$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft File: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft (raw, json) Hash identifier: EHCEpFHeDDA7KBQTB4dXN9JSO8UqT2lZPYxZ2wcMK1E= Subject key identifier: 03:3F:2E:87:EB:55:48:8F:FF:F7:B4:79:F7:F2:88:04:3B:BE:90:2F Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 Certificate issuer: /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft Manifest number: 45 Signing time: Fri 15 May 2026 08:35:13 +0000 Manifest this update: Fri 15 May 2026 08:35:13 +0000 Manifest next update: Fri 22 May 2026 08:35:13 +0000 Files and hashes: 1: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl (hash: EYunAv7nGfDyNLysCwXemiNPEz8DI7VkDqVEob8QapY=) 2: 2235EF78F12011F0BFBF3F154E6F56BC.roa (hash: PdAz+4W9gV7DG5blKrt0fnM9lwbclCTxlZE4svm7VgA=) 3: F5568448F11C11F0AC52AD484D6F56BC.roa (hash: FSRnxAS3d/oxWCt/mXgTvn1rm5+e0wMamnNqPiiIkGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 08:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Validity Not Before: May 15 08:35:13 2026 GMT Not After : May 22 08:35:13 2026 GMT Subject: CN=6a06dac1-7b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1e:6d:e4:aa:7f:e8:0e:8b:dd:ac:ff:b8:58: 94:ea:d6:6f:cc:52:09:bb:b3:6a:cb:5d:c1:af:8e: 6d:87:29:cc:8c:6f:c2:dd:e2:ca:f9:1b:39:72:f1: 83:dc:7e:16:a8:b9:3b:31:eb:a6:89:f2:32:b7:18: db:a2:ed:8d:15:89:62:85:db:65:a8:13:ca:67:74: db:f0:e3:53:69:13:16:41:70:44:44:3a:fc:b3:85: 25:c3:a7:53:c8:c2:a0:5d:49:21:93:b7:d4:b6:c0: df:a4:1e:21:da:4b:45:d7:71:63:90:f4:a5:1c:67: 5e:1d:f4:2d:4f:51:0a:e8:14:61:21:fd:13:a9:b0: 99:da:34:6a:70:b1:d0:93:5d:e5:74:00:70:12:08: a9:f5:61:9c:82:df:e7:d9:28:37:e3:8a:81:f5:74: 2c:97:82:f4:1a:56:53:f1:31:78:29:f2:37:ee:65: b2:18:58:6b:7d:da:83:65:aa:38:c9:23:c6:0a:ac: 3a:8a:e1:a0:2e:b9:a0:be:6b:c7:96:e5:af:0a:92: 6d:66:29:51:be:f7:4c:7e:9f:f0:e7:3f:b6:ff:68: ea:41:e7:5c:27:05:f8:c4:41:b7:49:14:0a:fd:56: 63:e2:2c:fa:3b:1b:6e:8e:ef:13:16:d1:94:7d:f0: dd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3F:2E:87:EB:55:48:8F:FF:F7:B4:79:F7:F2:88:04:3B:BE:90:2F X509v3 Authority Key Identifier: keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:d1:01:83:e4:78:50:92:3d:2e:8f:56:ad:32:9c:e7:99:df: bb:ec:3d:48:18:3c:40:64:e9:db:76:c9:db:20:45:c9:fd:95: ea:b7:5b:0f:42:49:6c:bc:7e:2b:d3:f2:4f:e6:55:f5:73:78: c2:43:6f:9a:05:a5:b1:63:7f:32:cf:71:c1:80:e1:02:cd:79: 94:e0:ab:56:3e:bf:5b:62:82:af:c6:54:82:42:41:ca:8b:a7: b3:2c:58:47:5e:7e:1c:ce:78:5b:52:a3:fa:3c:66:a2:78:b8: ee:ca:4c:30:47:2b:e7:fd:8b:0b:e8:54:96:46:ae:22:a7:13: 02:8b:8e:b1:5a:a8:85:41:b0:1c:d8:36:fe:b2:9c:7b:01:fc: 54:f7:42:2d:1f:85:ed:a9:bc:85:7e:46:2b:ed:8c:8e:47:0e: 13:cb:bf:95:e8:89:30:b7:ea:83:dc:5a:b7:97:30:85:3c:70: 2f:b7:cc:75:bf:36:ad:94:19:fb:46:5f:b7:a4:86:9a:a2:dd: 36:17:92:30:41:91:9a:7a:16:7d:b1:f2:6b:70:be:ba:0a:3c: 78:6c:1f:db:b1:23:01:2c:c7:6f:7c:b5:0b:de:7a:4a:20:03: 31:ba:32:95:77:c2:1a:83:d9:6a:1a:73:84:e3:89:d7:6e:05: f8:42:e6:0a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkIwQzExMC8GA1UEBRMoRDVCMTY3Njg5MTRBODBDOTMxMjQ2Mjk2MTBDQzQwNTAy QUFFRDBFOTAeFw0yNjA1MTUwODM1MTNaFw0yNjA1MjIwODM1MTNaMBgxFjAUBgNV BAMTDTZhMDZkYWMxLTdiNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyHm3kqn/oDovdrP+4WJTq1m/MUgm7s2rLXcGvjm2HKcyMb8Ld4sr5Gzly8YPc fhaouTsx66aJ8jK3GNui7Y0ViWKF22WoE8pndNvw41NpExZBcEREOvyzhSXDp1PI wqBdSSGTt9S2wN+kHiHaS0XXcWOQ9KUcZ14d9C1PUQroFGEh/ROpsJnaNGpwsdCT XeV0AHASCKn1YZyC3+fZKDfjioH1dCyXgvQaVlPxMXgp8jfuZbIYWGt92oNlqjjJ I8YKrDqK4aAuuaC+a8eW5a8Kkm1mKVG+90x+n/DnP7b/aOpB51wnBfjEQbdJFAr9 VmPiLPo7G26O7xMW0ZR98N0nAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUAz8uh+tV SI//97R59/KIBDu+kC8wHwYDVR0jBBgwFoAU1bFnaJFKgMkxJGKWEMxAUCqu0Okw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QjBDL0I2MTM4NkU2RjEx QzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01reEpHS1dFTXhBVUNxdTBP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWJGbmFKRktnTWt4SkdLV0VNeEFVQ3F1ME9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2 QjBDL0I2MTM4NkU2RjExQzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01r eEpHS1dFTXhBVUNxdTBPay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCp0QGD5HhQkj0uj1atMpznmd+77D1IGDxAZOnbdsnbIEXJ/ZXqt1sPQklsvH4r 0/JP5lX1c3jCQ2+aBaWxY38yz3HBgOECzXmU4KtWPr9bYoKvxlSCQkHKi6ezLFhH Xn4cznhbUqP6PGaieLjuykwwRyvn/YsL6FSWRq4ipxMCi46xWqiFQbAc2Db+spx7 AfxU90ItH4XtqbyFfkYr7YyORw4Ty7+V6Ikwt+qD3Fq3lzCFPHAvt8x1vzatlBn7 Rl+3pIaaot02F5IwQZGaehZ9sfJrcL66Cjx4bB/bsSMBLMdvfLUL3npKIAMxujKV d8Iag9lqGnOE44nXbgX4QuYK -----END CERTIFICATE-----Generated at Fri May 15 17:55:46 2026 by rpki-client