$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: IdkFGp14AElOsrVt19sF8WoLHVwbIjH3lEFgytiS04o= Subject key identifier: 1C:E1:CD:52:AF:3F:19:B2:22:FB:00:15:BD:9B:04:81:0E:E5:E1:4F Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0892 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 087E Signing time: Sat 16 May 2026 20:39:20 +0000 Manifest this update: Sat 16 May 2026 20:39:20 +0000 Manifest next update: Sat 23 May 2026 20:39:20 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: NFgcFGkdaxy4h99P8fJZ3AW2+eVSE3kNuiuV9tO/SVE=) 2: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: /xCNBqLNz0L8cDqpYEQMnHLgfzVahak+S8dk9Uan5oM=) 3: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: IxYVxX1BoFCHdIOrjAwAEmnCO+dNiZSE2wEYWsIxYD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: May 16 20:39:20 2026 GMT Not After : May 23 20:39:20 2026 GMT Subject: CN=6a08d5f8-a74e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c8:58:f0:50:9e:e1:ce:48:90:f0:0b:c7:1f: b1:5a:fc:b2:96:d5:2a:b1:13:70:9a:71:c8:96:f5: 8a:ef:ac:a0:69:ac:54:3c:5c:25:3a:d0:a6:1c:46: e7:12:86:0e:cf:41:71:8d:04:a0:29:00:38:be:2d: 88:21:f3:b0:a0:00:78:f6:38:86:99:91:33:4e:37: e6:e0:14:3e:4a:05:5e:2d:4f:98:9b:05:83:a5:a6: f5:9c:f1:fb:e8:fb:59:93:02:24:1d:10:f2:b5:be: f4:57:32:81:b0:5a:42:5f:99:e8:f8:a5:7f:c6:72: ef:74:fb:53:9a:25:61:5d:4f:4d:88:c0:e3:05:f2: 3d:54:35:8d:49:1e:91:6a:4a:1c:09:e3:3f:47:08: 5a:4d:2a:7b:a1:25:3d:f1:c7:b1:21:9c:a3:25:8b: 9f:17:30:40:68:04:aa:73:7e:90:cf:75:da:a0:f5: 86:b2:d4:2e:08:95:59:0d:95:2c:ba:3c:c8:ea:43: c3:3d:5a:0c:1b:24:dd:61:12:cf:f1:e5:96:f8:e7: bd:96:43:aa:fb:57:59:b7:de:6b:f7:e8:d9:73:b9: 35:64:a0:35:b2:0f:41:3d:29:35:38:40:6c:7e:64: 2a:97:46:9b:1e:8a:5b:a0:0d:22:76:1c:0c:1b:2e: 2c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E1:CD:52:AF:3F:19:B2:22:FB:00:15:BD:9B:04:81:0E:E5:E1:4F X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:39:82:e6:fa:32:86:00:3d:ac:2e:33:2c:80:a4:3e:fa:d2: de:b7:08:8c:70:7b:a8:a6:2b:0b:b5:93:6a:77:e1:6c:da:c4: 76:d3:df:e9:36:c7:f4:0e:10:49:e6:78:7b:8a:64:90:ae:ab: 23:16:e4:b6:cb:bd:a4:94:a0:14:25:bf:1f:78:38:ca:bf:c2: 77:fa:8a:17:bc:fb:0f:79:9f:99:2c:4c:7c:81:d4:6e:b1:fb: f7:2a:53:6d:8d:2f:4c:75:16:7a:c1:91:c9:d4:51:ca:6b:38: 2d:ec:d7:bd:f6:dc:51:85:5c:6a:d2:cc:57:d9:ae:c8:f6:51: 85:56:e8:45:46:ba:bc:f9:96:89:51:0b:65:fd:1a:d3:bd:19: 48:a3:07:37:62:6d:ad:ed:d1:96:6a:b7:df:23:52:a2:54:80: 3a:eb:de:2a:6b:45:52:ee:2d:64:5b:17:0a:04:a3:c5:f1:91: 6a:14:f8:17:fb:ba:44:00:91:ff:63:86:76:f0:8b:3f:3d:2e: 65:b7:7b:55:26:9a:1c:57:95:91:53:fb:4f:1f:f3:15:8e:42: 5d:77:ac:a0:06:7c:1d:a0:a0:5e:4a:b3:82:0e:c0:5f:36:67: 46:d7:bd:13:e9:51:db:41:e8:f2:f4:0c:74:93:22:cf:fc:9f: 0a:d9:80:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwNTE2MjAzOTIwWhcNMjYwNTIzMjAzOTIwWjAYMRYwFAYD VQQDEw02YTA4ZDVmOC1hNzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2chY8FCe4c5IkPALxx+xWvyyltUqsRNwmnHIlvWK76ygaaxUPFwlOtCmHEbn EoYOz0FxjQSgKQA4vi2IIfOwoAB49jiGmZEzTjfm4BQ+SgVeLU+YmwWDpab1nPH7 6PtZkwIkHRDytb70VzKBsFpCX5no+KV/xnLvdPtTmiVhXU9NiMDjBfI9VDWNSR6R akocCeM/RwhaTSp7oSU98cexIZyjJYufFzBAaASqc36Qz3XaoPWGstQuCJVZDZUs ujzI6kPDPVoMGyTdYRLP8eWW+Oe9lkOq+1dZt95r9+jZc7k1ZKA1sg9BPSk1OEBs fmQql0abHopboA0idhwMGy4sJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBzhzVKv PxmyIvsAFb2bBIEO5eFPMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALzmC5voyhgA9rC4zLICkPvrS3rcIjHB7qKYrC7WTanfhbNrEdtPf6TbH9A4Q SeZ4e4pkkK6rIxbktsu9pJSgFCW/H3g4yr/Cd/qKF7z7D3mfmSxMfIHUbrH79ypT bY0vTHUWesGRydRRyms4LezXvfbcUYVcatLMV9muyPZRhVboRUa6vPmWiVELZf0a 070ZSKMHN2Jtre3Rlmq33yNSolSAOuveKmtFUu4tZFsXCgSjxfGRahT4F/u6RACR /2OGdvCLPz0uZbd7VSaaHFeVkVP7Tx/zFY5CXXesoAZ8HaCgXkqzgg7AXzZnRte9 E+lR20Ho8vQMdJMiz/yfCtmAEQ== -----END CERTIFICATE-----Generated at Sun May 17 03:51:11 2026 by rpki-client