6IsYS0h1vNNN6fVcj91+aS6GucgPLTZwYFpvFRpnnz6srkLphomw3Z X4mHYRA3GF0EbJ+/xzd65p2f/yyW++Gx+petTl5ezu6VPVoVI44vJ3Q/dCUgu7of EE4IWQB1APhKXnvNRz0b+JJqHetmV8akAmA190nyfhItxzTbvtnz2aMnFUHeIEkZ VLr9b0ISQbOAPOJN+Csbq0K3mDcMBhS57g1YXRexrkNsM+JQs4lhlRqhEWqrDMKS LHzzAcKu3zqyUBYNJ5H+i4T7Wr/MaDFZEwsKC2FP62D9pLg0DeBolF9JdBfq0z8p kX65BapWvBQAF2iUZ80CfVQQhw== -----END CERTIFICATE-----Generated at Thu May 21 10:15:57 2026 by rpki-client