$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: m5P3KgOCytksZy9JvGXxe8nMOy3ErOk9DkGluHffTKs= Subject key identifier: BF:5D:5B:06:C1:93:5F:BD:11:D4:09:4B:38:F0:EB:05:00:C9:22:72 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 02D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 02D0 Signing time: Thu 21 May 2026 01:27:11 +0000 Manifest this update: Thu 21 May 2026 01:27:10 +0000 Manifest next update: Thu 28 May 2026 01:27:10 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: /whrvUlAkPOaRWULKMCZDiIBvcfA0ygww1WWa3eWG0Y=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: IG2v2fd9rTN5PBYJp2Z5UyST9QDIg6t5w3Te4y8DFac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: May 21 01:27:10 2026 GMT Not After : May 28 01:27:10 2026 GMT Subject: CN=6a0e5f6f-559d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:5a:8c:11:83:53:a4:ad:92:08:fc:5b:15: d0:85:53:2a:10:dc:94:08:e0:51:79:af:49:f7:85: 25:04:9f:1b:8f:28:c1:a0:58:d1:1d:e2:9f:87:63: b5:f1:ef:33:18:6d:76:42:f5:7e:af:a3:77:58:88: 4e:7d:68:4f:2b:d2:98:48:6d:86:79:22:ba:e3:3b: e7:5c:04:75:ba:33:fc:1f:54:33:97:d4:71:81:3c: 99:d3:01:3c:09:58:17:14:4f:59:85:ad:69:89:56: 0b:c7:51:32:94:48:dc:61:03:9a:5c:d4:7a:3a:ca: ce:f4:44:24:e0:eb:b2:a0:e2:02:95:e4:ea:dc:f3: 5a:22:d6:ea:dd:df:3f:f0:06:13:7d:38:9c:39:5f: 2c:96:9e:85:4d:7b:39:b2:9c:30:59:cd:f2:3e:7a: 39:3b:f3:53:26:3b:87:7d:16:25:c1:49:57:b5:a1: 91:c2:e1:a2:51:5d:38:4c:f1:50:5c:6d:1a:85:c1: 09:0e:59:b4:d0:40:29:64:28:1c:a6:b5:0f:25:2f: 49:6d:b7:32:24:0a:56:04:e3:cb:50:f8:21:7b:15: 33:01:95:ac:47:73:f3:b4:74:f7:26:3a:a8:93:c0: 04:7f:c5:b3:16:05:74:d3:cd:1e:9e:f6:13:b8:0d: 16:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5D:5B:06:C1:93:5F:BD:11:D4:09:4B:38:F0:EB:05:00:C9:22:72 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3c:ba:b0:12:ff:a0:5f:c5:c3:80:fa:84:bd:30:5c:c4:2c: 93:e3:73:df:d7:0a:21:89:3f:08:5c:7b:cc:b6:a0:33:2c:f7: 4a:3e:af:e9:db:2c:92:81:44:8c:ae:0a:7d:cf:21:46:2c:49: e3:69:47:88:31:30:3f:b0:c2:c3:19:54:48:45:ab:1d:46:f0: a6:60:53:c0:ca:b5:45:fb:bf:ad:92:01:48:b6:82:50:ef:1c: 17:cb:9f:9b:e8:e8:7d:a7:00:41:ab:08:b8:6f:74:4b:95:41: 13:b1:69:95:32:18:c5:27:e4:1f:cc:72:85:81:ee:b2:84:04: 1f:b4:49:a0:d3:40:64:b6:71:3a:84:8d:26:c1:b0:6a:a0:d2: cf:f5:10:1b:8e:c0:55:90:49:fc:1d:75:42:da:07:bc:22:c1: 19:bc:5f:b3:6a:10:11:c9:ee:eb:37:7a:2d:05:42:a2:f1:4e: 4f:8e:83:ee:1c:96:bf:9a:9a:a3:b7:65:f8:50:b5:6e:ff:98: 6f:86:22:73:67:46:24:e9:88:e1:9e:de:d2:2d:2c:77:57:ef: e8:99:24:c5:de:95:00:b4:47:48:de:96:c0:8e:08:b7:d8:cf: 13:9c:c6:91:3b:76:3b:56:2f:2b:49:23:f5:e6:a0:94:70:99: 77:29:ce:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjYwNTIxMDEyNzEwWhcNMjYwNTI4MDEyNzEwWjAYMRYwFAYD VQQDEw02YTBlNWY2Zi01NTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFdajBGDU6Stkgj8WxXQhVMqENyUCOBRea9J94UlBJ8bjyjBoFjRHeKfh2O1 8e8zGG12QvV+r6N3WIhOfWhPK9KYSG2GeSK64zvnXAR1ujP8H1Qzl9RxgTyZ0wE8 CVgXFE9Zha1piVYLx1EylEjcYQOaXNR6OsrO9EQk4OuyoOICleTq3PNaItbq3d8/ 8AYTfTicOV8slp6FTXs5spwwWc3yPno5O/NTJjuHfRYlwUlXtaGRwuGiUV04TPFQ XG0ahcEJDlm00EApZCgcprUPJS9JbbcyJApWBOPLUPghexUzAZWsR3PztHT3Jjqo k8AEf8WzFgV0080envYTuA0WAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL9dWwbB k1+9EdQJSzjw6wUAySJyMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADDy6sBL/oF/Fw4D6hL0wXMQsk+Nz39cKIYk/CFx7zLagMyz3Sj6v6dsskoFE jK4Kfc8hRixJ42lHiDEwP7DCwxlUSEWrHUbwpmBTwMq1Rfu/rZIBSLaCUO8cF8uf m+jofacAQasIuG90S5VBE7FplTIYxSfkH8xyhYHusoQEH7RJoNNAZLZxOoSNJsGw aqDSz/UQG47AVZBJ/B11QtoHvCLBGbxfs2oQEcnu6zd6LQVCovFOT46D7hyWv5qa o7dl+FC1bv+Yb4Yic2dGJOmI4Z7e0i0sd1fv6Jkkxd6VALRHSN6WwI4It9jPE5zG kTt2O1YvK0kj9eaglHCZdynO6w== -----END CERTIFICATE-----Generated at Thu May 21 10:15:30 2026 by rpki-client