$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft File: x8206hgWXlmC0KkZ_0f3JnbgUHM.mft (raw, json) Hash identifier: NCIXlcivjR74/2apCN/65quWthlJDNxSqB7LMk5jIuQ= Subject key identifier: A7:67:6A:E5:7A:02:2D:EC:2A:A9:19:0D:90:BB:9E:C7:C7:45:5A:44 Authority key identifier: C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 Certificate issuer: /CN=A91FBEFA/serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft Manifest number: D9 Signing time: Thu 21 May 2026 06:45:43 +0000 Manifest this update: Thu 21 May 2026 06:45:42 +0000 Manifest next update: Thu 28 May 2026 06:45:42 +0000 Files and hashes: 1: x8206hgWXlmC0KkZ_0f3JnbgUHM.crl (hash: Dvv4YJTrCDfZ0t4cU10qWpTi2SdxE44cFTRfUYWPs50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Validity Not Before: May 21 06:45:42 2026 GMT Not After : May 28 06:45:42 2026 GMT Subject: CN=6a0eaa17-49bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9c:cc:0a:25:af:73:74:bd:a7:dc:20:27:d9: 4a:b0:8e:69:7d:78:5a:6e:2c:a2:33:e2:1a:dd:40: f0:05:48:fc:69:8c:91:1b:3f:da:81:d6:b5:04:c6: a3:dc:30:b0:9a:13:77:b1:f9:3a:0b:9a:a3:27:af: a9:73:af:e2:6c:5f:c0:f6:44:1a:f6:1b:10:68:f7: 3c:77:b5:24:de:67:d2:57:eb:4a:f6:e7:7e:f1:62: 2e:d1:c9:2d:49:fc:ef:2c:77:51:5f:64:5c:d4:70: a5:ca:e3:6a:02:14:4e:15:97:26:4e:e1:fa:c1:f2: 78:e7:61:d3:87:e6:9e:57:66:4a:fd:f0:e8:26:91: b0:37:4c:cd:f7:0c:06:b1:46:01:3c:cc:15:2f:61: b4:5a:dc:17:30:27:19:4a:25:76:b4:03:8d:d0:35: c0:bf:24:75:28:a8:f7:12:82:99:d0:e8:5b:2c:43: 26:1b:47:29:da:a3:c0:aa:39:c1:ae:58:c6:20:5b: 2a:a6:22:82:99:9f:e2:e7:b6:43:70:18:f1:c0:4a: 1b:83:8f:a6:db:e7:16:ce:8a:9e:7c:c9:73:24:82: 86:64:7c:9b:78:de:13:54:39:76:47:b2:d6:8a:98: 0b:ac:c7:e9:67:d2:cf:eb:c6:74:07:ac:55:bb:17: 9d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:67:6A:E5:7A:02:2D:EC:2A:A9:19:0D:90:BB:9E:C7:C7:45:5A:44 X509v3 Authority Key Identifier: keyid:C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c2:37:fd:cb:95:a4:0a:73:4d:02:79:38:db:22:36:5e:14: 54:32:8d:58:23:b4:f1:31:8b:8f:7e:c8:a2:69:3f:fe:6c:87: a2:77:a8:a3:62:69:b3:f5:69:df:28:bf:85:d3:1e:77:a7:ba: 4c:f5:c2:73:23:ca:fb:8b:65:0a:41:b1:72:07:1d:98:d1:2a: 33:d2:b0:80:dc:b8:71:84:81:08:43:e0:af:5b:15:8a:fe:97: b4:9f:a4:5a:0c:60:4e:b1:5b:c6:5a:5e:c3:a6:0f:2f:87:f8: 24:e6:91:72:72:30:aa:d0:63:47:40:8d:a3:da:14:c4:2b:cc: 5d:93:4d:b4:bc:a0:a4:bc:21:dc:d3:3a:20:fc:5c:f4:72:f3: 1b:06:89:45:d7:58:fd:bb:f1:e2:c1:ac:3c:57:45:6e:e9:d6: 2e:e6:5c:d4:4d:5c:6a:58:6f:50:cf:70:50:d6:92:ab:70:ba: 29:9e:58:ac:14:6b:6e:1d:60:18:bf:52:43:3b:1a:57:f7:68: 43:23:39:c5:b5:fd:3f:a1:58:a7:d6:63:a9:4f:5f:09:3e:68: 19:75:20:70:4c:09:fa:87:7f:0d:30:55:da:d2:a7:b7:b9:ed: 0a:b7:e6:b3:4b:b6:99:3d:ca:c8:97:0c:58:1a:c1:9a:aa:ac: 04:a6:0d:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJFRkExMTAvBgNVBAUTKEM3Q0RCNEVBMTgxNjVFNTk4MkQwQTkxOUZGNDdGNzI2 NzZFMDUwNzMwHhcNMjYwNTIxMDY0NTQyWhcNMjYwNTI4MDY0NTQyWjAYMRYwFAYD VQQDEw02YTBlYWExNy00OWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZzMCiWvc3S9p9wgJ9lKsI5pfXhabiyiM+Ia3UDwBUj8aYyRGz/agda1BMaj 3DCwmhN3sfk6C5qjJ6+pc6/ibF/A9kQa9hsQaPc8d7Uk3mfSV+tK9ud+8WIu0ckt SfzvLHdRX2Rc1HClyuNqAhROFZcmTuH6wfJ452HTh+aeV2ZK/fDoJpGwN0zN9wwG sUYBPMwVL2G0WtwXMCcZSiV2tAON0DXAvyR1KKj3EoKZ0OhbLEMmG0cp2qPAqjnB rljGIFsqpiKCmZ/i57ZDcBjxwEobg4+m2+cWzoqefMlzJIKGZHybeN4TVDl2R7LW ipgLrMfpZ9LP68Z0B6xVuxedcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKdnauV6 Ai3sKqkZDZC7nsfHRVpEMB8GA1UdIwQYMBaAFMfNtOoYFl5ZgtCpGf9H9yZ24FBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkVGQS8xNzI1NDZCQzBC MzcxMUYwOEMyMzk4NjNDNEY5QUUwMi94ODIwNmhnV1hsbUMwS2taXzBmM0puYmdV SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4MjA2aGdXWGxtQzBLa1pfMGYzSm5iZ1VITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkVGQS8xNzI1NDZCQzBCMzcxMUYwOEMyMzk4NjNDNEY5QUUwMi94ODIwNmhnV1hs bUMwS2taXzBmM0puYmdVSE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH8I3/cuVpApzTQJ5ONsiNl4UVDKNWCO08TGLj37Iomk//myHoneoo2Jps/Vp 3yi/hdMed6e6TPXCcyPK+4tlCkGxcgcdmNEqM9KwgNy4cYSBCEPgr1sViv6XtJ+k WgxgTrFbxlpew6YPL4f4JOaRcnIwqtBjR0CNo9oUxCvMXZNNtLygpLwh3NM6IPxc 9HLzGwaJRddY/bvx4sGsPFdFbunWLuZc1E1calhvUM9wUNaSq3C6KZ5YrBRrbh1g GL9SQzsaV/doQyM5xbX9P6FYp9ZjqU9fCT5oGXUgcEwJ+od/DTBV2tKnt7ntCrfm s0u2mT3KyJcMWBrBmqqsBKYNMg== -----END CERTIFICATE-----Generated at Thu May 21 11:15:38 2026 by rpki-client