$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: pYEjGAiggkSvWtRGJZRgHQTx4BBhZi8tPUphg4PWW+I= Subject key identifier: BE:4D:E5:B2:77:F8:61:D1:5D:7F:18:E7:23:45:2E:05:E8:39:2A:F0 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0CC8 Signing time: Thu 14 May 2026 18:31:04 +0000 Manifest this update: Thu 14 May 2026 18:31:04 +0000 Manifest next update: Thu 21 May 2026 18:31:04 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: f+oZP8kk9IGKRKpVpuq0TCoTpCrqLa1cJR0BsvUQ0oM=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: 0ui+SiQ/c3MRovj/aJJcziARwvWd2KxwKuQ6NFEu4OA=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: qPZmqhPtG1orNWgO21O3wlBwiZAj4EQWTBy6up25D/I=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: OehBxOplI/UOZ/b2d9DDqACV634wRHZsLO+l8ckQwQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 18:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: May 14 18:31:04 2026 GMT Not After : May 21 18:31:04 2026 GMT Subject: CN=6a0614e8-464f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9a:ca:97:d7:00:f6:33:4b:59:4a:cc:08:26: a9:b1:51:19:d4:06:b0:db:2d:b4:b0:73:8f:12:e9: 1d:74:a6:a7:1b:37:b3:aa:dd:1f:0c:74:1d:ff:bd: 89:fa:16:b3:27:e1:06:fe:05:03:57:0d:10:fd:92: 25:4e:26:ce:26:6f:04:a5:77:5e:57:63:92:84:c9: 84:4e:03:7f:54:93:3a:b1:29:8e:9f:5b:e2:70:83: ee:a1:17:53:7a:91:fc:ff:3d:fc:a9:81:8d:b3:66: b4:3a:19:18:d4:78:ca:f4:62:bf:c0:f5:da:e2:2e: 3c:60:46:7e:19:56:c0:33:46:17:c0:5e:7c:13:79: 17:5c:ff:b2:69:f1:2e:20:b6:3e:fd:1e:34:9b:ef: 40:97:14:d0:3d:3b:5d:53:e4:df:9c:cb:ed:7d:9d: 29:d4:78:66:f9:29:f2:a9:65:d7:ed:51:0f:ec:c9: 52:d6:7d:20:ea:6a:a9:ff:83:a6:ac:f8:83:41:53: 3a:89:e5:77:6f:c1:58:8d:4b:bc:9e:56:4d:85:e7: 6a:41:76:78:94:9a:68:47:70:99:8f:81:c2:61:ca: e1:5e:63:c0:5b:98:80:72:18:5a:60:72:b8:7c:28: 61:a5:fa:66:98:c6:93:80:4f:99:4a:06:9e:60:93: 44:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4D:E5:B2:77:F8:61:D1:5D:7F:18:E7:23:45:2E:05:E8:39:2A:F0 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:05:fa:65:cc:27:50:11:07:ff:55:26:f6:e3:2d:d3:0f:cc: 4d:87:f9:25:f6:a3:f2:e3:08:7c:ad:36:a0:99:d5:55:17:49: 15:63:10:46:f0:1d:4b:99:f3:31:a2:db:c2:5a:a7:63:db:71: 17:0b:30:c8:fe:c3:3a:7d:02:f0:e0:32:86:73:12:0e:67:0d: 8a:0f:16:08:56:25:44:07:97:84:ff:8a:76:35:62:be:e5:3e: b7:a2:16:57:3e:06:0e:8d:dc:2b:00:90:28:d6:0d:e6:cd:24: e9:dd:24:52:33:07:af:b6:fa:55:b3:92:ed:da:0e:8b:c0:2e: 89:31:fb:bf:6e:93:57:0a:31:5e:9e:3c:85:f4:5e:dd:7e:84: b2:02:02:b0:fb:10:b5:09:0c:20:8b:ca:1c:b1:0a:db:81:da: e3:b6:b5:e4:10:e4:25:f3:e8:66:b3:54:f2:3e:eb:29:b9:6f: 3a:6b:24:e6:36:0d:05:9a:2d:1f:dc:a6:ac:c9:ce:35:83:15: 88:c0:1c:cd:5e:3f:bc:10:e9:f7:3a:e2:60:37:f6:bd:78:a0: a7:11:2a:8d:cb:14:9e:a3:79:31:ea:69:71:2d:75:3b:d4:ba: 3c:a4:95:3e:3c:31:0e:84:d3:aa:af:bb:3d:e5:83:09:36:ee: 66:c9:e5:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwNTE0MTgzMTA0WhcNMjYwNTIxMTgzMTA0WjAYMRYwFAYD VQQDEw02YTA2MTRlOC00NjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JrKl9cA9jNLWUrMCCapsVEZ1Aaw2y20sHOPEukddKanGzezqt0fDHQd/72J +hazJ+EG/gUDVw0Q/ZIlTibOJm8EpXdeV2OShMmETgN/VJM6sSmOn1vicIPuoRdT epH8/z38qYGNs2a0OhkY1HjK9GK/wPXa4i48YEZ+GVbAM0YXwF58E3kXXP+yafEu ILY+/R40m+9AlxTQPTtdU+TfnMvtfZ0p1Hhm+SnyqWXX7VEP7MlS1n0g6mqp/4Om rPiDQVM6ieV3b8FYjUu8nlZNhedqQXZ4lJpoR3CZj4HCYcrhXmPAW5iAchhaYHK4 fChhpfpmmMaTgE+ZSgaeYJNEZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL5N5bJ3 +GHRXX8Y5yNFLgXoOSrwMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlgX6ZcwnUBEH/1Um9uMt0w/MTYf5Jfaj8uMIfK02oJnVVRdJFWMQRvAdS5nz MaLbwlqnY9txFwswyP7DOn0C8OAyhnMSDmcNig8WCFYlRAeXhP+KdjVivuU+t6IW Vz4GDo3cKwCQKNYN5s0k6d0kUjMHr7b6VbOS7doOi8AuiTH7v26TVwoxXp48hfRe 3X6EsgICsPsQtQkMIIvKHLEK24Ha47a15BDkJfPoZrNU8j7rKblvOmsk5jYNBZot H9ymrMnONYMViMAczV4/vBDp9zriYDf2vXigpxEqjcsUnqN5MeppcS11O9S6PKSV PjwxDoTTqq+7PeWDCTbuZsnlBQ== -----END CERTIFICATE-----Generated at Fri May 15 20:45:39 2026 by rpki-client