$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: rPi9qzeecHBiGpnw87TBEuzQSNdl/TDTj+8JhMiZIDA= Subject key identifier: A5:B6:40:72:56:74:E0:F5:66:DC:FB:16:37:43:98:0A:DD:1E:8B:CA Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 072A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 0722 Signing time: Wed 20 May 2026 21:56:48 +0000 Manifest this update: Wed 20 May 2026 21:56:48 +0000 Manifest next update: Wed 27 May 2026 21:56:48 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: p+kkbcR7U6m0pLhXVQqq1JKXAgopHDgqFUOODrXXV+M=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: oGpaoJnN0XSnyU8TN0NZVM9McHxZfbUaTEUnM8LnSNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:56:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: May 20 21:56:48 2026 GMT Not After : May 27 21:56:48 2026 GMT Subject: CN=6a0e2e20-05d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:79:66:14:1c:29:37:ff:63:a5:86:e5:07:6c: 38:03:13:92:9d:eb:87:13:4b:c0:99:4c:65:04:b8: 96:08:4e:bc:d3:fa:65:86:5f:c3:52:2b:e0:76:5c: 69:95:6f:15:91:73:2b:dd:46:6c:a5:22:ef:c7:28: 9f:35:49:00:aa:75:92:3b:84:c5:77:a6:bf:49:c7: 65:5c:96:f7:10:06:9b:82:8b:30:27:80:c2:82:0e: 1a:76:d1:8f:9f:b0:50:2f:61:a0:40:b7:e0:2f:19: 8c:c2:d8:33:e4:35:cb:c9:ca:f9:c5:33:77:7f:e2: 08:0b:05:a9:bf:53:e1:cd:51:34:f8:91:58:b5:72: 7d:2a:9d:e2:ba:b3:57:c0:ba:0d:1e:11:47:e0:77: 23:00:40:e1:98:7b:2b:62:e5:0c:31:a7:69:ef:0d: 5d:28:b3:a1:5a:48:f2:99:d8:b2:a2:35:a4:40:98: 5a:b6:75:ea:a9:e1:13:a5:da:4d:b2:3c:27:2c:64: 20:e3:fb:89:07:eb:75:5b:f4:71:8c:23:58:1d:f2: b1:6b:a3:b4:c4:6b:72:34:19:3f:f5:85:0f:b7:e6: 4f:eb:e6:04:a1:6a:71:ad:fa:d8:a3:24:0c:d6:6b: 60:5d:1b:56:1e:15:95:92:ee:c1:a9:95:20:a4:36: 96:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B6:40:72:56:74:E0:F5:66:DC:FB:16:37:43:98:0A:DD:1E:8B:CA X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ec:8d:1b:f8:e0:6e:30:69:94:79:a3:b3:e7:ce:d7:dd:7f: 75:a2:e1:55:7f:01:e9:00:19:e7:34:35:de:4b:fc:39:ae:9a: b6:a2:f7:9d:7f:9d:1b:87:78:8d:d5:ef:e1:b4:3b:e2:98:80: ac:da:b2:9f:b7:82:8b:75:e8:21:a3:17:a5:83:9f:4f:98:7d: 68:06:c6:7f:2e:b5:45:20:df:45:84:fb:69:c0:43:af:44:8b: e7:48:63:b8:4f:15:b9:7e:ad:5a:fc:92:3a:25:92:e7:7a:b8: 2c:a1:e8:34:b5:85:b1:91:02:cf:a3:ee:38:a8:a0:5a:e2:a3: 89:88:92:bf:93:6f:46:f5:72:f6:9e:16:32:4b:9e:aa:d5:2a: 2e:1e:40:ff:08:6a:18:4f:59:45:78:7b:fd:32:e2:c6:68:52: da:18:3d:76:79:dc:ca:a6:75:ac:1e:a8:18:c0:84:9a:39:79: 18:03:bc:fb:63:8d:1d:c2:80:60:8a:83:c7:90:8e:b5:eb:45: 08:d1:a2:87:87:08:20:5d:81:6b:70:ad:d0:af:32:93:03:df: c0:0f:a3:04:10:8e:3a:67:62:41:a5:c9:49:d8:28:18:f0:c2: 67:19:ba:98:d2:bb:db:6e:8c:aa:94:55:c4:85:9a:4e:b6:1d: d9:3a:e4:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjYwNTIwMjE1NjQ4WhcNMjYwNTI3MjE1NjQ4WjAYMRYwFAYD VQQDEw02YTBlMmUyMC0wNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXlmFBwpN/9jpYblB2w4AxOSneuHE0vAmUxlBLiWCE680/plhl/DUivgdlxp lW8VkXMr3UZspSLvxyifNUkAqnWSO4TFd6a/ScdlXJb3EAabgoswJ4DCgg4adtGP n7BQL2GgQLfgLxmMwtgz5DXLycr5xTN3f+IICwWpv1PhzVE0+JFYtXJ9Kp3iurNX wLoNHhFH4HcjAEDhmHsrYuUMMadp7w1dKLOhWkjymdiyojWkQJhatnXqqeETpdpN sjwnLGQg4/uJB+t1W/RxjCNYHfKxa6O0xGtyNBk/9YUPt+ZP6+YEoWpxrfrYoyQM 1mtgXRtWHhWVku7BqZUgpDaWyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKW2QHJW dOD1Ztz7FjdDmArdHovKMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPOyNG/jgbjBplHmjs+fO191/daLhVX8B6QAZ5zQ13kv8Oa6atqL3nX+dG4d4 jdXv4bQ74piArNqyn7eCi3XoIaMXpYOfT5h9aAbGfy61RSDfRYT7acBDr0SL50hj uE8VuX6tWvySOiWS53q4LKHoNLWFsZECz6PuOKigWuKjiYiSv5NvRvVy9p4WMkue qtUqLh5A/whqGE9ZRXh7/TLixmhS2hg9dnncyqZ1rB6oGMCEmjl5GAO8+2ONHcKA YIqDx5COtetFCNGih4cIIF2Ba3Ct0K8ykwPfwA+jBBCOOmdiQaXJSdgoGPDCZxm6 mNK7226MqpRVxIWaTrYd2TrkQw== -----END CERTIFICATE-----Generated at Thu May 21 12:29:27 2026 by rpki-client