$ rpki-client -vvf rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft File: htoZAOYVDL2c2BWsZ9xTpebTwCc.mft (raw, json) Hash identifier: 9ksdJ907+b9szWyatoKmmzJPcAtoYAUK7ix9tkIAn3Q= Subject key identifier: 1B:82:FF:43:A2:18:65:28:E6:85:53:99:34:7E:66:19:02:BC:A4:BE Authority key identifier: 86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 Certificate issuer: /CN=A911933B/serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft Manifest number: 01D6 Signing time: Thu 21 May 2026 03:42:55 +0000 Manifest this update: Thu 21 May 2026 03:42:54 +0000 Manifest next update: Thu 28 May 2026 03:42:54 +0000 Files and hashes: 1: htoZAOYVDL2c2BWsZ9xTpebTwCc.crl (hash: MXMEI3sIOgGwL+0WeAqtHTjUTs01PoLqnGX9KtYuUv8=) 2: 385B3E3A42EB11F187C800F790833773.roa (hash: lsXYrcjPbnHgiNpDbl0Ybrr03F7tffMHJYTiyEAODzQ=) 3: F9EE01A842E211F1B650BCD08E833773.roa (hash: 2XaqgQvJvdCsnon/kkAwU+ckm99qA9tybA5kJKKFgfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911933B, serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Validity Not Before: May 21 03:42:54 2026 GMT Not After : May 28 03:42:54 2026 GMT Subject: CN=6a0e7f3e-8de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:61:da:a5:f4:d9:b4:53:a6:67:bd:69:95:56: 08:3b:1d:2b:23:2a:d0:6f:c3:85:a1:5e:1f:99:51: 78:21:38:c6:a9:a9:7e:fb:0a:e3:95:75:fe:12:f0: 52:80:80:a1:fb:c4:94:24:9c:38:24:cc:2b:fe:a7: f5:c6:b4:53:fc:e3:db:27:08:61:9d:7d:24:87:50: b9:c3:b8:ed:a5:2f:d5:5c:73:b3:52:0d:d6:7a:26: db:f6:24:d4:62:54:a7:fc:d1:10:b6:14:1a:0a:11: ca:e7:32:68:cf:11:bf:78:3d:fb:f7:cf:10:ea:6a: 0e:42:84:1d:98:b2:9d:77:ab:b8:24:88:a8:ea:34: 7f:11:c0:9c:95:1f:ba:50:15:0f:5b:67:b4:c5:53: 1d:98:b8:8f:b4:c0:1d:89:6a:f8:d5:b6:4a:12:db: 47:32:88:63:10:4a:02:3e:de:d7:ae:be:c7:c3:ed: 3b:c1:07:ff:9b:33:7d:2e:b8:d8:85:a2:8c:aa:b0: 98:9f:19:de:92:7f:49:b6:2f:66:57:a6:ec:be:5f: c2:8f:29:08:2e:0a:c5:74:fb:46:02:6a:c1:2a:0a: 23:3f:d8:d9:6d:7c:a4:ff:a7:68:a3:eb:a2:36:18: b0:f1:48:8d:5d:f8:07:3e:58:fe:f2:1d:24:04:c7: d7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:82:FF:43:A2:18:65:28:E6:85:53:99:34:7E:66:19:02:BC:A4:BE X509v3 Authority Key Identifier: keyid:86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:dc:6f:4b:c0:ee:69:b8:ae:ae:b0:07:8c:f2:09:3d:46:30: b7:cc:8b:97:19:fe:4e:8e:1c:47:b3:cf:cf:d9:04:a8:6c:67: 