$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: E1DGOjiPTuBgenuBhwT4Mn2LU3VWePNATXKMrhiHFRU= Subject key identifier: D4:73:2A:5D:48:BA:CC:E8:BF:82:39:39:BC:39:01:1E:C3:52:10:CE Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 01AF Signing time: Thu 21 May 2026 04:05:39 +0000 Manifest this update: Thu 21 May 2026 04:05:38 +0000 Manifest next update: Thu 28 May 2026 04:05:38 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: pUKhUOOpTLqnBSplgosLmnoPBiCyG/i3uN2K+0HZLYo=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: b/pfyAz5rp6mzw6WWGb7CmVVosPd7X9N4rdBir+XR2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: May 21 04:05:38 2026 GMT Not After : May 28 04:05:38 2026 GMT Subject: CN=6a0e8492-ca8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:51:33:2f:f7:c0:34:a6:41:03:c8:b7:06:69: f3:09:3c:83:77:77:ed:ac:b0:13:e2:0b:0c:11:41: fe:90:8d:2b:b2:61:4a:e3:09:80:62:d0:c7:a7:0a: a1:c2:28:9c:61:ff:40:14:fd:03:7c:01:cc:94:0e: 87:e4:24:f7:77:b6:d5:92:b4:ab:b7:42:29:4d:dc: dc:0e:9b:a9:c8:68:f4:70:18:a6:2c:44:c2:21:9c: c3:a2:8e:b0:7c:3b:22:4d:4f:fc:39:36:be:46:83: 83:28:c4:a6:ff:56:61:19:f2:2b:fb:8c:cd:df:88: 23:0e:99:e1:99:ef:a5:34:3c:91:41:a0:00:2a:7e: db:5c:90:1c:6e:83:e7:13:6c:01:7b:a1:73:cc:6d: b2:84:2a:ed:30:16:15:b5:44:78:3f:01:59:9b:8d: 69:5f:a3:4d:67:35:52:cd:8b:60:c3:95:7a:7b:9e: fc:c0:4a:69:0e:bf:bf:be:7f:96:ce:38:18:06:8b: e8:34:8e:cf:04:99:b0:6b:3e:bf:70:fd:f8:41:ea: ec:30:c2:17:25:79:dd:cd:ea:c5:a4:2b:6f:8d:d8: a1:21:60:35:2a:e4:e4:7a:27:9c:84:bf:da:c5:bf: 2a:b1:cc:13:1e:c4:04:c1:7d:cb:55:93:dd:86:e4: 49:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:73:2A:5D:48:BA:CC:E8:BF:82:39:39:BC:39:01:1E:C3:52:10:CE X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:3b:90:06:e4:23:81:23:dd:ea:bb:d4:9f:c8:1e:67:5b:db: b3:d3:97:8d:6c:8d:c7:70:d5:7e:0a:28:6e:a2:1e:6f:70:83: b8:dd:98:02:95:67:12:a0:b6:0f:7f:d1:6a:23:97:25:fb:f8: 6d:ed:94:01:dc:c6:8a:6c:cc:ca:26:a3:1b:7f:d7:cb:74:d2: 7b:81:ca:b6:f7:d9:d8:67:fc:89:01:61:33:b3:e0:f6:81:2e: 7f:79:3c:d0:eb:26:e7:d2:4b:c4:a2:63:ff:31:af:57:e4:24: b4:95:0e:af:81:6b:7a:d2:d3:0e:9c:69:70:7f:d1:e2:ad:34: 45:11:8c:bc:b8:81:cb:d2:a3:7c:9f:33:c0:02:b5:f3:f7:9b: 44:64:0a:a6:59:41:6b:da:7b:1e:d0:fa:7e:14:86:aa:26:10: 63:35:7d:ff:86:cd:e5:dc:ec:28:40:6d:57:e2:f9:c3:ce:d5: a1:e4:4f:e9:68:87:e8:50:35:90:b5:64:cb:04:87:74:df:a2: c2:75:0f:4c:8e:ac:42:15:56:18:72:06:93:f7:51:30:ee:d4: e2:9b:2e:c4:f1:6e:04:b8:a0:0f:4f:d3:7f:c7:6c:ff:bd:93: 68:86:f2:b0:90:d2:e6:45:42:f1:de:59:42:63:c6:3e:3e:5e: 56:0b:c5:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjYwNTIxMDQwNTM4WhcNMjYwNTI4MDQwNTM4WjAYMRYwFAYD VQQDEw02YTBlODQ5Mi1jYThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslEzL/fANKZBA8i3BmnzCTyDd3ftrLAT4gsMEUH+kI0rsmFK4wmAYtDHpwqh wiicYf9AFP0DfAHMlA6H5CT3d7bVkrSrt0IpTdzcDpupyGj0cBimLETCIZzDoo6w fDsiTU/8OTa+RoODKMSm/1ZhGfIr+4zN34gjDpnhme+lNDyRQaAAKn7bXJAcboPn E2wBe6FzzG2yhCrtMBYVtUR4PwFZm41pX6NNZzVSzYtgw5V6e578wEppDr+/vn+W zjgYBovoNI7PBJmwaz6/cP34QersMMIXJXndzerFpCtvjdihIWA1KuTkeiechL/a xb8qscwTHsQEwX3LVZPdhuRJYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNRzKl1I uszov4I5Obw5AR7DUhDOMB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgjuQBuQjgSPd6rvUn8geZ1vbs9OXjWyNx3DVfgoobqIeb3CDuN2YApVnEqC2 D3/RaiOXJfv4be2UAdzGimzMyiajG3/Xy3TSe4HKtvfZ2Gf8iQFhM7Pg9oEuf3k8 0Osm59JLxKJj/zGvV+QktJUOr4FretLTDpxpcH/R4q00RRGMvLiBy9KjfJ8zwAK1 8/ebRGQKpllBa9p7HtD6fhSGqiYQYzV9/4bN5dzsKEBtV+L5w87VoeRP6WiH6FA1 kLVkywSHdN+iwnUPTI6sQhVWGHIGk/dRMO7U4psuxPFuBLigD0/Tf8ds/72TaIby sJDS5kVC8d5ZQmPGPj5eVgvF6w== -----END CERTIFICATE-----Generated at Thu May 21 09:36:15 2026 by rpki-client