$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: cneqOj1nhfjccDDRQZefXpdlANdREJ5ZDAhgsyT543c= Subject key identifier: 14:BB:AF:9C:60:4F:2E:84:E6:FC:B3:FB:8F:B6:81:6B:E1:BA:1C:C1 Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: 0149 Signing time: Tue 05 May 2026 05:15:56 +0000 Manifest this update: Tue 05 May 2026 05:15:55 +0000 Manifest next update: Tue 12 May 2026 05:15:55 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: /6EE6Ufn5DIeE0IiQXf6RcJiLknbrRNJza2esB7HWpw=) 2: 2FAD450250E411F0A6B4892AC4F9AE02.roa (hash: 5FVZeeMmHHgD5LWgKUCAHIiyRLhCr4xloYA6n+HE21g=) 3: 56EC0F5EABD411F0ADCDD73CC4F9AE02.roa (hash: LRGLmwGa2a/I5gvOrv+UPiIF3N2WlDmpx8kIsDZcKzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: May 5 05:15:55 2026 GMT Not After : May 12 05:15:55 2026 GMT Subject: CN=69f97d0b-8c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:95:19:7b:c6:f8:63:54:34:a5:a3:36:95:75: 03:cb:a1:b8:25:cb:a2:d0:76:44:50:86:13:20:44: 01:4f:7a:57:04:c0:20:21:06:1f:97:60:6e:24:b9: f0:40:38:ef:05:50:3d:c0:45:51:81:21:37:36:9b: d9:7b:c3:9b:79:41:d7:43:25:f4:5d:73:8c:a2:88: b7:0e:9b:b4:29:2a:9b:a5:9f:10:c2:d4:c7:c9:89: 0e:30:3e:45:0d:91:e5:10:7e:60:3d:8e:39:1e:2a: 7d:90:15:2f:6b:f9:06:64:2a:9d:ec:e6:c7:a1:e4: df:08:85:9b:ef:4e:df:6a:f2:3b:f2:e8:cc:85:9a: 37:d8:18:8a:48:50:4f:55:9a:1f:5c:8d:1c:9e:a9: 9f:6a:d4:fb:87:e9:22:c3:27:69:8d:4e:24:e2:1d: bd:b0:a0:8f:f4:24:39:ef:d9:1f:fe:d9:e3:8b:e6: be:e2:5f:d7:8c:95:f2:6e:a6:44:45:b8:6b:1f:8d: da:03:76:28:1f:8b:75:01:db:4c:30:5c:24:63:f3: 8e:a2:9d:aa:c9:5b:be:06:47:44:c6:1c:04:59:31: 3a:4b:18:e2:af:57:d5:60:9c:2e:28:6f:9c:1d:bc: 7e:47:83:bd:d8:0b:db:12:7c:a5:f6:ea:a8:b9:b2: 32:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BB:AF:9C:60:4F:2E:84:E6:FC:B3:FB:8F:B6:81:6B:E1:BA:1C:C1 X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:63:58:e6:97:ba:de:9a:ae:c7:d8:2a:74:cc:75:cc:f1:bb: cf:8f:fe:33:c4:2f:22:ae:16:2f:e8:97:e7:eb:37:13:1d:c3: 43:a3:40:87:37:10:40:2f:50:ce:12:8d:6f:b6:7e:c4:a2:86: cd:bb:d4:c8:e5:ae:33:aa:8e:54:d8:c2:0b:d8:1a:e8:88:a1: 4c:89:f2:59:bd:be:a1:93:83:dc:b5:1c:5a:6d:85:f6:76:a1: 9b:c3:94:12:a0:58:d8:94:bc:97:3e:67:cd:ef:10:c8:f8:bd: 8a:ba:aa:f7:8b:92:33:33:3b:f3:8b:e1:4d:db:f5:30:80:72: a9:26:2b:be:18:39:d1:9f:03:3c:4c:ce:92:60:0b:94:1b:09: b6:8f:ae:16:2c:68:4e:fa:7b:54:86:49:41:95:ed:6c:d0:4d: 1a:34:fb:09:a0:a4:75:6c:1e:5d:a3:c4:18:94:5a:8b:d4:86: 81:4d:3d:cb:9f:ab:ee:5b:0e:f8:f6:c5:49:30:db:22:4b:83: c4:62:80:4f:cf:e1:05:dc:e0:39:91:ad:8f:2a:65:87:f4:e1: 80:ec:07:10:7a:ef:80:67:c4:e0:cd:a7:30:e2:1c:d1:13:f8: 5e:55:da:d5:4e:4a:13:02:7a:1b:2e:29:2d:b6:cb:d9:31:07: 96:6a:04:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjYwNTA1MDUxNTU1WhcNMjYwNTEyMDUxNTU1WjAYMRYwFAYD VQQDEw02OWY5N2QwYi04YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJUZe8b4Y1Q0paM2lXUDy6G4Jcui0HZEUIYTIEQBT3pXBMAgIQYfl2BuJLnw QDjvBVA9wEVRgSE3NpvZe8ObeUHXQyX0XXOMooi3Dpu0KSqbpZ8QwtTHyYkOMD5F DZHlEH5gPY45Hip9kBUva/kGZCqd7ObHoeTfCIWb707favI78ujMhZo32BiKSFBP VZofXI0cnqmfatT7h+kiwydpjU4k4h29sKCP9CQ579kf/tnji+a+4l/XjJXybqZE RbhrH43aA3YoH4t1AdtMMFwkY/OOop2qyVu+BkdExhwEWTE6Sxjir1fVYJwuKG+c Hbx+R4O92AvbEnyl9uqoubIy+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBS7r5xg Ty6E5vyz+4+2gWvhuhzBMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJS b1JQeWVpcFU0c0M0MWEtelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArWNY5pe63pqux9gqdMx1zPG7z4/+M8QvIq4WL+iX5+s3Ex3DQ6NAhzcQQC9Q zhKNb7Z+xKKGzbvUyOWuM6qOVNjCC9ga6IihTInyWb2+oZOD3LUcWm2F9nahm8OU EqBY2JS8lz5nze8QyPi9irqq94uSMzM784vhTdv1MIByqSYrvhg50Z8DPEzOkmAL lBsJto+uFixoTvp7VIZJQZXtbNBNGjT7CaCkdWweXaPEGJRai9SGgU09y5+r7lsO +PbFSTDbIkuDxGKAT8/hBdzgOZGtjyplh/ThgOwHEHrvgGfE4M2nMOIc0RP4XlXa 1U5KEwJ6Gy4pLbbL2TEHlmoEFw== -----END CERTIFICATE-----Generated at Wed May 6 00:20:48 2026 by rpki-client