19:19:b4:70:5b:86:2e:e2:d2:b5:47:93:47:e4:b0:e6:ab:4f: cb:3b:c6:85:b1:41:bc:ce:79:b0:ea:43:15:b2:67:a6:ac:43: e3:e6:f7:1e:2c:ac:13:9b:95:d7:b1:81:48:0f:77:f6:07:c3: 29:fb:e1:89:db:6e:02:77:bb:fe:4c:1a:0e:a8:e6:6b:9c:25: 36:35:bf:ba:01:5f:a1:f7:5f:1f:af:08:c5:00:5a:0c:ae:f8: e0:eb:16:a4:50:93:7b:72:06:40:58:5a:d2:b8:3d:21:2b:1f: 9a:cf:e5:19:7d:ea:34:f1:fb:f8:9d:d4:3f:0c:ea:07:ee:83: 27:48:76:a0:8e:20:b1:4b:34:f4:41:9c:28:f5:26:0a:46:c9: 7f:78:e9:27:c1:40:ee:a8:7d:8f:00:cc:bc:8f:33:0c:52:4e: e3:8c:47:69:33:dc:bd:65:c8:62:99:fa:9c:7c:2c:4f:3e:47: 74:9e:98:72:ea:79:8b:d6:54:6c:4d:29:97:9e:37:0c:fa:23: 3f:cc:43:05:bb:76:16:ee:b2:08:24:59:04:62:a2:6b:70:93: 22:ad:db:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzM0IxMTAvBgNVBAUTKDg2REExOTAwRTYxNTBDQkQ5Q0Q4MTVBQzY3REM1M0E1 RTZEM0MwMjcwHhcNMjYwNTIxMDM0MjU0WhcNMjYwNTI4MDM0MjU0WjAYMRYwFAYD VQQDEw02YTBlN2YzZS04ZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmHapfTZtFOmZ71plVYIOx0rIyrQb8OFoV4fmVF4ITjGqal++wrjlXX+EvBS gICh+8SUJJw4JMwr/qf1xrRT/OPbJwhhnX0kh1C5w7jtpS/VXHOzUg3Weibb9iTU YlSn/NEQthQaChHK5zJozxG/eD37988Q6moOQoQdmLKdd6u4JIio6jR/EcCclR+6 UBUPW2e0xVMdmLiPtMAdiWr41bZKEttHMohjEEoCPt7Xrr7Hw+07wQf/mzN9LrjY haKMqrCYnxnekn9Jti9mV6bsvl/CjykILgrFdPtGAmrBKgojP9jZbXyk/6doo+ui Nhiw8UiNXfgHPlj+8h0kBMfXXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBuC/0Oi GGUo5oVTmTR+ZhkCvKS+MB8GA1UdIwQYMBaAFIbaGQDmFQy9nNgVrGfcU6Xm08An MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzQi9FOThBMTEzRTky NjQxMUVFOTk0N0RBNUJDNEY5QUUwMi9odG9aQU9ZVkRMMmMyQldzWjl4VHBlYlR3 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h0b1pBT1lWREwyYzJCV3NaOXhUcGViVHdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzQi9FOThBMTEzRTkyNjQxMUVFOTk0N0RBNUJDNEY5QUUwMi9odG9aQU9ZVkRM MmMyQldzWjl4VHBlYlR3Q2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt9xvS8DuabiurrAHjPIJPUYwt8yLlxn+To4cR7PPz9kEqGxnGRm0cFuGLuLS tUeTR+Sw5qtPyzvGhbFBvM55sOpDFbJnpqxD4+b3HiysE5uV17GBSA939gfDKfvh idtuAne7/kwaDqjma5wlNjW/ugFfofdfH68IxQBaDK744OsWpFCTe3IGQFha0rg9 ISsfms/lGX3qNPH7+J3UPwzqB+6DJ0h2oI4gsUs09EGcKPUmCkbJf3jpJ8FA7qh9 jwDMvI8zDFJO44xHaTPcvWXIYpn6nHwsTz5HdJ6Ycup5i9ZUbE0pl543DPojP8xD Bbt2Fu6yCCRZBGKia3CTIq3blw== -----END CERTIFICATE-----Generated at Thu May 21 10:16:06 2026 by rpki-client