$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: I452Z1VgqbHp4xaBGvrNY1oDZ4Vss8KhnXPMuNoibGg= Subject key identifier: D0:71:DC:90:3F:36:A6:30:B4:7C:3F:19:AD:74:46:32:28:95:10:EA Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 05C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 05A4 Signing time: Wed 20 May 2026 23:20:23 +0000 Manifest this update: Wed 20 May 2026 23:20:22 +0000 Manifest next update: Wed 27 May 2026 23:20:22 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: hZbLaUrQiZuxZNTN4jZfyJq3bcdRpwG75Yds8TSurNw=) 2: DFC29B9EDA3311F0AF85FF988AD3641D.roa (hash: APVAdn0V+JjNqtnYFJXrw3vnTk5N1Az4I90CmHo6gTE=) 3: FAD3BBFCDA3311F08928C2DC8AD3641D.roa (hash: aSuiDoqVGUo9FqPyHFG/YLpJ9f8pam3kOcqDIBOTLpk=) 4: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: mUW7mZkRK0183V8DRL68AAx4KDMDpyr2zgUqvRvduaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1480 (0x5c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: May 20 23:20:22 2026 GMT Not After : May 27 23:20:22 2026 GMT Subject: CN=6a0e41b6-2938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b7:e0:a1:ce:03:cc:12:8f:b8:ec:e8:8f:f7: c1:db:a8:14:b7:b6:ff:de:c1:92:0e:d3:b1:f3:77: b7:59:7c:42:7c:2a:41:91:d8:8c:0d:e4:10:26:86: ee:65:70:fd:8e:b4:34:5e:93:35:5e:65:08:63:f1: d3:63:61:f3:cc:6a:62:94:e2:2a:c8:0f:e0:55:b7: ed:a0:a2:c2:1f:6c:00:15:83:39:0f:a6:23:51:85: 4f:91:d7:92:e5:ab:dd:72:37:7d:59:59:77:89:84: 3a:cc:43:9a:f2:46:c1:18:ed:9c:2b:14:cb:c3:3f: 41:af:e1:1b:38:93:a9:8f:eb:88:b8:df:f3:91:1e: e3:0a:eb:94:17:44:a0:5c:fc:24:f3:2e:cd:58:fd: 12:27:69:c1:e5:cd:3c:da:6c:7e:61:f2:4d:cc:91: 33:ef:fe:c3:1c:58:f0:9c:ec:32:78:e8:09:f7:76: f8:0a:43:ea:98:ca:f6:07:0e:05:00:f5:dd:e7:4c: dc:5e:84:f5:fe:dc:1f:fa:b6:f8:f4:e0:c8:93:a2: 3b:3b:cc:f1:f1:6c:8b:e9:a2:ce:2d:0e:2d:84:ba: 87:bf:1e:28:47:ad:8e:a6:5c:55:0e:db:17:b4:7a: 02:26:08:db:03:6c:7b:a2:db:83:ac:4c:ff:a0:f6: 77:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:71:DC:90:3F:36:A6:30:B4:7C:3F:19:AD:74:46:32:28:95:10:EA X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:b2:4b:72:98:c6:a7:da:db:1b:54:ef:d6:88:d5:6a:32:6d: 54:8e:ed:b6:ae:e2:fb:39:a7:9f:aa:1e:3d:39:a6:96:1b:2c: 78:08:5d:dd:61:5b:85:5b:31:8d:ec:12:73:55:76:5e:e0:3f: 23:99:00:d1:7e:1d:22:b2:3d:b1:46:ed:0b:74:ac:52:f2:c9: 63:5d:b6:fb:c0:2f:ef:7e:96:6b:dd:be:1c:a1:a0:c6:fc:f6: a1:fd:3f:44:e6:7c:2c:c5:ca:5f:1f:19:e8:ab:fe:7e:5a:31: 2b:e5:ad:4c:55:23:23:f1:6a:ba:5a:64:ef:07:67:8c:e4:97: c4:14:9d:37:88:1c:93:78:12:e1:fb:61:f5:0e:40:96:f9:f8: f9:92:cf:ac:10:b6:8e:1d:a4:f5:3c:b9:6e:a1:3f:cc:74:68: b2:99:f9:f9:78:04:c6:7f:d8:9c:f3:e8:ce:46:00:5a:45:e4: 36:21:aa:51:b6:f6:3a:f7:65:2b:e7:1b:6d:87:d4:ff:ac:41: 5e:f1:e9:e4:c2:61:09:36:99:7d:2b:fc:c3:7a:54:a4:11:63: 46:1b:81:4e:27:cf:fe:6c:8e:91:77:4d:e7:16:a6:c4:e3:00: 2c:0f:be:6d:c2:fe:2c:ef:47:3f:b7:bc:56:f9:19:10:b2:80: 51:3c:ce:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjYwNTIwMjMyMDIyWhcNMjYwNTI3MjMyMDIyWjAYMRYwFAYD VQQDEw02YTBlNDFiNi0yOTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7fgoc4DzBKPuOzoj/fB26gUt7b/3sGSDtOx83e3WXxCfCpBkdiMDeQQJobu ZXD9jrQ0XpM1XmUIY/HTY2HzzGpilOIqyA/gVbftoKLCH2wAFYM5D6YjUYVPkdeS 5avdcjd9WVl3iYQ6zEOa8kbBGO2cKxTLwz9Br+EbOJOpj+uIuN/zkR7jCuuUF0Sg XPwk8y7NWP0SJ2nB5c082mx+YfJNzJEz7/7DHFjwnOwyeOgJ93b4CkPqmMr2Bw4F APXd50zcXoT1/twf+rb49ODIk6I7O8zx8WyL6aLOLQ4thLqHvx4oR62OplxVDtsX tHoCJgjbA2x7otuDrEz/oPZ36QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNBx3JA/ NqYwtHw/Ga10RjIolRDqMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAubJLcpjGp9rbG1Tv1ojVajJtVI7ttq7i+zmnn6oePTmmlhsseAhd3WFbhVsx jewSc1V2XuA/I5kA0X4dIrI9sUbtC3SsUvLJY122+8Av736Wa92+HKGgxvz2of0/ ROZ8LMXKXx8Z6Kv+floxK+WtTFUjI/Fqulpk7wdnjOSXxBSdN4gck3gS4fth9Q5A lvn4+ZLPrBC2jh2k9Ty5bqE/zHRospn5+XgExn/YnPPozkYAWkXkNiGqUbb2Ovdl K+cbbYfU/6xBXvHp5MJhCTaZfSv8w3pUpBFjRhuBTifP/myOkXdN5xamxOMALA++ bcL+LO9HP7e8VvkZELKAUTzOdQ== -----END CERTIFICATE-----Generated at Thu May 21 10:15:02 2026 by rpki-client