$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: fWlNfq1xA46tHs3BmtvMHE7MkMnBd3IJGAD+uM+k+xo= Subject key identifier: C0:58:BC:9B:5F:82:62:12:76:86:C9:41:BF:DA:64:DC:28:D3:02:CA Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 0128 Signing time: Tue 02 Jun 2026 19:16:11 +0000 Manifest this update: Tue 02 Jun 2026 19:16:11 +0000 Manifest next update: Tue 09 Jun 2026 19:16:11 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: iTi8Wje35QzmwVYZC4Xes8B+thQuliAku2kMEh2Henk=) 2: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: CmfJtzvbUDIWlxCuJc7fM+dnWaJ+FXCzjzg3v0W8Rc4=) 3: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: dPEhTQP3qeAR4yGjatb5GQPGEIi2y0rBsSN9VqRiVX4=) 4: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: eX1W6sEO6qSGiwMhq2AqfocdX9JRjmM9eN6Q3NFHq5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 19:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Jun 2 19:16:11 2026 GMT Not After : Jun 9 19:16:11 2026 GMT Subject: CN=6a1f2bfb-78b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d5:72:ae:ac:9d:0e:74:db:69:1b:68:15:48: 18:8b:39:2a:52:13:c7:27:9e:10:1f:a4:25:72:4f: ff:ef:f8:e0:f8:70:e3:3f:b2:25:51:9a:99:2a:62: 88:dd:9e:a3:a9:f1:e3:a7:ca:3a:bd:82:3a:ee:3d: 24:37:d0:35:de:13:d6:24:9d:fb:66:ef:88:2a:d1: 1d:d3:ad:34:d3:47:f6:4b:2c:8e:a5:1e:0d:0b:53: 66:73:50:33:44:6f:68:19:85:63:26:3f:a5:6d:f6: 74:2d:67:c2:5f:e7:7e:cc:4b:92:55:4c:20:e6:71: a5:fa:20:1c:2e:aa:a5:f5:7f:af:ee:f7:78:cd:59: a5:b6:71:ff:ac:92:94:fb:6d:0e:70:62:be:68:af: 01:90:89:5e:0f:6b:a3:ef:c4:98:2a:2c:26:d9:ac: 59:bb:82:e5:37:19:ff:37:d0:a0:d3:9a:bc:df:70: a6:82:bf:3d:4d:ca:fd:fc:d8:e9:43:21:67:0b:a9: b8:bc:c4:1b:dd:4d:bc:ab:18:e9:36:20:7e:5e:2d: 64:82:1e:8b:8e:d7:a4:b1:78:25:0f:a9:cd:83:5d: f8:70:cc:36:9b:a5:e3:28:4b:6e:8b:c5:3f:89:2b: 87:80:ba:58:3d:0f:2f:7f:5a:cf:b7:01:b3:0c:eb: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:58:BC:9B:5F:82:62:12:76:86:C9:41:BF:DA:64:DC:28:D3:02:CA X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:f3:fc:e2:44:20:ae:09:fe:c5:73:c5:be:38:95:45:0f:5f: 62:6d:c9:08:7d:84:87:de:44:65:3b:df:6d:cd:c1:a7:00:9a: 21:eb:c6:2e:3f:f4:d3:dc:fd:de:df:34:1c:83:16:09:3f:da: 58:4b:85:5d:cb:d2:8b:b8:7b:36:4d:f6:c4:d6:13:ac:69:f2: a1:16:34:56:7f:da:2f:8f:73:6e:47:03:00:6f:59:6b:84:91: b2:da:14:5e:07:88:a7:36:4a:88:a6:d7:78:1d:2c:46:1e:de: 03:e9:b3:d4:39:d4:74:ad:d0:e9:ed:f5:b7:5e:74:09:92:a2: ef:98:cb:41:e6:28:0f:2b:e2:04:b3:48:8e:83:5a:de:50:93: 09:c0:34:f2:c8:2d:f5:6f:b4:ae:79:84:12:73:16:4f:57:c8: 84:ba:77:da:ee:04:a7:07:e2:9e:4a:ec:c6:7e:83:ac:40:17: 6c:82:d5:db:d9:85:29:be:40:9d:bd:9b:b7:17:1e:f7:54:ca: 2e:7b:3a:f6:66:88:92:ee:e8:95:12:e2:50:8a:9a:0b:8b:e6: e6:d9:3c:cc:bd:d8:98:43:aa:9b:a4:f0:b5:e7:a5:d1:06:22: ae:d8:98:85:81:05:67:80:09:31:4e:64:de:fd:6c:b2:b8:60: 11:e7:6d:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwNjAyMTkxNjExWhcNMjYwNjA5MTkxNjExWjAYMRYwFAYD VQQDEw02YTFmMmJmYi03OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNVyrqydDnTbaRtoFUgYizkqUhPHJ54QH6Qlck//7/jg+HDjP7IlUZqZKmKI 3Z6jqfHjp8o6vYI67j0kN9A13hPWJJ37Zu+IKtEd060000f2SyyOpR4NC1Nmc1Az RG9oGYVjJj+lbfZ0LWfCX+d+zEuSVUwg5nGl+iAcLqql9X+v7vd4zVmltnH/rJKU +20OcGK+aK8BkIleD2uj78SYKiwm2axZu4LlNxn/N9Cg05q833Cmgr89Tcr9/Njp QyFnC6m4vMQb3U28qxjpNiB+Xi1kgh6LjteksXglD6nNg134cMw2m6XjKEtui8U/ iSuHgLpYPQ8vf1rPtwGzDOvbEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMBYvJtf gmISdobJQb/aZNwo0wLKMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAafP84kQgrgn+xXPFvjiVRQ9fYm3JCH2Eh95EZTvfbc3BpwCaIevGLj/009z9 3t80HIMWCT/aWEuFXcvSi7h7Nk32xNYTrGnyoRY0Vn/aL49zbkcDAG9Za4SRstoU XgeIpzZKiKbXeB0sRh7eA+mz1DnUdK3Q6e31t150CZKi75jLQeYoDyviBLNIjoNa 3lCTCcA08sgt9W+0rnmEEnMWT1fIhLp32u4Epwfinkrsxn6DrEAXbILV29mFKb5A nb2btxce91TKLns69maIku7olRLiUIqaC4vm5tk8zL3YmEOqm6Twteel0QYirtiY hYEFZ4AJMU5k3v1ssrhgEedtVA== -----END CERTIFICATE-----Generated at Thu Jun 4 08:00:53 2026 by rpki-client