$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: GN5GWN2ETgImDB0qUGRdo+mrsj35E2UECtClXKvXA/E= Subject key identifier: 25:5D:4A:30:D1:E9:52:2B:87:FC:EE:8B:33:4A:6D:9C:A3:61:65:F5 Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 0407 Signing time: Mon 01 Jun 2026 01:11:53 +0000 Manifest this update: Mon 01 Jun 2026 01:11:52 +0000 Manifest next update: Mon 08 Jun 2026 01:11:52 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: iU9uWl0QAoKWCEWf1OJf0nt/2E7g9EzJ+NQ65KaZA1A=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: Ta8P8ZlJNRZOOFxGWrA6sGVXlUCQZKAEPu0o6UyWhpE=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: X3lbzZGPgotkq76L6mKpw9+PljAruzWQzmyb0blRPVs=) 4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: H4XlQT8YJyI/+h2ZQgxbC5lWcfJk5rnOXu02XWl3y7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 01:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: Jun 1 01:11:52 2026 GMT Not After : Jun 8 01:11:52 2026 GMT Subject: CN=6a1cdc59-9153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c5:52:d2:cc:86:1e:21:80:95:56:8b:00:cb: 59:b0:fb:21:a4:36:16:4c:b4:f0:d6:77:2b:7b:79: 94:3a:1c:1a:bb:e7:9b:ab:3e:e9:55:81:49:1f:d0: b2:d9:e7:bf:12:54:a2:55:9e:e5:05:58:e5:1b:48: 28:8b:e8:1e:22:77:7e:cf:25:ce:83:2b:67:6f:0f: 0f:27:40:d3:5f:88:4b:cc:03:a4:1f:ee:a4:1f:b4: 8d:20:02:1f:6f:da:c2:cb:54:1c:ea:0a:33:3b:24: 2e:3a:ad:a0:bd:81:a8:d5:0e:22:8a:0f:12:38:61: 1d:36:ab:9e:db:66:5d:88:71:e6:8d:ec:26:8b:d7: 51:bf:f9:6c:88:0e:48:98:bd:06:cc:3f:15:34:2d: de:fe:99:cf:96:9b:e6:d8:88:cc:c5:2a:8e:3b:52: 54:ec:7e:47:89:8e:93:be:a3:a4:49:b1:ad:c0:ea: 1d:4b:50:81:8f:15:7c:cb:1b:87:b5:0b:2d:8c:29: 99:50:e2:ba:c9:2f:10:c1:d2:77:93:15:b2:ba:b9: 7c:ab:82:ef:3a:a2:a1:04:b2:0f:62:f3:e0:17:b8: c2:f7:9a:7c:90:8e:f6:34:d2:32:a9:4d:55:dc:20: 73:cf:15:a9:6d:fc:28:f5:0c:d0:f4:74:2d:3e:aa: 1a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:5D:4A:30:D1:E9:52:2B:87:FC:EE:8B:33:4A:6D:9C:A3:61:65:F5 X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:f8:c0:be:be:38:4d:28:f2:50:20:92:a3:a9:36:58:4b:b7: ab:54:60:74:41:91:20:75:0c:84:84:49:af:13:3e:50:f8:2e: 69:9d:b7:eb:27:62:6b:28:2a:ac:33:99:3e:16:af:02:45:46: 85:7f:ad:00:b2:0e:fd:81:93:a6:98:8d:c6:96:d0:c1:6d:f2: 92:cd:f6:2d:ea:f6:cb:6f:73:93:b7:a7:c5:13:95:c0:bc:1e: a0:24:f6:0f:40:c1:91:fc:34:6b:af:50:60:5a:d4:32:79:a9: e3:bc:6d:10:99:b0:36:cf:ae:fa:b3:ba:c5:41:54:c7:ed:89: 16:8b:23:4f:8b:8c:35:7e:61:02:85:45:7e:11:38:93:1e:94: 87:be:fe:c7:c9:10:cd:86:89:99:16:49:e1:cd:21:31:ad:11: 67:61:c2:cd:1d:f5:45:27:23:9d:3c:23:0f:ad:a3:36:7d:fd: e8:5d:cf:e2:b4:56:af:7d:de:3e:77:11:3e:ee:17:3b:0e:a8: 13:27:d1:68:34:9b:82:8b:38:db:1a:05:7f:ce:04:0c:45:88: d9:f9:05:35:fd:dc:81:c5:98:c2:17:b3:a1:b7:c9:af:ce:9a: f0:c9:a5:71:53:9e:83:19:e2:78:e3:b0:ee:8c:93:46:e3:43: 63:9c:8b:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjYwNjAxMDExMTUyWhcNMjYwNjA4MDExMTUyWjAYMRYwFAYD VQQDEw02YTFjZGM1OS05MTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MVS0syGHiGAlVaLAMtZsPshpDYWTLTw1ncre3mUOhwau+ebqz7pVYFJH9Cy 2ee/ElSiVZ7lBVjlG0goi+geInd+zyXOgytnbw8PJ0DTX4hLzAOkH+6kH7SNIAIf b9rCy1Qc6gozOyQuOq2gvYGo1Q4iig8SOGEdNque22ZdiHHmjewmi9dRv/lsiA5I mL0GzD8VNC3e/pnPlpvm2IjMxSqOO1JU7H5HiY6TvqOkSbGtwOodS1CBjxV8yxuH tQstjCmZUOK6yS8QwdJ3kxWyurl8q4LvOqKhBLIPYvPgF7jC95p8kI72NNIyqU1V 3CBzzxWpbfwo9QzQ9HQtPqoaTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCVdSjDR 6VIrh/zuizNKbZyjYWX1MB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIfjAvr44TSjyUCCSo6k2WEu3q1RgdEGRIHUMhIRJrxM+UPguaZ236ydiaygq rDOZPhavAkVGhX+tALIO/YGTppiNxpbQwW3yks32Ler2y29zk7enxROVwLweoCT2 D0DBkfw0a69QYFrUMnmp47xtEJmwNs+u+rO6xUFUx+2JFosjT4uMNX5hAoVFfhE4 kx6Uh77+x8kQzYaJmRZJ4c0hMa0RZ2HCzR31RScjnTwjD62jNn396F3P4rRWr33e PncRPu4XOw6oEyfRaDSbgos42xoFf84EDEWI2fkFNf3cgcWYwhezobfJr86a8Mml cVOegxnieOOw7oyTRuNDY5yLpg== -----END CERTIFICATE-----Generated at Tue Jun 2 22:10:42 2026 by rpki-client