$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: 8xWhQS7oQPrzHdwWW1SD+gVWQV/9OOHsRxX9jFwmVIk= Subject key identifier: 29:4F:0F:DA:46:B6:3C:58:15:DB:9C:B8:CD:36:39:44:CE:5B:AB:10 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 0650 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 062B Signing time: Wed 20 May 2026 22:56:04 +0000 Manifest this update: Wed 20 May 2026 22:56:04 +0000 Manifest next update: Wed 27 May 2026 22:56:04 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: XFnxDSNcUO29q0EbLGEyxDm/wEM/BqF+PE+uwArI3Rk=) 2: B0203536062A11F185F9D5F9263D8C67.roa (hash: 6dnR2Nm3KNO6A8Yh2KSvhbTBZD8W+AyXyUMBx8JMzbg=) 3: 75125118FE5F11F0956342DD516F56BC.roa (hash: Whh/5V1YlqO85bcjOHvfWe0PcIZNVRDICOUqC1FzhpY=) 4: A18C330A055611F1B80F1E722C3D8C67.roa (hash: BX80cDVzZBpalgIyEiFZUq6L3s4iGC1yQ7gUj1TwOQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: May 20 22:56:04 2026 GMT Not After : May 27 22:56:04 2026 GMT Subject: CN=6a0e3c04-f7ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:d8:4d:e0:4f:85:9a:46:cf:0a:cb:98:f0: 83:b3:20:da:8a:40:c0:49:77:cc:e8:2f:57:9c:b7: 49:d5:33:a2:dc:72:b1:53:a3:5c:85:21:00:b7:fc: f0:59:7d:f6:0b:04:4d:40:ec:e7:3e:fe:a0:7d:f3: fd:d6:3e:26:0e:a8:ac:1c:ae:12:5e:5d:fc:68:1d: 5b:ed:76:c4:4d:1d:e4:cf:2e:2e:5f:d1:e7:ed:71: a1:81:14:3e:a6:02:16:87:45:10:4c:b6:8b:73:85: 9f:f7:01:d3:22:4a:a1:0b:4e:04:f9:db:d3:91:6c: 65:52:97:9d:ff:d3:79:1c:f7:8d:66:3f:45:9f:5a: 43:d0:77:2d:88:e6:54:e1:38:a9:fb:ee:c5:98:f5: a2:97:77:47:75:34:5f:3b:f9:dd:c7:ae:a9:01:92: 44:cd:49:a9:21:a9:2d:40:88:a6:27:af:20:57:91: 25:4d:83:b0:85:dc:11:65:a1:45:ad:40:b8:d8:e2: 54:17:b1:f8:d4:0a:1b:c7:a3:0d:62:e1:f8:82:86: 07:44:05:6a:1b:a9:f6:7a:b7:bf:dc:55:e3:ac:70: c1:d9:df:0c:2b:0c:4b:e6:02:3a:41:81:6e:ba:a9: 6c:7b:e0:ec:54:b2:21:d3:c1:f9:69:7c:6c:f7:45: 2f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4F:0F:DA:46:B6:3C:58:15:DB:9C:B8:CD:36:39:44:CE:5B:AB:10 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:cb:f2:e9:dc:bf:c8:79:e1:12:58:f5:71:5f:73:77:e9:b5: 50:dd:37:95:7c:01:e0:69:e3:92:b4:b3:a6:ca:97:b3:57:cd: 83:0a:84:10:e0:57:c5:74:7d:83:36:d9:f0:b2:8f:2e:7c:bc: 47:79:ba:2e:b7:73:76:5c:b0:44:40:4a:b7:c4:70:de:72:6e: bd:7a:0d:8f:bb:9c:2b:a8:cc:68:fd:19:8d:01:6d:d1:73:61: 09:35:23:0d:4b:ca:c5:41:fc:38:29:9f:2f:63:3e:df:a1:ef: f6:55:e1:74:90:8e:42:d0:8e:5f:c0:92:d6:48:4e:d8:de:c8: d7:d7:08:a7:47:a8:14:88:ab:f4:71:3e:ae:e9:b9:4e:2f:56: 40:79:18:28:95:ca:46:a7:b2:b2:86:7a:be:a6:4f:f4:7c:c1: 6e:c0:5b:6d:77:01:08:7d:c2:93:45:11:f6:5b:62:95:4a:b3: bb:b7:11:23:30:e2:7e:df:5c:13:75:b7:ee:b8:1d:d5:c8:6e: 2d:1f:f4:09:15:92:80:a7:e5:fd:85:67:7b:a4:a4:61:d4:95: d6:06:80:44:c4:ca:39:ea:42:42:14:5a:ac:23:56:d5:33:7b: fc:29:3b:8e:75:36:c8:c2:37:de:79:ee:25:96:a1:11:3a:fb: 2d:3d:32:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjYwNTIwMjI1NjA0WhcNMjYwNTI3MjI1NjA0WjAYMRYwFAYD VQQDEw02YTBlM2MwNC1mN2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpHYTeBPhZpGzwrLmPCDsyDaikDASXfM6C9XnLdJ1TOi3HKxU6NchSEAt/zw WX32CwRNQOznPv6gffP91j4mDqisHK4SXl38aB1b7XbETR3kzy4uX9Hn7XGhgRQ+ pgIWh0UQTLaLc4Wf9wHTIkqhC04E+dvTkWxlUped/9N5HPeNZj9Fn1pD0HctiOZU 4Tip++7FmPWil3dHdTRfO/ndx66pAZJEzUmpIaktQIimJ68gV5ElTYOwhdwRZaFF rUC42OJUF7H41Aobx6MNYuH4goYHRAVqG6n2ere/3FXjrHDB2d8MKwxL5gI6QYFu uqlse+DsVLIh08H5aXxs90UvywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFClPD9pG tjxYFducuM02OUTOW6sQMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW8vy6dy/yHnhElj1cV9zd+m1UN03lXwB4GnjkrSzpsqXs1fNgwqEEOBXxXR9 gzbZ8LKPLny8R3m6LrdzdlywREBKt8Rw3nJuvXoNj7ucK6jMaP0ZjQFt0XNhCTUj DUvKxUH8OCmfL2M+36Hv9lXhdJCOQtCOX8CS1khO2N7I19cIp0eoFIir9HE+rum5 Ti9WQHkYKJXKRqeysoZ6vqZP9HzBbsBbbXcBCH3Ck0UR9ltilUqzu7cRIzDift9c E3W37rgd1chuLR/0CRWSgKfl/YVne6SkYdSV1gaARMTKOepCQhRarCNW1TN7/Ck7 jnU2yMI33nnuJZahETr7LT0yCg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:12 2026 by rpki-client