$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: V1nIUbj0MoDLzZ+dU7WDyO+uU/KsAie2jcU7wuEWjEk= Subject key identifier: F5:83:BA:91:29:1D:04:1E:68:94:01:79:B1:BA:F6:45:D0:B8:BD:BE Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 046A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 0452 Signing time: Thu 21 May 2026 00:22:28 +0000 Manifest this update: Thu 21 May 2026 00:22:27 +0000 Manifest next update: Thu 28 May 2026 00:22:27 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: l74GYgjZjmTA+WJBwlo6eD6q0eHMbInWy6o+t5qWXN0=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: NtIL0Ds6f0ZS7MHa9CMEFQcx6i11Pda/8hAwPCcExQg=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: cl/4/5b1299P9Rw9mt6jtdWymjlwHiUICZ1E9aWqHuM=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: gvPu45DyIqZBu1jQxEhjgfSh962TYPXbAHfGb3N8kR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: May 21 00:22:27 2026 GMT Not After : May 28 00:22:27 2026 GMT Subject: CN=6a0e5044-eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d2:f4:59:e0:c4:74:d7:1b:c4:96:09:f6:c8: a3:b9:25:be:0b:a3:b3:b2:cd:25:11:35:ce:dd:52: 27:7e:d3:49:41:49:15:11:99:7d:51:a7:7a:aa:ce: 12:73:32:e9:ee:96:6e:9b:1a:5c:67:fd:b3:ec:a8: 7f:95:10:a3:8f:8d:7e:86:cc:06:9f:28:ae:c2:a4: fe:55:4b:40:17:e2:9f:58:43:ef:4a:cd:7d:3c:65: 3a:49:65:31:60:45:38:3d:dd:56:41:6b:f3:c1:43: 99:55:e2:ad:1b:41:8d:6c:5d:6a:3b:33:6d:48:15: 15:40:45:55:b7:38:a9:83:db:f7:53:b0:48:d3:60: 9b:c1:ef:b9:8b:ce:9b:21:f8:91:a1:96:58:2a:97: 7f:a3:9f:7c:a5:3d:88:57:58:48:2e:02:b0:2a:d2: f2:69:38:85:c7:b0:08:2c:40:c9:d3:83:41:17:7d: 47:7a:5c:c7:51:d9:61:eb:02:55:0d:7b:13:59:19: 89:bd:c7:57:8f:df:e0:07:16:7a:1b:c0:4b:fe:e4: 16:e6:39:bd:5a:b3:8d:76:61:84:98:a0:a8:ce:ee: 8c:1f:52:bc:5a:12:03:d5:6c:cc:ab:c7:7c:7f:15: 1c:82:82:57:82:5b:19:ec:86:f4:5f:f6:c9:7c:3d: c9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:83:BA:91:29:1D:04:1E:68:94:01:79:B1:BA:F6:45:D0:B8:BD:BE X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:bb:52:2a:7e:f8:83:13:82:8a:66:00:b4:82:6d:8e:cc:cf: 92:a2:e7:59:b1:a6:ee:4f:6a:91:f4:6d:df:a3:1c:8b:99:ea: d6:11:3d:b1:a7:25:b0:bd:8c:c3:41:da:33:b5:b1:86:30:0d: 40:7b:37:54:19:c3:40:41:24:d1:a2:60:82:8f:a4:08:77:a2: b5:68:be:47:93:fd:ee:dd:a8:99:28:97:c2:ea:06:95:52:1c: da:fe:c9:82:06:35:2d:1e:17:2a:76:0e:74:32:b3:ef:ad:18: fa:47:da:cf:7e:92:2f:e0:87:d9:88:43:5c:59:d8:8e:e6:86: 77:91:41:8a:b5:83:49:57:61:a7:f4:80:0c:93:00:1e:7b:e1: e5:e7:df:1e:01:b0:1c:af:0d:b9:08:db:9a:2c:06:c6:ae:18: e3:8e:ae:61:02:5a:8e:de:6a:bf:e2:c6:62:87:f0:ed:76:78: fe:ee:53:73:3c:12:c1:29:ad:96:5d:00:07:16:d9:9a:bb:a9: 27:6c:2c:4c:c2:da:5a:dd:23:db:dd:66:a2:40:9f:81:7f:38: 03:97:48:5b:fa:56:95:5b:aa:29:b1:fe:7a:c8:42:6a:87:c4: ce:1c:79:20:00:9b:f6:77:ec:3d:81:7c:af:82:1d:21:71:a0: 09:97:14:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjYwNTIxMDAyMjI3WhcNMjYwNTI4MDAyMjI3WjAYMRYwFAYD VQQDEw02YTBlNTA0NC1lYjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdL0WeDEdNcbxJYJ9sijuSW+C6Ozss0lETXO3VInftNJQUkVEZl9Uad6qs4S czLp7pZumxpcZ/2z7Kh/lRCjj41+hswGnyiuwqT+VUtAF+KfWEPvSs19PGU6SWUx YEU4Pd1WQWvzwUOZVeKtG0GNbF1qOzNtSBUVQEVVtzipg9v3U7BI02Cbwe+5i86b IfiRoZZYKpd/o598pT2IV1hILgKwKtLyaTiFx7AILEDJ04NBF31HelzHUdlh6wJV DXsTWRmJvcdXj9/gBxZ6G8BL/uQW5jm9WrONdmGEmKCozu6MH1K8WhID1WzMq8d8 fxUcgoJXglsZ7Ib0X/bJfD3JJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPWDupEp HQQeaJQBebG69kXQuL2+MB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmrtSKn74gxOCimYAtIJtjszPkqLnWbGm7k9qkfRt36Mci5nq1hE9saclsL2M w0HaM7WxhjANQHs3VBnDQEEk0aJggo+kCHeitWi+R5P97t2omSiXwuoGlVIc2v7J ggY1LR4XKnYOdDKz760Y+kfaz36SL+CH2YhDXFnYjuaGd5FBirWDSVdhp/SADJMA Hnvh5effHgGwHK8NuQjbmiwGxq4Y446uYQJajt5qv+LGYofw7XZ4/u5TczwSwSmt ll0ABxbZmrupJ2wsTMLaWt0j291mokCfgX84A5dIW/pWlVuqKbH+eshCaofEzhx5 IACb9nfsPYF8r4IdIXGgCZcUrA== -----END CERTIFICATE-----Generated at Thu May 21 12:58:38 2026 by rpki-client