$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: D26Myg0FZx68SqjJVfGkrdqNAo4EjKwLHa/iTci8BEI= Subject key identifier: EC:7D:60:02:E0:EC:82:88:5E:0B:EA:5B:09:EE:03:C0:33:1A:8E:71 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0D1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0D07 Signing time: Wed 20 May 2026 18:18:03 +0000 Manifest this update: Wed 20 May 2026 18:18:03 +0000 Manifest next update: Wed 27 May 2026 18:18:03 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: fBwlyMbrfcrLr2jjIREEDjFWvpc9xUbBPJqk8wfDccg=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: VuO6oFmdrg28zC8aljPGAA2mZqdTmBMcrxACwaZ0phY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3354 (0xd1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: May 20 18:18:03 2026 GMT Not After : May 27 18:18:03 2026 GMT Subject: CN=6a0dfadb-7b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:98:ee:4d:32:03:c3:d6:2b:5e:76:3d:f3: 99:02:a2:7d:95:d2:30:ae:d6:c2:77:46:e3:ea:cd: 70:53:f1:5f:3b:2c:4c:8b:2e:44:d3:e6:3c:54:aa: 01:1b:39:e6:d9:24:1c:05:04:e9:77:21:44:4d:08: 58:56:ee:03:28:15:f2:5a:b0:f3:8e:fb:74:97:08: ea:60:29:b7:a2:a7:f9:64:c2:bb:80:5f:82:a1:0c: 1f:02:29:b5:91:7b:69:47:89:dd:7d:2c:b5:e1:9d: a1:65:5b:97:1d:dc:4c:f2:d1:a1:30:a7:89:66:9c: 71:12:f9:f2:b4:20:18:bc:14:42:fa:a3:a7:11:57: 83:65:f3:69:67:73:e7:09:2c:2b:d5:05:8f:5b:9d: 7b:22:7a:ec:28:64:d8:25:f9:fb:f7:e1:5c:4a:5e: ff:b5:31:ee:85:57:2f:94:64:61:90:ad:a5:6f:63: 3f:84:1d:22:26:27:1b:ad:4d:17:e2:97:46:73:04: c7:98:9c:98:fa:b6:10:8e:c6:6f:ad:ed:86:1f:8c: 8d:e0:f9:a6:0e:63:35:23:80:71:63:92:a9:6b:8d: 9f:74:12:0f:6a:10:7b:96:3d:04:02:3c:15:b3:cf: a6:e2:c1:ce:29:28:2d:00:d8:c5:12:bd:af:ad:d1: 05:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7D:60:02:E0:EC:82:88:5E:0B:EA:5B:09:EE:03:C0:33:1A:8E:71 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:fe:bf:30:88:a8:37:b1:d1:b2:50:36:a8:38:02:4a:7e:1d: 04:be:ed:2c:f7:6b:37:af:c9:87:64:02:3d:6d:81:08:97:15: 6d:36:64:b9:c7:54:ad:42:87:7e:d9:6b:8b:4e:b4:52:a2:6e: 62:57:6e:ae:4c:e4:9a:ce:6b:b1:a6:94:0c:90:c6:88:54:41: 9a:f3:20:44:d1:61:37:bf:26:34:c3:07:c1:39:8d:4f:c9:2c: 76:3f:ee:b8:b5:a3:ab:76:9d:78:15:fe:43:91:1c:b7:d4:b2: da:06:c2:5b:33:5c:9d:d8:4b:cf:8b:3c:97:b2:e9:6d:75:72: 9d:2f:1b:e6:f7:c3:01:56:63:b2:3d:54:c8:a6:1b:a4:af:31: 0a:35:f2:ad:51:d6:71:04:33:fb:49:9b:81:72:7e:2f:00:87: 1c:f2:02:84:e3:77:14:71:49:e1:1e:7b:9f:8a:41:b1:55:c8: d2:b5:e5:ec:1b:f9:f5:57:87:e1:7e:16:b1:99:70:44:bb:ab: be:42:e4:d5:24:ed:df:8a:9a:a0:15:19:0e:23:35:b3:32:f7: e5:58:01:af:9a:f2:42:b9:3b:d1:5b:e5:74:f9:f4:50:34:8a: 67:8b:af:44:69:ce:1f:61:c8:d1:f7:a6:b7:12:1d:f5:09:cf: 59:42:dc:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjYwNTIwMTgxODAzWhcNMjYwNTI3MTgxODAzWjAYMRYwFAYD VQQDEw02YTBkZmFkYi03YjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYyY7k0yA8PWK152PfOZAqJ9ldIwrtbCd0bj6s1wU/FfOyxMiy5E0+Y8VKoB Gznm2SQcBQTpdyFETQhYVu4DKBXyWrDzjvt0lwjqYCm3oqf5ZMK7gF+CoQwfAim1 kXtpR4ndfSy14Z2hZVuXHdxM8tGhMKeJZpxxEvnytCAYvBRC+qOnEVeDZfNpZ3Pn CSwr1QWPW517InrsKGTYJfn79+FcSl7/tTHuhVcvlGRhkK2lb2M/hB0iJicbrU0X 4pdGcwTHmJyY+rYQjsZvre2GH4yN4PmmDmM1I4BxY5Kpa42fdBIPahB7lj0EAjwV s8+m4sHOKSgtANjFEr2vrdEFXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOx9YALg 7IKIXgvqWwnuA8AzGo5xMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN/6/MIioN7HRslA2qDgCSn4dBL7tLPdrN6/Jh2QCPW2BCJcVbTZkucdUrUKH ftlri060UqJuYldurkzkms5rsaaUDJDGiFRBmvMgRNFhN78mNMMHwTmNT8ksdj/u uLWjq3adeBX+Q5Ect9Sy2gbCWzNcndhLz4s8l7LpbXVynS8b5vfDAVZjsj1UyKYb pK8xCjXyrVHWcQQz+0mbgXJ+LwCHHPIChON3FHFJ4R57n4pBsVXI0rXl7Bv59VeH 4X4WsZlwRLurvkLk1STt34qaoBUZDiM1szL35VgBr5ryQrk70VvldPn0UDSKZ4uv RGnOH2HI0femtxId9QnPWULcZA== -----END CERTIFICATE-----Generated at Thu May 21 10:14:50 2026 by rpki-client