$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json) Hash identifier: 69ItXkhxAHihqdxNDvxVTaFYqtkrtHWsjG2yx64bNDo= Subject key identifier: 84:4A:A6:9B:74:17:A2:94:3A:99:DA:E5:C7:5F:05:AC:EA:29:05:6D Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Certificate serial: 2143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft Manifest number: 28FF Signing time: Wed 20 May 2026 15:55:40 +0000 Manifest this update: Wed 20 May 2026 15:55:39 +0000 Manifest next update: Wed 27 May 2026 15:55:39 +0000 Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: CJpdDpsQxNoOfDxwVIDq+hU19siwUk20lrkwZPetP78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8515 (0x2143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Validity Not Before: May 20 15:55:39 2026 GMT Not After : May 27 15:55:39 2026 GMT Subject: CN=6a0dd97b-7014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:32:5b:dd:4e:b2:de:2c:40:5c:24:d0:bd: e2:41:f2:8b:03:80:37:85:7e:65:cb:81:f1:5e:b3: 5e:71:25:0b:d9:ef:fa:53:9b:77:22:0f:ac:09:4b: 55:60:ae:87:55:af:93:98:76:f0:2b:b3:34:73:66: a4:d7:d4:58:bb:a8:67:c2:7c:8a:e9:0f:98:5c:cb: 72:92:f6:8d:73:a5:b1:cc:c2:2d:1b:3e:19:e8:61: f8:4b:16:86:57:e2:75:7b:4e:46:38:da:2b:5b:34: 7b:27:b7:8b:07:e6:12:ce:cc:6d:8a:a1:bc:27:c6: a8:a9:14:39:89:a0:10:d8:b2:a4:15:0c:e3:f5:d7: 51:dc:d2:b5:6b:4c:69:7d:94:67:b2:0a:f4:d7:46: 62:b7:e5:c4:ba:81:01:ae:72:c7:6a:ba:3d:91:27: c0:b9:c8:08:8a:6b:17:07:36:40:ae:06:28:71:78: a5:2a:4f:a9:ce:8e:19:6d:91:80:b2:79:35:46:31: 75:ed:69:fc:f9:31:b7:19:1f:a6:da:1d:1f:24:75: 9c:d4:e9:b9:aa:ff:22:8a:dd:63:68:c2:a1:07:d6: 58:e2:3f:f5:d3:ab:c7:69:25:62:de:88:1e:ec:d6: 3d:d3:4b:b7:70:b0:b7:72:b9:65:c6:fd:57:fa:d4: 63:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4A:A6:9B:74:17:A2:94:3A:99:DA:E5:C7:5F:05:AC:EA:29:05:6D X509v3 Authority Key Identifier: keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:dd:b9:82:32:23:1c:df:73:c2:02:a8:cd:08:74:67:ff:61: ff:9c:38:7e:e3:c6:0b:c4:21:0e:1f:6d:a2:27:60:00:10:aa: da:8b:f9:f5:5b:ce:7c:12:40:0c:f8:a7:1e:bf:be:f0:9b:a7: c5:b9:cb:74:c9:e3:50:ed:1a:dc:ca:af:33:43:2a:7e:ba:08: 44:01:c3:35:52:71:6c:ce:18:4b:e8:ed:9d:fc:88:d3:b9:96: 13:cd:16:ed:3d:97:31:8d:38:12:4f:b6:32:ba:c2:d5:0b:57: f8:6b:db:3b:92:03:98:2f:bd:46:19:74:04:85:8d:94:1c:18: d9:96:e7:49:2b:80:63:b1:93:95:5c:7a:51:ac:7f:3b:5a:87: 97:39:73:04:16:7f:18:e4:3b:b4:bc:e7:9d:15:c3:52:3c:14: d2:5d:1d:e6:04:46:d1:ee:69:8c:23:44:33:62:70:03:e7:d3: e4:18:38:26:38:d2:28:e0:6a:a1:74:39:a6:0b:63:3b:e6:99: 45:2c:58:38:43:3c:3d:ea:11:5a:f0:56:f0:16:11:35:64:64: a7:c9:5a:e6:d1:c4:96:1a:8d:06:6e:a6:1e:11:93:2a:7e:bf: a5:23:6f:2e:4b:bd:ad:30:ad:0b:e7:4f:ba:40:d0:b0:e3:f1: 34:9c:48:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0 NTQ4QjEzQzEwHhcNMjYwNTIwMTU1NTM5WhcNMjYwNTI3MTU1NTM5WjAYMRYwFAYD VQQDEw02YTBkZDk3Yi03MDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkMyW91Ost4sQFwk0L3iQfKLA4A3hX5ly4HxXrNecSUL2e/6U5t3Ig+sCUtV YK6HVa+TmHbwK7M0c2ak19RYu6hnwnyK6Q+YXMtykvaNc6WxzMItGz4Z6GH4SxaG V+J1e05GONorWzR7J7eLB+YSzsxtiqG8J8aoqRQ5iaAQ2LKkFQzj9ddR3NK1a0xp fZRnsgr010Zit+XEuoEBrnLHaro9kSfAucgIimsXBzZArgYocXilKk+pzo4ZbZGA snk1RjF17Wn8+TG3GR+m2h0fJHWc1Om5qv8iit1jaMKhB9ZY4j/106vHaSVi3oge 7NY900u3cLC3crllxv1X+tRj/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIRKppt0 F6KUOpna5cdfBazqKQVtMB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv X3YzeUU1WFFfb0pGU0xFOEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqt25gjIjHN9zwgKozQh0Z/9h/5w4fuPGC8QhDh9toidgABCq2ov59VvOfBJA DPinHr++8JunxbnLdMnjUO0a3MqvM0MqfroIRAHDNVJxbM4YS+jtnfyI07mWE80W 7T2XMY04Ek+2MrrC1QtX+GvbO5IDmC+9Rhl0BIWNlBwY2ZbnSSuAY7GTlVx6Uax/ O1qHlzlzBBZ/GOQ7tLznnRXDUjwU0l0d5gRG0e5pjCNEM2JwA+fT5Bg4JjjSKOBq oXQ5pgtjO+aZRSxYOEM8PeoRWvBW8BYRNWRkp8la5tHElhqNBm6mHhGTKn6/pSNv Lku9rTCtC+dPukDQsOPxNJxIKQ== -----END CERTIFICATE-----Generated at Thu May 21 09:30:23 2026 by rpki-client