$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: NaqQTHd6qxBHvezHKfK2LDoArL4lWORJhZGY399HDfQ= Subject key identifier: AA:67:D3:22:75:AE:68:C0:FC:97:F5:4D:4A:C6:3D:F4:DD:69:B2:F5 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 137E Signing time: Wed 20 May 2026 16:58:33 +0000 Manifest this update: Wed 20 May 2026 16:58:33 +0000 Manifest next update: Wed 27 May 2026 16:58:33 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: XYKoEjusKRgGT52B4dgZm3gLenqsfwVEZtRKfS6fck8=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: O9w5ukmDcrFDcEjD6HiwQa6Y82NCxJ277Oe6QTyQjzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5010 (0x1392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: May 20 16:58:33 2026 GMT Not After : May 27 16:58:33 2026 GMT Subject: CN=6a0de839-fdf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0d:f1:fd:73:43:53:88:4f:88:a3:44:9f:ed: 89:14:be:b2:46:05:79:c7:b7:1f:2c:93:19:7d:58: ca:36:03:ad:9b:00:dc:98:8e:73:38:6c:33:a4:36: 92:11:40:21:c4:bb:a7:48:cf:d0:f8:0f:da:6d:86: fc:b1:0d:cd:b3:d1:3f:9d:4e:b5:d1:e7:06:3e:b2: a4:84:dd:77:a6:06:a6:41:db:8d:53:1f:be:dc:2c: 5b:87:d1:15:62:86:7c:5b:29:72:3d:6f:cd:2b:3d: 93:e8:2c:a3:55:c3:06:ba:5d:ac:4c:04:f9:a6:a0: 11:ad:0e:24:e6:47:b4:2c:6d:a2:9d:9b:6d:42:7e: 17:f8:32:80:29:25:16:55:a5:ff:39:d2:d1:68:c0: cf:41:76:01:d1:12:15:c9:4f:d1:e7:4b:3c:a6:5c: 72:d3:5c:23:a6:c9:75:ed:b3:cd:e4:c3:fa:b2:d1: b5:9b:e7:6a:45:1d:33:2d:58:0c:81:75:98:24:6f: fd:28:fe:e5:98:c9:26:d7:55:e2:12:e7:ea:43:fe: 3f:88:29:74:63:ba:d3:90:1d:69:bb:ea:54:d7:2c: 78:9c:ee:8b:c8:7b:38:de:52:fb:4f:b1:06:84:55: 4f:b3:c6:83:e6:79:bc:da:53:09:1c:8d:ca:b0:e4: b6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:67:D3:22:75:AE:68:C0:FC:97:F5:4D:4A:C6:3D:F4:DD:69:B2:F5 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:dc:56:67:00:be:ca:ee:44:9b:74:f5:32:68:3d:d7:b2:f1: 30:e3:7f:7c:9e:89:15:cf:a4:0b:3e:b5:d7:42:2c:00:28:2f: 55:e9:98:c6:43:4d:8c:e8:5e:3e:c9:46:ab:2b:73:e1:be:9d: 57:ac:3b:f7:dd:5a:93:b8:50:4b:f0:4d:be:ac:6f:e3:81:38: 2e:b9:0f:00:e0:e0:82:16:57:63:24:ff:78:28:83:d9:6f:88: 45:36:98:9f:b8:b1:15:55:26:37:96:63:cc:d0:72:c1:fa:91: e1:b8:93:22:d5:66:ed:c0:cf:9f:0a:e0:0f:28:f7:1b:eb:1d: 4f:e6:a1:35:c3:63:88:85:71:6c:2d:c1:04:c7:c2:27:02:53: 1f:3f:57:4a:49:68:76:6f:b3:5a:fe:ab:b0:e3:85:47:bc:29: 80:a0:7c:ff:e4:6c:5c:4f:41:f0:f7:bb:0c:62:50:34:da:9e: 0c:7a:c8:31:f2:0e:4b:28:ba:01:d9:1f:0c:28:c7:a7:3f:ef: 55:f8:ed:79:6d:f7:14:6d:7d:57:73:05:94:2a:44:da:2e:0c: 48:04:58:44:2e:e6:7e:bb:ee:2b:0d:36:1a:02:be:55:b0:36: f8:24:5c:b2:78:fe:de:b9:72:ee:fa:9b:ff:43:27:be:ce:dd: 10:2d:65:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjYwNTIwMTY1ODMzWhcNMjYwNTI3MTY1ODMzWjAYMRYwFAYD VQQDEw02YTBkZTgzOS1mZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlw3x/XNDU4hPiKNEn+2JFL6yRgV5x7cfLJMZfVjKNgOtmwDcmI5zOGwzpDaS EUAhxLunSM/Q+A/abYb8sQ3Ns9E/nU610ecGPrKkhN13pgamQduNUx++3Cxbh9EV YoZ8WylyPW/NKz2T6CyjVcMGul2sTAT5pqARrQ4k5ke0LG2inZttQn4X+DKAKSUW VaX/OdLRaMDPQXYB0RIVyU/R50s8plxy01wjpsl17bPN5MP6stG1m+dqRR0zLVgM gXWYJG/9KP7lmMkm11XiEufqQ/4/iCl0Y7rTkB1pu+pU1yx4nO6LyHs43lL7T7EG hFVPs8aD5nm82lMJHI3KsOS2QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpn0yJ1 rmjA/Jf1TUrGPfTdabL1MB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq9xWZwC+yu5Em3T1Mmg917LxMON/fJ6JFc+kCz6110IsACgvVemYxkNNjOhe PslGqytz4b6dV6w7991ak7hQS/BNvqxv44E4LrkPAODgghZXYyT/eCiD2W+IRTaY n7ixFVUmN5ZjzNBywfqR4biTItVm7cDPnwrgDyj3G+sdT+ahNcNjiIVxbC3BBMfC JwJTHz9XSklodm+zWv6rsOOFR7wpgKB8/+RsXE9B8Pe7DGJQNNqeDHrIMfIOSyi6 AdkfDCjHpz/vVfjteW33FG19V3MFlCpE2i4MSARYRC7mfrvuKw02GgK+VbA2+CRc snj+3rly7vqb/0Mnvs7dEC1ltw== -----END CERTIFICATE-----Generated at Thu May 21 10:14:29 2026 by rpki-client