$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: OfUD1SkJQkcfh4opnxl1lBCXRPIljydrhdrFjLnwcd4= Subject key identifier: F3:29:BA:BC:F2:ED:30:D7:A6:45:D4:1D:90:6F:C8:93:ED:41:22:7F Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0DAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0DA2 Signing time: Wed 20 May 2026 17:56:51 +0000 Manifest this update: Wed 20 May 2026 17:56:51 +0000 Manifest next update: Wed 27 May 2026 17:56:51 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: F51qr3V5+K1NzFIeakm1Th/NqEi99Qx2wKtbpdGg6Dg=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: n4Sr8XQlMSqL6gzDWm/TDckqQSOFH1CNlIw47oAhdDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3499 (0xdab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: May 20 17:56:51 2026 GMT Not After : May 27 17:56:51 2026 GMT Subject: CN=6a0df5e3-dc30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:72:a4:7e:18:be:94:2c:3a:18:97:43:d1:de: 19:7b:89:af:c5:8f:8a:70:c0:7b:27:d3:05:1c:61: 5f:e8:ec:6c:37:13:d1:b1:d5:08:e1:53:83:62:1a: 7f:e9:d9:8c:2d:72:97:c7:a7:1b:29:20:fa:1d:82: 5d:d5:a0:b2:c3:0f:12:c8:37:f5:69:7e:64:53:96: 5e:0a:45:da:b4:b3:cf:bc:4e:c4:52:8b:b0:26:7f: c9:de:cb:eb:a1:2c:a4:35:19:ee:f7:51:8a:79:17: 25:33:85:6f:8e:a0:dc:d3:ce:c0:00:1e:50:b6:19: 89:a7:f5:cf:91:31:aa:c9:7c:2f:c7:7a:fa:e7:bd: de:88:60:80:aa:af:1e:9d:de:dd:57:90:05:e9:a6: 5c:d6:d0:e4:84:de:8d:b5:12:c5:f0:11:40:4d:8a: 86:12:ef:8c:72:0b:0c:5c:fb:aa:f3:0b:4b:d7:35: 3c:bd:77:e5:e7:0a:8d:b4:74:40:80:e0:8f:ad:e4: d3:68:15:c2:ca:07:d6:44:e9:03:b3:57:2f:f2:2f: b5:bd:75:b9:38:a7:20:da:4d:a5:86:ca:d9:3b:9c: de:c7:db:25:b6:5a:e6:98:63:c1:2f:d7:d6:08:bf: 69:bd:7b:61:38:68:66:0a:8d:fa:76:62:dc:18:ac: 88:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:29:BA:BC:F2:ED:30:D7:A6:45:D4:1D:90:6F:C8:93:ED:41:22:7F X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:5f:22:6f:6c:be:7d:f8:bb:63:64:69:66:15:00:ac:46:45: a0:05:6f:4d:be:86:8d:4c:f7:37:57:f2:15:16:56:00:d9:ff: 4f:e7:00:eb:3c:50:bb:90:74:5f:95:40:f3:8d:36:db:e3:76: 9f:17:0e:3d:f7:87:aa:06:68:98:bf:f5:f3:f6:e2:0c:ac:7a: d2:e9:f8:8c:e0:f8:ed:3b:59:37:ec:f4:4d:2f:17:d6:08:5e: a2:9f:3a:0e:33:6d:72:1e:f0:0c:54:a2:5f:8d:7d:6d:58:26: 09:f8:a2:b7:5b:77:2e:c4:9c:b7:11:e7:dc:ee:72:4c:06:42: 17:3c:03:09:63:58:f5:62:cf:c4:d9:b2:f1:ba:72:fe:1c:be: ac:6a:2a:fe:0d:b1:4e:b9:ba:7d:e2:f0:76:56:a9:34:e3:e7: 28:c9:15:a6:46:6d:f1:92:2c:b1:24:4a:e4:87:43:dd:a7:49: f5:1d:bf:b9:7b:6e:cd:92:ff:e2:1d:90:9b:84:85:61:1b:38: ee:26:b3:65:47:3e:b6:86:fd:ae:ab:95:2a:18:83:08:44:bb: f3:45:eb:90:b7:6e:f5:d5:1f:1e:74:45:3c:c2:d2:af:6c:21: c9:2c:89:9b:d0:7f:e3:85:f6:ce:5c:8f:f7:b5:44:32:8b:d7: 96:ff:14:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjYwNTIwMTc1NjUxWhcNMjYwNTI3MTc1NjUxWjAYMRYwFAYD VQQDEw02YTBkZjVlMy1kYzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjXKkfhi+lCw6GJdD0d4Ze4mvxY+KcMB7J9MFHGFf6OxsNxPRsdUI4VODYhp/ 6dmMLXKXx6cbKSD6HYJd1aCyww8SyDf1aX5kU5ZeCkXatLPPvE7EUouwJn/J3svr oSykNRnu91GKeRclM4VvjqDc087AAB5QthmJp/XPkTGqyXwvx3r6573eiGCAqq8e nd7dV5AF6aZc1tDkhN6NtRLF8BFATYqGEu+McgsMXPuq8wtL1zU8vXfl5wqNtHRA gOCPreTTaBXCygfWROkDs1cv8i+1vXW5OKcg2k2lhsrZO5zex9sltlrmmGPBL9fW CL9pvXthOGhmCo36dmLcGKyIPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPMpurzy 7TDXpkXUHZBvyJPtQSJ/MB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOF8ib2y+ffi7Y2RpZhUArEZFoAVvTb6GjUz3N1fyFRZWANn/T+cA6zxQu5B0 X5VA84022+N2nxcOPfeHqgZomL/18/biDKx60un4jOD47TtZN+z0TS8X1gheop86 DjNtch7wDFSiX419bVgmCfiit1t3LsSctxHn3O5yTAZCFzwDCWNY9WLPxNmy8bpy /hy+rGoq/g2xTrm6feLwdlapNOPnKMkVpkZt8ZIssSRK5IdD3adJ9R2/uXtuzZL/ 4h2Qm4SFYRs47iazZUc+tob9rquVKhiDCES780XrkLdu9dUfHnRFPMLSr2whySyJ m9B/44X2zlyP97VEMovXlv8UlA== -----END CERTIFICATE-----Generated at Thu May 21 10:15:09 2026 by rpki-client