$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: mUHi3ikZ9+EhQ+FL3gAaWU26ATqDuzzJjGXYkEo2UTc= Subject key identifier: D8:77:8A:D1:96:FB:8F:B8:D7:D8:CF:B3:B8:58:23:38:2F:92:36:4D Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 041B Signing time: Thu 21 May 2026 00:28:22 +0000 Manifest this update: Thu 21 May 2026 00:28:22 +0000 Manifest next update: Thu 28 May 2026 00:28:22 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: d1AtttSqJo4C9Mk8krvRy2azXH3LVLLTxvblSgfcMOQ=) 2: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: 4RqePFXcxznoJVl6w8IMckwXSaVn5QEpwopGGGBw+nA=) 3: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: oMimkeYYl7dxiacxecAGj8I+bq56ZODIoHCIkyIFzMU=) 4: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: H8iyGcp2slRPrtqT5icu1v/N051MgbZlmONF3nH7f+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: May 21 00:28:22 2026 GMT Not After : May 28 00:28:22 2026 GMT Subject: CN=6a0e51a6-3578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:0b:2d:a8:e2:b5:1b:60:48:8b:8a:d2:d0: 64:18:82:0b:7c:a1:30:41:84:a2:25:59:f1:5e:35: 60:4d:08:af:a5:45:43:3e:80:2e:e9:31:47:6b:28: 29:95:d7:da:25:b5:c4:e5:7a:9c:6d:f7:08:aa:4a: c2:0f:3c:67:62:a0:88:54:99:8d:fb:94:9e:40:7d: ac:1c:ee:8c:b7:0c:7f:86:96:3a:db:36:63:d1:fd: b2:85:0c:c0:73:6f:36:aa:3c:bd:8a:ce:fa:a4:1a: bd:6c:57:e4:77:6b:1f:d0:96:ec:8f:7e:4d:42:93: 8b:76:99:89:6b:c3:0b:8a:15:c7:56:dd:dc:86:64: ba:a8:2b:29:82:e6:47:42:4f:6e:2e:4e:0d:9a:d4: 98:8d:2a:0e:55:5f:ce:d8:2a:d5:a2:77:3c:07:3f: 5b:80:c0:df:ee:9c:84:31:c3:f6:b0:08:01:5c:e8: 72:83:3f:11:86:27:81:22:36:47:b0:cd:7b:f2:78: 3a:a6:0b:92:84:7f:f1:cd:7b:43:20:20:3b:94:36: 62:81:52:46:81:0f:1e:d2:98:d6:ff:be:e2:47:b8: 23:96:3c:d2:0c:cb:d4:ca:2b:0d:5d:df:b3:d4:59: ad:8c:b6:28:12:24:9a:93:fd:3c:ad:27:03:6f:46: 06:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:77:8A:D1:96:FB:8F:B8:D7:D8:CF:B3:B8:58:23:38:2F:92:36:4D X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c6:f5:c8:2b:5d:c6:ce:5e:d9:4f:6c:cc:90:a3:84:03:8c: e1:3f:90:e2:d4:80:eb:1f:fd:aa:80:b4:2c:40:7b:01:79:e3: 72:09:e7:5a:80:27:29:85:a7:4c:b9:83:fb:61:4f:71:ea:a6: 3f:05:f9:fd:39:97:c0:fc:d2:9d:25:9d:cd:6d:86:89:4c:c7: b4:f2:e6:99:f4:8a:9a:5f:6b:a9:1e:9b:2f:78:91:0b:6c:07: b6:91:b7:65:50:25:67:ff:7b:a5:c7:9e:26:36:06:21:3d:79: ed:89:71:43:81:1a:9c:f8:76:20:fc:20:de:2d:d7:fe:67:18: 1d:45:82:91:65:40:64:db:f5:23:1b:04:59:c7:e4:40:11:6c: 32:0b:8b:8a:ed:e8:d3:6a:ca:1b:99:cb:7c:e2:e5:0c:3b:b8: 12:41:6d:9d:0c:a0:0e:5d:42:b3:23:17:3d:a1:6f:73:da:fa: 60:27:f2:7a:a7:82:e9:11:23:df:d7:b3:38:1d:17:0f:f4:db: 1e:6e:5c:7a:50:c0:9f:05:81:26:dd:82:5a:63:08:3d:06:8a: 77:8e:85:57:07:65:eb:70:c8:b5:74:cf:03:90:77:6a:e0:3b: fe:59:f6:a9:12:ad:a6:0b:54:19:f8:7d:56:70:df:3c:49:2e: cf:20:07:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjYwNTIxMDAyODIyWhcNMjYwNTI4MDAyODIyWjAYMRYwFAYD VQQDEw02YTBlNTFhNi0zNTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwT0LLajitRtgSIuK0tBkGIILfKEwQYSiJVnxXjVgTQivpUVDPoAu6TFHaygp ldfaJbXE5XqcbfcIqkrCDzxnYqCIVJmN+5SeQH2sHO6Mtwx/hpY62zZj0f2yhQzA c282qjy9is76pBq9bFfkd2sf0Jbsj35NQpOLdpmJa8MLihXHVt3chmS6qCspguZH Qk9uLk4NmtSYjSoOVV/O2CrVonc8Bz9bgMDf7pyEMcP2sAgBXOhygz8RhieBIjZH sM178ng6pguShH/xzXtDICA7lDZigVJGgQ8e0pjW/77iR7gjljzSDMvUyisNXd+z 1FmtjLYoEiSak/08rScDb0YG6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNh3itGW +4+419jPs7hYIzgvkjZNMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKsb1yCtdxs5e2U9szJCjhAOM4T+Q4tSA6x/9qoC0LEB7AXnjcgnnWoAnKYWn TLmD+2FPceqmPwX5/TmXwPzSnSWdzW2GiUzHtPLmmfSKml9rqR6bL3iRC2wHtpG3 ZVAlZ/97pceeJjYGIT157YlxQ4EanPh2IPwg3i3X/mcYHUWCkWVAZNv1IxsEWcfk QBFsMguLiu3o02rKG5nLfOLlDDu4EkFtnQygDl1CsyMXPaFvc9r6YCfyeqeC6REj 39ezOB0XD/TbHm5celDAnwWBJt2CWmMIPQaKd46FVwdl63DItXTPA5B3auA7/ln2 qRKtpgtUGfh9VnDfPEkuzyAHeQ== -----END CERTIFICATE-----Generated at Thu May 21 10:53:13 2026 by rpki-client