$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft File: caPb4vD_0LEHymtXE7Fcl6jj4dE.mft (raw, json) Hash identifier: Rhcr+tidm3zMs45Z4i828KZ8eDzauX8uJzH3lwBIm1U= Subject key identifier: 21:20:B3:E9:CE:08:E3:F7:4B:9E:04:8D:94:4D:1B:A0:E0:87:49:F1 Authority key identifier: 71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 Certificate issuer: /CN=A91EEE79/serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft Manifest number: 58 Signing time: Sun 03 May 2026 08:24:06 +0000 Manifest this update: Sun 03 May 2026 08:24:06 +0000 Manifest next update: Sun 10 May 2026 08:24:06 +0000 Files and hashes: 1: caPb4vD_0LEHymtXE7Fcl6jj4dE.crl (hash: xqbLoLT0o4fTMJvgHp0TS6LdMJ3jl7WKVMWscsvQSB0=) 2: 078123C8C45711F09E1B7D38C4F9AE02.roa (hash: 77Ti4coJG6upOfWGSXiHZBgxkM1mBFKcvk6A/BW0GOQ=) 3: 0853E998C45711F080167D38C4F9AE02.roa (hash: q06BkXWxrAKL8dfnFJAQ0hKBleWRtfFz0FU/k9ATOTo=) 4: 07EF6C98C45711F0A1027D38C4F9AE02.roa (hash: MKqJq2FumoKTrTwmyrH8ChMilgYTt/EL/h7r2rH2ApY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE79, serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Validity Not Before: May 3 08:24:06 2026 GMT Not After : May 10 08:24:06 2026 GMT Subject: CN=69f70626-fd52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a3:d3:d8:40:dc:e3:f9:cc:0a:a2:37:6c:60: 6a:50:93:31:3d:91:8e:08:4a:48:19:86:b4:a9:06: 25:5f:b7:2c:05:1a:3b:a5:4a:df:1d:8d:b2:e4:b7: a3:1d:6d:d8:a8:83:4f:6d:8f:a6:13:20:4b:c2:c9: a7:6e:d6:64:12:26:12:82:e5:47:1e:d2:93:f4:39: d3:04:ac:db:e2:a1:a2:64:6a:7e:c1:ed:c4:0d:5e: 1c:ef:be:97:c5:b6:74:12:8f:1f:ef:a9:2c:24:99: 30:25:64:d1:78:bd:21:c2:76:a2:83:aa:16:ce:6a: d0:7f:07:02:d2:32:b2:ed:ab:91:97:d7:dd:4a:cb: 99:a9:b1:e0:e8:c1:ae:83:4d:8f:76:f2:fd:e1:f4: 13:4a:06:69:e2:bf:cc:4a:58:3a:52:72:88:33:2e: 7f:6c:d3:f2:a5:5f:b5:31:6d:b8:87:1f:42:7f:6f: 19:49:1b:32:1f:be:48:b5:ab:22:be:c0:1d:ae:41: 7a:dd:2b:c5:6a:df:50:d2:50:4e:8e:10:81:ed:05: 47:7d:12:8d:e1:77:c9:01:51:eb:b2:b4:d9:d2:e1: 9f:ca:09:fe:9d:25:e6:6d:cb:a4:84:49:46:70:7d: 50:ef:eb:79:48:a9:0b:64:fe:6b:ff:8d:03:c8:74: 98:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:20:B3:E9:CE:08:E3:F7:4B:9E:04:8D:94:4D:1B:A0:E0:87:49:F1 X509v3 Authority Key Identifier: keyid:71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6e:2e:88:1d:07:16:3e:86:28:14:e8:f7:0d:ab:4d:0f:43: 