$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: SOjOBES05/wB72Q+Joo7JJN46LgUsZgowV+zBP7TZhM= Subject key identifier: D9:62:67:8F:43:28:2D:D7:AA:5C:0D:41:4E:30:CD:31:E4:4D:8C:D3 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03E8 Signing time: Fri 01 May 2026 00:43:11 +0000 Manifest this update: Fri 01 May 2026 00:43:11 +0000 Manifest next update: Fri 08 May 2026 00:43:11 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: I0IZc7pIHCVzgSwQeMAkVqSpphg3gW5z4YI+C5XUk0Y=) 2: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) 3: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 00:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: May 1 00:43:11 2026 GMT Not After : May 8 00:43:11 2026 GMT Subject: CN=69f3f71f-29d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c0:e1:c8:cb:e0:ae:c4:53:e3:76:75:d3:eb: c8:dc:53:63:9f:3d:0b:c1:cc:34:b0:52:b6:a4:89: ab:86:b5:3c:c1:4b:74:ac:d2:56:df:26:df:81:75: 95:1d:db:00:fe:2b:f2:de:fb:f3:d3:c5:75:b7:68: 53:ab:23:6c:98:7e:2b:ad:91:62:91:bc:3a:5f:7f: 41:b4:7d:c8:e6:1c:f6:2c:af:5d:89:2e:0d:4d:dd: 22:d3:ff:87:f4:32:6c:8e:3d:50:5a:28:28:76:46: d4:95:bd:2e:b4:94:66:8b:b6:9f:69:a9:09:60:9d: d1:a7:ce:20:6a:22:ba:2c:4f:80:a9:ac:69:9d:c2: 90:90:b4:bf:55:41:62:12:08:57:f5:77:26:8f:2c: ec:bd:be:48:ff:fd:7c:11:0c:cc:d0:58:d2:11:63: 49:bd:f3:37:28:2c:11:00:fe:82:20:36:bf:87:95: dc:a0:01:02:1c:77:1a:b7:9f:03:86:cb:12:30:db: 1f:19:05:df:4d:6e:45:8e:68:ba:f2:f5:ed:37:c0: 05:03:62:90:72:b7:c7:d4:d7:29:38:55:b0:bb:1f: 74:89:ff:d6:c2:3d:cf:c8:5b:53:38:47:84:d0:35: a3:44:db:47:37:cd:9f:14:88:ca:fa:de:25:20:24: 01:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:62:67:8F:43:28:2D:D7:AA:5C:0D:41:4E:30:CD:31:E4:4D:8C:D3 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:53:1c:85:2e:53:2d:61:97:21:e7:ce:95:41:45:75:67:c7: c5:48:4d:d8:b8:a9:2a:d2:3e:14:4b:5a:69:7e:ed:6a:fb:a5: f4:73:ab:db:7f:2d:27:62:50:e6:da:2f:71:a7:e2:9d:56:6c: 4f:7b:55:f1:ee:ac:4f:f2:42:8d:82:9d:7b:95:0a:dd:38:02: 91:c4:f1:72:5e:e9:9c:a6:ab:fd:a1:dd:ec:e6:cf:1e:1f:68: 65:e5:e1:42:c1:0a:b4:6b:9d:ad:6f:de:b3:10:db:95:d5:07: 1c:53:12:69:99:2c:ef:42:91:f2:2a:1b:10:12:73:e4:b6:a8: 78:d2:ee:0f:83:f8:1b:6e:44:d8:4e:87:28:20:c4:11:0b:21: 24:03:ee:79:38:35:bb:8c:e7:49:8a:0d:f9:cc:df:49:b9:91: 90:4b:7d:e1:31:bf:d1:0a:58:f6:ec:4e:f0:64:66:f3:89:13: b4:1f:ff:07:43:2d:4c:de:34:54:da:32:82:df:94:0b:f3:1d: 9e:56:3c:7c:5d:65:da:dd:04:f8:65:5c:ba:35:78:23:d4:d0: 61:b4:4a:25:90:d5:42:72:50:8c:ec:01:88:01:c8:79:de:de: 63:ff:07:61:08:e5:15:3d:49:42:c9:40:4e:48:c6:58:35:e6: 89:ac:8f:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwNTAxMDA0MzExWhcNMjYwNTA4MDA0MzExWjAYMRYwFAYD VQQDEw02OWYzZjcxZi0yOWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cDhyMvgrsRT43Z10+vI3FNjnz0Lwcw0sFK2pImrhrU8wUt0rNJW3ybfgXWV HdsA/ivy3vvz08V1t2hTqyNsmH4rrZFikbw6X39BtH3I5hz2LK9diS4NTd0i0/+H 9DJsjj1QWigodkbUlb0utJRmi7afaakJYJ3Rp84gaiK6LE+AqaxpncKQkLS/VUFi EghX9Xcmjyzsvb5I//18EQzM0FjSEWNJvfM3KCwRAP6CIDa/h5XcoAECHHcat58D hssSMNsfGQXfTW5Fjmi68vXtN8AFA2KQcrfH1NcpOFWwux90if/Wwj3PyFtTOEeE 0DWjRNtHN82fFIjK+t4lICQBTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNliZ49D KC3XqlwNQU4wzTHkTYzTMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuVMchS5TLWGXIefOlUFFdWfHxUhN2LipKtI+FEtaaX7tavul9HOr238tJ2JQ 5tovcafinVZsT3tV8e6sT/JCjYKde5UK3TgCkcTxcl7pnKar/aHd7ObPHh9oZeXh QsEKtGudrW/esxDbldUHHFMSaZks70KR8iobEBJz5LaoeNLuD4P4G25E2E6HKCDE EQshJAPueTg1u4znSYoN+czfSbmRkEt94TG/0QpY9uxO8GRm84kTtB//B0MtTN40 VNoygt+UC/MdnlY8fF1l2t0E+GVcujV4I9TQYbRKJZDVQnJQjOwBiAHIed7eY/8H YQjlFT1JQslATkjGWDXmiayPTw== -----END CERTIFICATE-----Generated at Sat May 2 04:36:26 2026 by rpki-client