$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: Q4oRa+qBVhaa013P1aeyX6K2pZ8dOCqEa78CWNL9770= Subject key identifier: 01:7F:27:21:02:A7:04:14:82:68:0A:75:F9:F0:89:56:5A:AF:B6:B9 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: DB Signing time: Thu 21 May 2026 06:43:33 +0000 Manifest this update: Thu 21 May 2026 06:43:33 +0000 Manifest next update: Thu 28 May 2026 06:43:33 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: NTUoqukaHTae1bumXXyD8WFWXnNWTCdE8IIp+iw5bbs=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: mmIU8UeudAKZrTx8s6Nxy2r+SAdWHS9FcLl5he11RrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: May 21 06:43:33 2026 GMT Not After : May 28 06:43:33 2026 GMT Subject: CN=6a0ea995-00ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:35:7d:3e:95:31:a6:10:d5:e3:3c:5d:ca:c4: 03:fe:64:bb:5c:fe:3a:ad:39:82:09:76:16:0d:fe: f4:78:b5:0d:fb:82:56:c6:ac:03:41:e5:f6:2b:30: d8:98:c3:8b:f1:1a:b5:cd:bd:7b:64:48:75:8d:92: 43:7f:96:4e:80:5c:d2:b1:f5:53:25:4a:fd:a9:9d: 4f:f4:9b:c0:c8:87:3c:1a:4a:63:a4:16:d8:f6:f6: 2e:37:43:72:69:5d:e0:6a:65:43:84:4c:0c:cf:d7: f8:37:6a:12:92:96:2c:73:b9:c5:a6:38:78:c4:48: 1f:36:ba:b0:92:d2:e5:e9:c8:ea:6e:df:66:42:28: cf:6b:1e:db:dc:37:32:26:60:9b:04:d6:91:c3:c7: 59:8b:fd:29:6e:5f:cf:13:1b:72:28:93:89:c9:3c: 3e:07:95:d7:d7:1b:9c:83:27:2d:4c:b4:54:03:87: 85:57:25:a3:62:d2:2f:80:bd:ab:91:bc:f1:73:85: 77:a7:22:70:0d:8e:13:35:67:b2:2c:c4:8c:a4:ca: e0:30:06:92:4a:e6:7d:5a:42:b8:de:8a:d7:e9:d7: a2:48:b9:0d:15:8e:5d:1e:53:36:48:09:a1:29:a5: 3a:5f:93:e6:b6:58:01:61:2a:a0:f2:70:fc:ff:29: c3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7F:27:21:02:A7:04:14:82:68:0A:75:F9:F0:89:56:5A:AF:B6:B9 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f0:4a:8e:b6:d0:bc:38:2f:66:99:17:7f:4a:ba:05:87:e1: 9a:27:e2:4e:2f:1e:01:21:03:c4:ca:5d:de:c1:64:66:55:4a: c9:0f:53:eb:3e:95:5a:d6:01:f8:3c:d5:2f:6a:fc:0c:32:4a: 1f:63:fd:4b:ae:c8:20:be:4c:ea:e3:36:1e:af:b6:1e:15:79: 60:e4:1f:53:fe:0c:aa:2f:54:71:a6:ff:49:55:55:b0:b7:dd: 77:8d:f5:c7:0a:af:74:e0:cf:05:30:f5:fe:d3:f4:58:cc:14: 0a:9e:c3:26:a9:87:65:42:7d:5b:a4:22:fa:93:0e:c6:e2:95: c5:8e:32:ac:60:3d:94:34:ba:53:cf:8e:b8:7d:2c:32:21:cc: 04:e1:4e:6d:fc:b9:31:ed:e7:95:7c:87:41:e4:bf:94:c9:f9: 2a:e0:e8:f0:af:fd:38:ba:a9:f8:e1:10:7d:a2:f2:88:d2:4d: 57:5c:fd:64:24:f0:60:68:9f:d4:ad:53:7a:6c:87:cf:f3:67: ca:ba:1c:6e:a5:b7:d8:de:3b:92:2a:a6:d2:cc:f3:b2:76:49: fa:e3:af:ed:2f:c0:d2:09:46:78:f1:de:9d:7e:b7:83:4e:8b: 13:51:f0:05:73:8c:3f:1d:b4:2e:3c:04:b2:cc:cb:e9:39:4a: ac:ad:a2:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjYwNTIxMDY0MzMzWhcNMjYwNTI4MDY0MzMzWjAYMRYwFAYD VQQDEw02YTBlYTk5NS0wMGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDV9PpUxphDV4zxdysQD/mS7XP46rTmCCXYWDf70eLUN+4JWxqwDQeX2KzDY mMOL8Rq1zb17ZEh1jZJDf5ZOgFzSsfVTJUr9qZ1P9JvAyIc8GkpjpBbY9vYuN0Ny aV3gamVDhEwMz9f4N2oSkpYsc7nFpjh4xEgfNrqwktLl6cjqbt9mQijPax7b3Dcy JmCbBNaRw8dZi/0pbl/PExtyKJOJyTw+B5XX1xucgyctTLRUA4eFVyWjYtIvgL2r kbzxc4V3pyJwDY4TNWeyLMSMpMrgMAaSSuZ9WkK43orX6deiSLkNFY5dHlM2SAmh KaU6X5PmtlgBYSqg8nD8/ynD0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAF/JyEC pwQUgmgKdfnwiVZar7a5MB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQfBKjrbQvDgvZpkXf0q6BYfhmifiTi8eASEDxMpd3sFkZlVKyQ9T6z6VWtYB +DzVL2r8DDJKH2P9S67IIL5M6uM2Hq+2HhV5YOQfU/4Mqi9Ucab/SVVVsLfdd431 xwqvdODPBTD1/tP0WMwUCp7DJqmHZUJ9W6Qi+pMOxuKVxY4yrGA9lDS6U8+OuH0s MiHMBOFObfy5Me3nlXyHQeS/lMn5KuDo8K/9OLqp+OEQfaLyiNJNV1z9ZCTwYGif 1K1TemyHz/NnyrocbqW32N47kiqm0szzsnZJ+uOv7S/A0glGePHenX63g06LE1Hw BXOMPx20LjwEsszL6TlKrK2i2Q== -----END CERTIFICATE-----Generated at Thu May 21 10:52:34 2026 by rpki-client