$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: Y8rkHZH9F+hKFPBbAKhbNEgmTiC8gfxzh2lfRocBXeM= Subject key identifier: B1:6F:50:B5:1F:41:5D:9B:EE:66:F8:F8:B3:B3:A0:54:39:5A:63:FB Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 316E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 3167 Signing time: Wed 20 May 2026 15:26:22 +0000 Manifest this update: Wed 20 May 2026 15:26:22 +0000 Manifest next update: Wed 27 May 2026 15:26:22 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: rZHc3l0k4bc/N+ahHGsMMmOtn89/t61OD7VHzmNrttg=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: 0vDdF5Q2CBbIYCt1K0qEfBzpG6K1ble6M+V06+WiDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12654 (0x316e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: May 20 15:26:22 2026 GMT Not After : May 27 15:26:22 2026 GMT Subject: CN=6a0dd29e-68be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:29:f4:7c:d2:38:7e:50:7f:53:6b:f6:9a:32: 38:c6:21:f9:f6:93:1a:74:32:b8:49:ef:8a:e1:53: 16:83:d7:9e:58:b9:7b:c3:72:9c:9f:0e:0f:7c:e0: 3e:e6:e4:df:7f:aa:92:19:28:8f:9b:b7:77:07:d1: a5:50:e0:ff:0e:c7:28:4a:58:a7:5a:a9:32:a6:53: 17:9e:19:33:b8:f7:84:86:68:f5:06:8e:72:a7:23: 2f:37:e9:9d:dc:c0:4d:42:48:73:b6:e5:c8:95:5e: 75:df:eb:9e:89:69:8e:56:2d:f4:a7:cb:d3:8e:79: a2:2e:7c:19:44:f0:3d:fb:73:2c:73:ca:5e:a0:eb: 3f:b3:9c:64:9c:9a:40:e0:10:57:0d:bf:88:a8:36: e1:60:e7:ad:f7:97:ee:8d:1b:a1:aa:52:7c:71:ac: 33:c4:1a:01:3d:a6:57:15:65:d9:7e:9e:2d:9a:1d: 4e:90:a0:62:42:16:87:15:d1:da:76:e3:cb:fe:5a: 50:3f:e6:18:cb:75:eb:3f:6f:5c:4e:76:c8:a9:bc: 8a:b4:44:ce:84:23:30:1b:db:fc:6f:95:92:97:6c: 11:2a:30:a5:3c:1f:b7:7b:7b:d4:17:2e:bd:32:cd: 6c:1a:a3:65:e2:62:b3:65:13:c1:54:a4:76:65:de: 40:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6F:50:B5:1F:41:5D:9B:EE:66:F8:F8:B3:B3:A0:54:39:5A:63:FB X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f2:1f:bc:bd:84:16:ec:30:9b:08:41:37:6b:4c:0a:a7:bb: 00:99:be:67:bd:f7:33:34:f1:da:81:9d:d6:a8:f6:5f:9a:49: e7:63:f8:ae:b8:6f:57:c2:56:7f:7e:5e:c3:9c:52:c0:d2:e2: ba:aa:ca:71:e1:30:8f:5b:2d:e3:21:18:74:91:76:2a:4a:dc: 59:ae:16:11:f2:07:40:34:d0:04:d2:fb:7b:9f:98:da:2a:74: 19:af:41:06:87:0b:1d:83:ea:a9:b2:83:88:b8:c5:84:5a:6f: c6:79:dd:a2:93:df:2d:57:35:3b:3f:ee:85:3a:ae:c7:5d:16: c1:d5:1c:1f:cf:97:fb:ab:03:f2:38:b8:19:e1:7d:d8:ae:08: 60:71:fd:55:4a:0d:35:77:59:59:4a:2b:0e:c4:52:b7:bf:c5: 45:15:e3:b6:63:4c:2c:9c:d5:c3:f0:40:21:d1:ca:a0:dc:60: 26:33:d8:03:8c:bf:a3:66:93:09:bb:b6:57:cc:90:4e:eb:cf: 49:fa:da:9c:db:de:c8:28:73:41:e5:12:aa:17:b7:fe:d5:09: 0e:46:2b:8d:a1:86:13:d0:12:e3:9f:e7:41:9f:f4:73:12:c9: dc:a8:b4:ad:a2:c2:26:73:84:57:6b:3a:2b:74:dc:a5:7f:b6: 6f:3b:42:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjYwNTIwMTUyNjIyWhcNMjYwNTI3MTUyNjIyWjAYMRYwFAYD VQQDEw02YTBkZDI5ZS02OGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyn0fNI4flB/U2v2mjI4xiH59pMadDK4Se+K4VMWg9eeWLl7w3Kcnw4PfOA+ 5uTff6qSGSiPm7d3B9GlUOD/DscoSlinWqkyplMXnhkzuPeEhmj1Bo5ypyMvN+md 3MBNQkhztuXIlV513+ueiWmOVi30p8vTjnmiLnwZRPA9+3Msc8peoOs/s5xknJpA 4BBXDb+IqDbhYOet95fujRuhqlJ8cawzxBoBPaZXFWXZfp4tmh1OkKBiQhaHFdHa duPL/lpQP+YYy3XrP29cTnbIqbyKtETOhCMwG9v8b5WSl2wRKjClPB+3e3vUFy69 Ms1sGqNl4mKzZRPBVKR2Zd5AyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLFvULUf QV2b7mb4+LOzoFQ5WmP7MB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP/IfvL2EFuwwmwhBN2tMCqe7AJm+Z733MzTx2oGd1qj2X5pJ52P4rrhvV8JW f35ew5xSwNLiuqrKceEwj1st4yEYdJF2KkrcWa4WEfIHQDTQBNL7e5+Y2ip0Ga9B BocLHYPqqbKDiLjFhFpvxnndopPfLVc1Oz/uhTqux10WwdUcH8+X+6sD8ji4GeF9 2K4IYHH9VUoNNXdZWUorDsRSt7/FRRXjtmNMLJzVw/BAIdHKoNxgJjPYA4y/o2aT Cbu2V8yQTuvPSfranNveyChzQeUSqhe3/tUJDkYrjaGGE9AS45/nQZ/0cxLJ3Ki0 raLCJnOEV2s6K3TcpX+2bztCNA== -----END CERTIFICATE-----Generated at Thu May 21 09:36:58 2026 by rpki-client