$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: AwQkHGH08uPhgir+RXdJOrrsnZLEl1BvPht9OG+ZTU8= Subject key identifier: 0E:9B:8E:3F:E7:54:6A:B8:AE:5F:DD:B4:5E:CD:CC:E8:D5:DE:0C:83 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0461 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 044F Signing time: Thu 21 May 2026 00:17:09 +0000 Manifest this update: Thu 21 May 2026 00:17:09 +0000 Manifest next update: Thu 28 May 2026 00:17:09 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: G1YJ0/w5Ef0BnYdWuPGyoeVc44rf5ryIPg/0UZWc/eI=) 2: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: X5PDT1MbgloBsVHEEErT26cO3WdhXztNkcjjEpdBJNM=) 3: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: wPvXbMRDdeZ16YQAsG5yxXC1oVke0Is094fp9Wnssro=) 4: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: 8IoFb/TuJGa8f+hLPDSGTarCT7mkVKZq9W7cRCzmXZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1121 (0x461) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: May 21 00:17:09 2026 GMT Not After : May 28 00:17:09 2026 GMT Subject: CN=6a0e4f05-e3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4b:c3:2b:cb:c9:34:f5:a3:ed:ad:98:b7:ba: 72:1f:8a:bc:a1:59:24:79:12:52:51:0e:4d:32:3c: c3:6c:2c:e1:b5:39:98:9d:95:1c:24:85:47:f2:8c: 89:b3:cb:9c:0a:02:60:0b:4f:64:0a:94:dd:ea:07: 24:d5:b1:be:19:9f:9b:01:f6:6e:ca:79:62:c5:c7: e4:b8:2e:9e:62:e1:b6:a7:7a:76:e5:56:4a:f6:76: aa:60:f9:8e:1c:aa:79:c1:13:25:72:f2:c2:0a:6a: b4:1a:66:9f:ed:75:bc:ac:11:b3:6d:d4:31:a4:4d: d4:34:68:0d:ab:c8:6c:09:d2:1c:94:ad:fd:b6:58: 01:31:d5:91:22:c6:2d:41:fd:1e:4e:c2:e0:d2:fb: c9:a7:ea:1e:7f:f8:33:d2:76:21:24:be:57:84:3a: b9:8a:96:7d:4f:23:d7:99:58:7a:9f:c0:23:68:7a: 95:e1:fd:a5:a1:37:08:c2:65:d1:e9:2f:bf:42:67: 2e:38:e6:6a:f4:05:dd:17:7f:36:2c:9e:68:51:0b: 9b:66:9c:ce:a4:82:91:2a:06:10:01:26:a1:a4:45: b4:d2:21:47:e1:1c:3f:29:86:c2:c5:57:ec:99:3e: c5:6d:84:47:72:39:e3:fe:12:a5:b8:f8:ad:15:4f: b2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9B:8E:3F:E7:54:6A:B8:AE:5F:DD:B4:5E:CD:CC:E8:D5:DE:0C:83 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:3a:16:9e:f0:92:3f:5e:13:b4:e0:57:68:19:d2:ef:6b:d5: d0:17:5c:bd:a1:7f:2e:b6:14:fc:93:2e:95:52:05:c7:05:a2: f8:f9:68:d2:41:03:4e:96:24:1f:15:8f:d3:5f:48:33:5c:e0: 63:30:5d:e4:1c:c3:63:26:80:2f:32:11:c7:66:ec:6e:64:c4: 39:d4:96:86:89:23:90:76:79:2c:6a:c0:fc:34:59:0e:3f:3c: 5a:c0:97:e4:87:94:fb:6b:01:fc:36:df:a0:9a:2c:61:8f:12: 2f:25:e9:85:87:34:99:2b:2f:3a:3c:37:49:66:d7:fb:0b:9e: 2e:79:26:96:6d:f8:62:06:30:cd:68:8c:2a:2a:75:e6:a5:a1: 87:18:de:c4:55:2d:c4:ea:ec:1a:5d:4c:fb:38:19:2c:49:50: 74:b3:5a:d5:89:9a:92:15:64:7c:55:f5:e3:e4:e9:c7:60:8a: 06:9a:88:99:c8:cd:52:0e:42:19:f5:b9:c0:26:ac:30:ac:c8: 63:47:2b:22:5e:52:17:60:b6:20:70:05:2a:8e:6a:82:94:60: 14:8f:31:7c:6c:5e:8c:f6:39:89:a0:1d:20:c2:ca:a7:16:6c: 16:65:ea:7d:6e:f7:a3:1d:d1:c6:9b:70:af:2a:2c:4d:61:a0: 02:c7:d6:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjYwNTIxMDAxNzA5WhcNMjYwNTI4MDAxNzA5WjAYMRYwFAYD VQQDEw02YTBlNGYwNS1lM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EvDK8vJNPWj7a2Yt7pyH4q8oVkkeRJSUQ5NMjzDbCzhtTmYnZUcJIVH8oyJ s8ucCgJgC09kCpTd6gck1bG+GZ+bAfZuynlixcfkuC6eYuG2p3p25VZK9naqYPmO HKp5wRMlcvLCCmq0Gmaf7XW8rBGzbdQxpE3UNGgNq8hsCdIclK39tlgBMdWRIsYt Qf0eTsLg0vvJp+oef/gz0nYhJL5XhDq5ipZ9TyPXmVh6n8AjaHqV4f2loTcIwmXR 6S+/QmcuOOZq9AXdF382LJ5oUQubZpzOpIKRKgYQASahpEW00iFH4Rw/KYbCxVfs mT7FbYRHcjnj/hKluPitFU+yJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA6bjj/n VGq4rl/dtF7NzOjV3gyDMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsjoWnvCSP14TtOBXaBnS72vV0BdcvaF/LrYU/JMulVIFxwWi+Plo0kEDTpYk HxWP019IM1zgYzBd5BzDYyaALzIRx2bsbmTEOdSWhokjkHZ5LGrA/DRZDj88WsCX 5IeU+2sB/DbfoJosYY8SLyXphYc0mSsvOjw3SWbX+wueLnkmlm34YgYwzWiMKip1 5qWhhxjexFUtxOrsGl1M+zgZLElQdLNa1YmakhVkfFX14+Tpx2CKBpqImcjNUg5C GfW5wCasMKzIY0crIl5SF2C2IHAFKo5qgpRgFI8xfGxejPY5iaAdIMLKpxZsFmXq fW73ox3RxptwryosTWGgAsfWew== -----END CERTIFICATE-----Generated at Thu May 21 11:14:41 2026 by rpki-client