$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: MB+8dUXP5dZvWM2vh9KjsxR21kCVgpTD9tqwpe0sH4U= Subject key identifier: 10:FD:94:3E:76:9F:4D:85:02:2F:82:FA:1C:5B:26:39:A6:41:A4:97 Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0358 Signing time: Thu 21 May 2026 03:42:19 +0000 Manifest this update: Thu 21 May 2026 03:42:19 +0000 Manifest next update: Thu 28 May 2026 03:42:19 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: iqjiB1wqRe1HApWvOGfnf4aqXpojUsrGgPK9yEo4c9k=) 2: 65874B72FF1D11F09D5C691B85EE528E.roa (hash: mRk4Fo6iZr93iyaJTrEyOENMDqLXHjjP+xgNzUN6Prs=) 3: 5FAC3CB644CE11F19BD95499BE833773.roa (hash: WkErIMYK/mQSKLc4lnPt53wSfKMo9LaNrKnnlPsS/9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: May 21 03:42:19 2026 GMT Not After : May 28 03:42:19 2026 GMT Subject: CN=6a0e7f1b-aca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:3d:d5:c8:25:4a:d8:1d:06:bb:bf:ee:7f: 72:23:7f:38:cf:75:90:56:ed:99:e0:c3:c5:b7:a1: 7f:bb:f1:a8:2d:d5:6c:29:14:57:ce:b2:0e:cf:7a: f3:d3:fd:69:15:5b:69:96:c8:d6:56:2f:9b:d2:bd: ee:bd:9c:ab:54:12:11:6f:f6:b2:3d:78:e3:79:26: 01:c7:78:9a:a4:db:87:d3:fd:7b:61:fd:8b:6e:26: 83:dd:a4:29:df:37:79:e1:90:1d:c7:61:41:a8:ca: c8:7a:0d:f3:7c:b8:ff:12:fd:ed:c6:c1:35:eb:42: 4b:4a:93:a3:12:e2:4c:2e:60:54:56:05:cd:cb:9f: 8d:b0:7e:d1:95:36:49:5b:e0:68:c6:dc:fc:3f:1b: 18:79:29:f0:15:50:74:64:ce:01:49:0a:b8:89:cc: 50:52:7d:0a:1a:63:ad:61:5d:b0:57:9d:e2:a5:84: a3:05:60:ca:04:9c:58:a3:3e:76:c1:89:65:a4:28: 11:1f:12:9b:45:53:a0:91:6b:1c:df:fd:e9:a8:bb: 32:81:29:89:95:0d:bb:fa:85:9b:5e:8f:71:94:c2: df:58:d0:71:62:3c:41:0d:d0:7f:52:24:f8:1c:31: 90:68:72:47:00:e7:8c:d0:a3:95:bd:49:de:66:e8: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FD:94:3E:76:9F:4D:85:02:2F:82:FA:1C:5B:26:39:A6:41:A4:97 X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e2:bc:dd:f0:cd:55:b6:7e:50:c1:96:b3:69:f3:9e:52:49: f4:7c:3b:cb:cf:35:d3:29:ea:6d:ab:45:77:70:ab:b3:7b:68: 0c:e5:a6:85:53:3d:48:8e:df:71:f1:52:33:1e:ce:a5:cc:95: df:8e:e3:c7:1f:02:50:61:78:c0:90:8d:9d:e1:d4:7b:d8:59: 20:b1:5c:c4:f9:08:c3:71:e7:55:42:92:36:45:46:f4:3e:f7: 21:10:93:a6:ad:35:40:93:bc:02:7a:33:85:ce:1a:c5:20:61: b3:f6:b7:c5:f4:ca:3f:1f:02:62:09:c6:5c:4b:b8:88:90:4d: ce:f8:96:86:85:fa:3d:ea:da:38:82:91:cd:1a:30:59:88:39: 88:ca:62:6d:bb:a6:8d:25:36:4d:4f:87:60:24:b7:c3:e1:1b: 2e:d6:04:1b:82:43:fd:c9:6c:69:ea:bd:a2:46:e5:90:3c:62: e8:30:31:ed:33:52:e0:b1:cb:28:4b:d4:d8:f3:82:b5:fa:ea: 06:39:d9:3c:f7:90:30:70:a9:ac:df:05:4f:d5:c4:c1:ff:95: 6a:b7:18:ea:e3:32:c0:5e:b9:ed:a4:6b:a8:42:b2:8e:cf:3b: 7c:17:1e:66:a0:8c:98:74:f9:f3:4b:ac:eb:2f:a7:9f:cc:9c: 3b:22:89:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjYwNTIxMDM0MjE5WhcNMjYwNTI4MDM0MjE5WjAYMRYwFAYD VQQDEw02YTBlN2YxYi1hY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzU91cglStgdBru/7n9yI384z3WQVu2Z4MPFt6F/u/GoLdVsKRRXzrIOz3rz 0/1pFVtplsjWVi+b0r3uvZyrVBIRb/ayPXjjeSYBx3iapNuH0/17Yf2LbiaD3aQp 3zd54ZAdx2FBqMrIeg3zfLj/Ev3txsE160JLSpOjEuJMLmBUVgXNy5+NsH7RlTZJ W+Boxtz8PxsYeSnwFVB0ZM4BSQq4icxQUn0KGmOtYV2wV53ipYSjBWDKBJxYoz52 wYllpCgRHxKbRVOgkWsc3/3pqLsygSmJlQ27+oWbXo9xlMLfWNBxYjxBDdB/UiT4 HDGQaHJHAOeM0KOVvUneZuhG7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBD9lD52 n02FAi+C+hxbJjmmQaSXMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqeK83fDNVbZ+UMGWs2nznlJJ9Hw7y8810ynqbatFd3Crs3toDOWmhVM9SI7f cfFSMx7OpcyV347jxx8CUGF4wJCNneHUe9hZILFcxPkIw3HnVUKSNkVG9D73IRCT pq01QJO8Anozhc4axSBhs/a3xfTKPx8CYgnGXEu4iJBNzviWhoX6PeraOIKRzRow WYg5iMpibbumjSU2TU+HYCS3w+EbLtYEG4JD/clsaeq9okblkDxi6DAx7TNS4LHL KEvU2POCtfrqBjnZPPeQMHCprN8FT9XEwf+VarcY6uMywF657aRrqEKyjs87fBce ZqCMmHT580us6y+nn8ycOyKJIA== -----END CERTIFICATE-----Generated at Thu May 21 10:54:01 2026 by rpki-client