$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: qXYMtfbeX1X5fNA/7iqio85LXxcaCJvSD/rCom96IA4= Subject key identifier: D3:BB:A8:A8:66:2F:6A:85:CD:CD:5D:27:EE:04:53:5B:F1:0B:1E:52 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0C0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0BD9 Signing time: Sat 16 May 2026 18:55:03 +0000 Manifest this update: Sat 16 May 2026 18:55:02 +0000 Manifest next update: Sat 23 May 2026 18:55:02 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: U6wVM/piFlqEcOeE93gJ/gWPphirg3uFmdqyZ73Uz7g=) 2: 4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa (hash: 2xZ7k/voMKzDAbPl0iSayXcIKNq/l+8uvtLON3JZksk=) 3: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: m6A5k7GrCQsQt6UQStLqk4vDI2cF1RjOvSbk8wVUoVE=) 4: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: RzHBWYWw5IHkZGciQV9CfmaSyQYYH4ManuyCrGOl3Iw=) 5: 8137CEBC07E911F18CE8BD7B223D8C67.roa (hash: wHgEjCXqndOJLXZ9J6FfS2MgjM1Wq0AwJ0Oymtfq0bs=) 6: 4AD53F9AEA0B11F09069D0EA6F6F56BC.roa (hash: naputKDT4YFCuDBkowHlF1Y5kTitkWFz9voR8iEVFrQ=) 7: 49E05638EA0B11F09069D0EA6F6F56BC.roa (hash: 5lCa0uM9qsyo4Ls9OwY1shMD+q998RLPGqM4GruFZ8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 18:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: May 16 18:55:02 2026 GMT Not After : May 23 18:55:02 2026 GMT Subject: CN=6a08bd87-39f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:e1:05:86:73:79:0b:58:72:13:6c:b5:8d: 69:61:52:2d:80:94:6a:3f:ce:47:6a:f1:d7:d5:4a: 5c:ea:b0:f1:de:fc:ba:77:68:a0:fb:4f:df:0d:6b: 47:93:ef:2c:d5:e3:0a:7c:88:71:d8:fa:b1:ae:2b: 3b:d3:3e:15:08:a2:c3:3b:d9:ed:12:44:c1:f6:f4: f0:a2:3f:44:06:29:b4:53:aa:43:17:0d:60:c6:4b: 3c:4c:94:03:a7:c6:e2:06:28:a2:d0:64:64:c1:2a: bc:47:3d:b1:6b:28:af:cd:c2:a8:3b:03:81:2e:1d: d1:62:8e:75:bc:29:ee:4b:6e:f1:4a:ec:2f:fc:3c: 71:60:c1:c2:db:51:97:80:96:59:e6:d3:75:e4:6a: 5f:da:2e:76:03:22:de:2c:51:d9:99:9c:46:a9:e4: d0:c2:1d:a5:60:7c:b7:3f:91:45:e6:20:bd:1b:32: 7e:9e:a5:40:56:46:39:f7:09:cf:1f:79:9c:86:02: 7f:85:85:03:2f:6a:b6:fc:36:a0:d8:47:ec:1b:b0: 95:54:99:b8:f0:96:c4:40:02:99:94:92:33:ca:74: 70:e3:57:9e:35:6f:62:37:68:52:ee:6e:0d:96:ac: 9e:ee:02:30:88:2c:ba:13:db:03:95:42:46:33:64: 2b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BB:A8:A8:66:2F:6A:85:CD:CD:5D:27:EE:04:53:5B:F1:0B:1E:52 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:26:b4:e2:d5:e1:bb:73:06:d1:8c:4b:36:8b:00:74:58:ea: 96:b4:61:b5:2d:09:ee:c1:32:9b:b4:35:d7:7b:e3:24:7b:8b: 67:c0:43:19:d5:b6:b2:c6:62:89:6e:e1:97:ea:8a:df:35:33: 18:d7:43:9a:ef:d5:07:dc:4a:77:39:8d:69:e1:d3:d7:3b:1c: ff:9e:f4:ae:a8:e7:ab:d2:7a:da:9b:92:fa:f8:65:19:ad:a6: 61:20:32:2b:78:23:89:44:df:da:48:81:81:a9:4c:d9:e2:c6: 63:04:9c:a4:15:4a:50:d1:dd:45:dc:21:d4:cc:5a:3e:3d:88: d1:b2:17:63:1e:d5:b2:58:10:6b:51:15:7d:17:ce:e2:66:7c: 18:81:d6:d6:a3:fa:92:10:32:98:8a:27:04:d4:75:43:e3:ce: 03:e5:3f:83:ec:d6:2e:80:ac:fd:8e:a5:a1:77:bb:da:1b:10: 30:89:58:d7:fb:a9:c2:ac:88:07:a1:2a:18:0c:4f:89:a5:e4: c1:ed:53:8c:80:ed:9d:30:f5:eb:5a:48:17:4e:62:6c:74:05: 8d:80:a0:36:35:6c:27:c6:df:60:be:b5:0d:56:47:0d:32:61: c0:85:ed:83:b9:72:f3:a7:f5:05:dd:b8:a9:28:fe:de:fb:82: 02:fa:e9:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwNTE2MTg1NTAyWhcNMjYwNTIzMTg1NTAyWjAYMRYwFAYD VQQDEw02YTA4YmQ4Ny0zOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5DhBYZzeQtYchNstY1pYVItgJRqP85HavHX1Upc6rDx3vy6d2ig+0/fDWtH k+8s1eMKfIhx2Pqxris70z4VCKLDO9ntEkTB9vTwoj9EBim0U6pDFw1gxks8TJQD p8biBiii0GRkwSq8Rz2xayivzcKoOwOBLh3RYo51vCnuS27xSuwv/DxxYMHC21GX gJZZ5tN15Gpf2i52AyLeLFHZmZxGqeTQwh2lYHy3P5FF5iC9GzJ+nqVAVkY59wnP H3mchgJ/hYUDL2q2/Dag2EfsG7CVVJm48JbEQAKZlJIzynRw41eeNW9iN2hS7m4N lqye7gIwiCy6E9sDlUJGM2QrkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNO7qKhm L2qFzc1dJ+4EU1vxCx5SMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsSa04tXhu3MG0YxLNosAdFjqlrRhtS0J7sEym7Q113vjJHuLZ8BDGdW2ssZi iW7hl+qK3zUzGNdDmu/VB9xKdzmNaeHT1zsc/570rqjnq9J62puS+vhlGa2mYSAy K3gjiUTf2kiBgalM2eLGYwScpBVKUNHdRdwh1MxaPj2I0bIXYx7VslgQa1EVfRfO 4mZ8GIHW1qP6khAymIonBNR1Q+POA+U/g+zWLoCs/Y6loXe72hsQMIlY1/upwqyI B6EqGAxPiaXkwe1TjIDtnTD161pIF05ibHQFjYCgNjVsJ8bfYL61DVZHDTJhwIXt g7ly86f1Bd24qSj+3vuCAvrpng== -----END CERTIFICATE-----Generated at Sun May 17 06:58:15 2026 by rpki-client