$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: nfJZSyM2IqJHGdaQkfch5SBShUw7p1UbRo4Yup+oJqw= Subject key identifier: 53:C1:44:65:7F:74:1D:52:86:88:58:92:B9:9E:94:DA:A6:E7:DE:3F Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 0152 Signing time: Thu 21 May 2026 05:12:18 +0000 Manifest this update: Thu 21 May 2026 05:12:17 +0000 Manifest next update: Thu 28 May 2026 05:12:17 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: F/4c5ZgWhGCxdFE220zxGnFRwpFhkShpznVPo8/KQgo=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: iGq1jNFW8Jf/KFgz2eEoKwlpfdulgStFmeWoJUH2Q3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: May 21 05:12:17 2026 GMT Not After : May 28 05:12:17 2026 GMT Subject: CN=6a0e9432-40b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fa:3b:e9:ed:34:06:91:4f:c1:fa:1a:80:42: d6:f6:89:68:47:74:97:66:e4:9d:83:db:2a:cc:77: 53:5c:a9:bf:57:84:15:b3:78:75:55:f2:cb:c8:ff: 5c:83:2b:37:c0:e3:2b:e1:8f:0f:33:5a:9f:62:b8: 6d:88:c4:19:2a:67:56:2b:24:64:9b:aa:5a:16:51: ee:83:71:13:0d:37:63:0f:9b:b9:db:4c:8d:af:89: 9b:8e:f5:36:60:04:45:bf:20:0f:03:7b:02:93:ae: d9:17:83:f9:e6:26:cf:3e:25:67:c2:6a:42:8b:59: 2e:71:91:cc:58:f0:cc:34:a5:9e:2b:cc:d5:9e:c1: 5f:ee:bb:88:81:ec:16:0b:61:85:af:1f:3d:0b:0a: 32:b4:f1:de:ca:20:d2:e5:63:68:c4:36:6f:64:93: ca:f2:49:52:c6:40:b8:63:68:0d:bd:d4:5c:89:95: bc:dd:32:a9:17:ae:8a:31:a2:b9:0b:e8:40:9f:22: e0:56:74:9b:bc:1b:18:0b:56:4d:fb:3a:06:60:72: ec:3e:52:1f:f8:a8:59:56:af:0b:88:1c:a4:52:f4: 45:d3:d3:5a:e5:f0:fa:16:5c:c5:6b:79:e1:e2:93: e6:49:6f:2a:6b:4f:12:e0:7c:db:d5:51:27:82:d6: b2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C1:44:65:7F:74:1D:52:86:88:58:92:B9:9E:94:DA:A6:E7:DE:3F X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3b:6a:90:d4:b5:66:5b:a5:80:eb:97:9e:7e:af:97:94:51: 59:a4:38:ed:b7:b3:7f:1c:f9:73:20:f7:7a:95:5c:0c:70:c1: 79:8a:81:ca:9a:58:92:9a:99:86:80:be:f7:57:16:6b:e9:4a: c7:c9:2b:f1:0b:c8:5b:e7:fd:b8:78:c9:bb:3d:ec:0c:f9:71: 64:a5:19:f2:12:d2:c9:3f:2f:3b:75:c6:29:47:61:20:7e:38: e0:d5:ed:b1:58:84:be:00:b1:74:a9:ec:ef:6e:e3:98:dd:29: 62:80:fd:28:fa:96:54:d4:28:57:69:c4:82:72:c7:79:21:b1: ca:78:8b:55:9f:6c:7a:5c:20:af:73:e1:a0:b2:8e:87:fe:5e: ea:21:66:43:8c:74:8a:9b:98:c9:3e:cc:3a:e2:ba:a7:0b:5f: 8b:1a:1b:38:c9:54:92:df:0c:d7:2d:da:0d:34:da:92:58:70: a2:eb:19:06:ab:d1:ac:57:fc:45:66:cd:5a:b5:a1:93:79:a5: 52:b0:ab:eb:ac:18:85:7a:bb:f2:20:91:a0:2f:3b:93:fe:1a: c0:cd:b2:5e:74:a6:33:4a:e4:64:42:ee:d8:31:2b:df:ee:0e: 6d:8b:db:96:6e:28:1c:5d:99:10:40:8d:6a:6e:6c:47:b0:0f: e9:aa:b1:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjYwNTIxMDUxMjE3WhcNMjYwNTI4MDUxMjE3WjAYMRYwFAYD VQQDEw02YTBlOTQzMi00MGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfo76e00BpFPwfoagELW9oloR3SXZuSdg9sqzHdTXKm/V4QVs3h1VfLLyP9c gys3wOMr4Y8PM1qfYrhtiMQZKmdWKyRkm6paFlHug3ETDTdjD5u520yNr4mbjvU2 YARFvyAPA3sCk67ZF4P55ibPPiVnwmpCi1kucZHMWPDMNKWeK8zVnsFf7ruIgewW C2GFrx89CwoytPHeyiDS5WNoxDZvZJPK8klSxkC4Y2gNvdRciZW83TKpF66KMaK5 C+hAnyLgVnSbvBsYC1ZN+zoGYHLsPlIf+KhZVq8LiBykUvRF09Na5fD6FlzFa3nh 4pPmSW8qa08S4Hzb1VEngtayowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFPBRGV/ dB1ShohYkrmelNqm594/MB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApTtqkNS1ZlulgOuXnn6vl5RRWaQ47bezfxz5cyD3epVcDHDBeYqByppYkpqZ hoC+91cWa+lKx8kr8QvIW+f9uHjJuz3sDPlxZKUZ8hLSyT8vO3XGKUdhIH444NXt sViEvgCxdKns727jmN0pYoD9KPqWVNQoV2nEgnLHeSGxyniLVZ9selwgr3PhoLKO h/5e6iFmQ4x0ipuYyT7MOuK6pwtfixobOMlUkt8M1y3aDTTaklhwousZBqvRrFf8 RWbNWrWhk3mlUrCr66wYhXq78iCRoC87k/4awM2yXnSmM0rkZELu2DEr3+4ObYvb lm4oHF2ZEECNam5sR7AP6aqxpA== -----END CERTIFICATE-----Generated at Thu May 21 09:38:44 2026 by rpki-client