$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft File: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft (raw, json) Hash identifier: 9dCxSd1fnfx9Uc7Phna2FnOU5c4lbryHqrY9NScMvoM= Subject key identifier: AC:FB:FE:0F:41:0B:7A:39:9F:B8:6E:B0:C4:4C:23:A7:EB:F1:5D:30 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft Manifest number: 0277 Signing time: Thu 21 May 2026 02:03:28 +0000 Manifest this update: Thu 21 May 2026 02:03:27 +0000 Manifest next update: Thu 28 May 2026 02:03:27 +0000 Files and hashes: 1: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl (hash: HOll/+88s8O9egdxrDNTiR90H/d2B44vhiyc6LBbNQA=) 2: 665497A2AC1011ED8592693FC4F9AE02.roa (hash: qIJw0+FjxuTWluHNODsBUj7/4aX0PbanF96QaF1KBaA=) 3: 6549AD3EAC1011ED8592693FC4F9AE02.roa (hash: ZK4LGz9IH3YYiFptoI1UZ2KXhSWEWUkXq5JqqcwZNko=) 4: 64B2DE72AC1011ED8592693FC4F9AE02.roa (hash: fbmqeqVKiqA0r2a2Diispb0Kfg/Ww32W2ewxBa+GSGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: May 21 02:03:27 2026 GMT Not After : May 28 02:03:27 2026 GMT Subject: CN=6a0e67ef-af6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:39:70:c9:d7:b3:ff:55:97:f3:72:e5:09: 1b:be:c0:46:6a:d8:ee:9c:5e:07:01:ba:03:f3:98: c1:2b:5d:24:14:b5:e4:d1:1e:56:ae:91:72:87:d2: aa:85:3e:64:6a:20:13:d7:97:14:ac:2e:0f:6b:24: e3:aa:3a:49:3d:0e:f5:2b:d7:80:65:ba:1a:eb:69: f6:8a:ed:6e:7e:64:0d:04:eb:49:35:59:7f:09:75: 4a:33:70:20:bd:32:4c:6f:14:6b:81:ce:8e:d2:60: f3:ad:d8:16:74:1b:e5:a7:56:89:ed:1d:24:4a:be: 3f:bb:ec:75:bb:fd:c2:e8:4e:5b:52:f3:60:0c:87: f0:82:be:2a:aa:9b:b4:44:d7:5f:4e:96:ec:94:63: f9:a3:ba:da:fe:ff:92:69:5c:b4:df:50:5c:bc:dd: 74:0b:13:d5:62:c0:7a:90:5e:ad:8d:cf:7f:58:9a: 14:cc:5a:5c:47:2a:6a:60:f3:17:3f:9c:46:21:91: d8:ba:21:cf:5c:38:9c:96:71:55:91:44:49:05:c5: b8:0e:89:2e:04:54:8f:a9:ee:89:6a:fe:28:58:0b: 87:d4:79:dd:7f:f7:fd:b2:8a:19:15:f7:dc:29:ed: 0c:85:c6:5c:ea:16:08:b8:23:fd:87:db:df:15:47: a9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FB:FE:0F:41:0B:7A:39:9F:B8:6E:B0:C4:4C:23:A7:EB:F1:5D:30 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:fb:10:ef:bb:70:fc:9a:d5:c3:b1:cd:b3:2a:b1:c2:18:ef: b6:7d:51:e3:9f:81:cc:c0:48:24:71:64:de:79:92:18:2a:e5: 24:a2:85:03:e5:98:4b:96:a2:1c:b1:3e:a2:cc:51:55:92:48: ca:e6:d2:79:92:5a:58:16:93:7c:7a:d8:3b:eb:d8:3e:b2:3f: 60:06:42:d1:d0:c2:33:ee:51:59:cb:da:76:15:6d:bb:b5:91: 61:83:62:b6:c3:0e:7d:8f:18:1c:38:bb:cc:c0:35:39:6f:3d: e5:1d:3e:87:cd:4a:59:3e:fb:b4:87:f5:f8:7c:99:65:bb:9f: eb:0b:0c:ca:09:a8:83:9a:bf:69:8d:2b:c2:b1:ae:bc:2e:7a: 54:5f:92:57:f8:95:4a:07:b7:b7:a6:f5:ff:92:7b:c7:af:fa: 09:a0:c2:7c:4a:bf:99:2b:82:78:a4:a8:a2:1f:57:94:69:c3: f6:dd:d7:5f:a6:5b:f6:a2:e1:19:2b:75:8c:43:52:22:e4:70: 99:1e:6d:9c:fe:d7:81:76:4a:f1:07:55:55:9f:99:8f:a6:70: c9:61:86:9b:5e:dc:0a:a8:14:57:8f:51:17:66:56:8c:84:97: ec:d7:cf:e1:5c:0c:e3:8c:58:de:dd:f6:be:6d:b0:2b:f1:00: c0:ae:45:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjYwNTIxMDIwMzI3WhcNMjYwNTI4MDIwMzI3WjAYMRYwFAYD VQQDEw02YTBlNjdlZi1hZjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxI5cMnXs/9Vl/Ny5QkbvsBGatjunF4HAboD85jBK10kFLXk0R5WrpFyh9Kq hT5kaiAT15cUrC4PayTjqjpJPQ71K9eAZboa62n2iu1ufmQNBOtJNVl/CXVKM3Ag vTJMbxRrgc6O0mDzrdgWdBvlp1aJ7R0kSr4/u+x1u/3C6E5bUvNgDIfwgr4qqpu0 RNdfTpbslGP5o7ra/v+SaVy031BcvN10CxPVYsB6kF6tjc9/WJoUzFpcRypqYPMX P5xGIZHYuiHPXDiclnFVkURJBcW4DokuBFSPqe6Jav4oWAuH1Hndf/f9sooZFffc Ke0MhcZc6hYIuCP9h9vfFUepRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKz7/g9B C3o5n7husMRMI6fr8V0wMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdD cDZIazJrc3NCdnJTcXU1TGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAvsQ77tw/JrVw7HNsyqxwhjvtn1R45+BzMBIJHFk3nmSGCrlJKKFA+WYS5ai HLE+osxRVZJIyubSeZJaWBaTfHrYO+vYPrI/YAZC0dDCM+5RWcvadhVtu7WRYYNi tsMOfY8YHDi7zMA1OW895R0+h81KWT77tIf1+HyZZbuf6wsMygmog5q/aY0rwrGu vC56VF+SV/iVSge3t6b1/5J7x6/6CaDCfEq/mSuCeKSooh9XlGnD9t3XX6Zb9qLh GSt1jENSIuRwmR5tnP7XgXZK8QdVVZ+Zj6ZwyWGGm17cCqgUV49RF2ZWjISX7NfP 4VwM44xY3t32vm2wK/EAwK5FKA== -----END CERTIFICATE-----Generated at Thu May 21 12:17:22 2026 by rpki-client