4e:33:62:1a:93:0b:5f:ab:14:90:74:42:26:e5:38:4b:2c:2f: e4:bc:f2:93:88:c6:5c:3e:98:4d:bf:d4:b9:89:9a:e6:6a:45: 58:a6:bf:5c:87:ad:a5:d4:3f:dd:59:27:ec:ca:50:6c:28:9b: 12:06:47:b7:ee:9f:27:54:72:cd:4c:df:63:6d:8c:e8:75:9d: 21:a5:fe:8d:76:4f:29:34:5f:37:fb:07:e2:a8:d0:f9:5f:05: 3a:d7:ac:22:f5:0c:f8:11:5f:d8:cc:68:17:41:13:67:d8:2d: 63:f8:1b:e4:a9:8b:cc:6c:b6:65:4e:20:6f:62:f3:d7:26:e0: dc:f0:43:0b:2b:69:44:76:9a:2d:f7:b1:c6:d5:d9:d2:f2:50: e0:13:b0:1e:2d:a2:0b:8d:bd:45:15:ed:ac:3c:15:37:1e:55: 24:a5:a4:5a:61:85:1b:d2:9d:17:7b:72:8c:7e:dc:fb:21:18: 42:7c:20:b2:6a:7f:22:9e:e6:2b:ce:ee:d2:bb:b8:51:6f:29: 47:80:38:c0:3f:c7:cc:e6:54:8d:fe:ad:c5:48:8a:18:c4:b9: 1e:eb:ef:7e:25:3d:29:a6:8a:d3:d5:7f:5b:a4:c5:89:0c:5a: f0:f7:0d:72 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RUU3OTExMC8GA1UEBRMoNzFBM0RCRTJGMEZGRDBCMTA3Q0E2QjU3MTNCMTVDOTdB OEUzRTFEMTAeFw0yNjA1MDMwODI0MDZaFw0yNjA1MTAwODI0MDZaMBgxFjAUBgNV BAMTDTY5ZjcwNjI2LWZkNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCo9PYQNzj+cwKojdsYGpQkzE9kY4ISkgZhrSpBiVftywFGjulSt8djbLkt6Md bdiog09tj6YTIEvCyadu1mQSJhKC5Uce0pP0OdMErNvioaJkan7B7cQNXhzvvpfF tnQSjx/vqSwkmTAlZNF4vSHCdqKDqhbOatB/BwLSMrLtq5GX191Ky5mpseDowa6D TY928v3h9BNKBmniv8xKWDpScogzLn9s0/KlX7UxbbiHH0J/bxlJGzIfvki1qyK+ wB2uQXrdK8Vq31DSUE6OEIHtBUd9Eo3hd8kBUeuytNnS4Z/KCf6dJeZty6SESUZw fVDv63lIqQtk/mv/jQPIdJj5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUISCz6c4I 4/dLngSNlE0boOCHSfEwHwYDVR0jBBgwFoAUcaPb4vD/0LEHymtXE7Fcl6jj4dEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFRTc5Lzk1MUUyOEY4QzQ1 NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExFSHltdFhFN0ZjbDZqajRk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2FQYjR2RF8wTEVIeW10WEU3RmNsNmpqNGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF RTc5Lzk1MUUyOEY4QzQ1NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExF SHltdFhFN0ZjbDZqajRkRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA6bi6IHQcWPoYoFOj3DatND0NOM2IakwtfqxSQdEIm5ThLLC/kvPKTiMZcPphN v9S5iZrmakVYpr9ch62l1D/dWSfsylBsKJsSBke37p8nVHLNTN9jbYzodZ0hpf6N dk8pNF83+wfiqND5XwU616wi9Qz4EV/YzGgXQRNn2C1j+BvkqYvMbLZlTiBvYvPX JuDc8EMLK2lEdpot97HG1dnS8lDgE7AeLaILjb1FFe2sPBU3HlUkpaRaYYUb0p0X e3KMftz7IRhCfCCyan8inuYrzu7Su7hRbylHgDjAP8fM5lSN/q3FSIoYxLke6+9+ JT0pporT1X9bpMWJDFrw9w1y -----END CERTIFICATE-----Generated at Sun May 3 16:13:58 2026 by rpki-client