$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: bPdQuvaFenRzlzkXIl31MD2lKOiB8IxaP3u9vRH2+g8= Subject key identifier: 62:2D:50:78:12:37:FB:75:B6:ED:CB:21:BF:F9:82:A9:93:B6:65:BE Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 08C9 Signing time: Wed 20 May 2026 20:27:46 +0000 Manifest this update: Wed 20 May 2026 20:27:45 +0000 Manifest next update: Wed 27 May 2026 20:27:45 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: /7uDqh8v7AALBY///QtXuEwd1Eqnoj+7FWh0kCKdVEM=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo=) 3: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2264 (0x8d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: May 20 20:27:45 2026 GMT Not After : May 27 20:27:45 2026 GMT Subject: CN=6a0e1942-8c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:f5:8b:19:5f:e6:c3:8c:9e:ca:2b:5c:2b: 19:65:84:70:e0:ba:51:f0:f7:5c:10:8b:26:56:73: a5:19:1f:7f:16:a3:da:22:9e:2e:0f:64:49:59:ee: 67:bb:fe:be:3f:df:d0:1a:8f:cf:a2:66:85:88:c3: 96:63:6b:8f:e8:36:b9:a6:2c:1e:48:c0:ae:38:72: 69:ba:32:66:84:45:8a:fb:5d:9f:84:ab:96:f8:a1: d7:08:56:f8:24:a2:1e:40:08:ee:75:88:d6:6c:83: dc:c4:38:b5:0b:b8:4d:df:3c:47:08:fb:b0:f1:14: 03:5e:86:2b:a6:f0:a1:4f:f4:4f:ea:6e:6e:ab:ab: eb:a3:53:ca:a7:81:36:bf:94:54:0a:7a:4e:33:da: f3:74:d6:51:0c:f4:af:a2:f4:83:51:14:d8:bc:93: 27:8f:d0:5d:c9:bd:f9:77:cf:2d:c8:98:4c:ae:7e: 87:76:26:f3:89:eb:15:bd:cd:ca:ea:c8:99:7b:10: af:6f:75:8f:ab:97:7b:08:14:3d:61:15:a2:36:63: 92:ef:24:1e:73:9c:af:6c:6b:ef:3b:54:71:cb:4e: 98:e1:53:39:97:d7:c2:ab:dc:a9:0c:27:c1:1d:1e: 30:ed:3e:04:f5:f3:76:96:7c:bd:ad:b2:26:dd:40: b4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2D:50:78:12:37:FB:75:B6:ED:CB:21:BF:F9:82:A9:93:B6:65:BE X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:1b:8e:11:94:f3:c7:16:b7:da:1a:16:9d:0d:7e:bc:fc:44: bb:bb:a4:12:94:97:fa:7f:08:15:08:6f:27:39:ae:29:ec:80: fd:d3:7c:ea:7f:fa:b8:64:f8:67:25:7f:b6:5b:6b:05:33:4e: 6f:8d:e4:1e:d6:56:df:5d:b1:a9:53:89:b8:42:76:e2:ca:ac: 45:1a:be:71:25:f7:fa:27:05:57:8c:a2:98:66:47:36:49:31: 7c:4c:87:cd:9f:d8:2c:eb:0e:f2:27:49:7a:dc:58:20:6f:b9: b1:07:0b:4b:ba:83:49:99:ac:f3:ca:e1:b3:b7:a7:27:5b:1d: 36:d2:23:83:88:48:b2:ba:c5:d3:16:01:8a:bd:6a:97:9c:10: e5:43:7d:33:4e:77:33:cf:07:81:1a:3a:65:a6:d4:a2:ac:95: 20:cd:9e:42:2c:6d:bb:33:8b:ae:e3:8b:0f:01:9a:49:89:09: 71:0e:b7:7b:19:d0:c9:2d:90:a6:e7:47:ea:b4:e6:79:25:13: c7:e7:9d:09:8d:3e:fa:1d:9e:33:6a:21:45:51:38:94:28:84: 39:44:01:ab:b6:c4:49:97:a7:9a:fb:2f:2c:1f:98:e3:46:2c: 27:b3:1f:d0:bb:74:d8:80:21:ab:9b:53:66:bc:e2:8c:a4:11: 1b:47:61:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjYwNTIwMjAyNzQ1WhcNMjYwNTI3MjAyNzQ1WjAYMRYwFAYD VQQDEw02YTBlMTk0Mi04YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy71ixlf5sOMnsorXCsZZYRw4LpR8PdcEIsmVnOlGR9/FqPaIp4uD2RJWe5n u/6+P9/QGo/PomaFiMOWY2uP6Da5piweSMCuOHJpujJmhEWK+12fhKuW+KHXCFb4 JKIeQAjudYjWbIPcxDi1C7hN3zxHCPuw8RQDXoYrpvChT/RP6m5uq6vro1PKp4E2 v5RUCnpOM9rzdNZRDPSvovSDURTYvJMnj9Bdyb35d88tyJhMrn6HdibziesVvc3K 6siZexCvb3WPq5d7CBQ9YRWiNmOS7yQec5yvbGvvO1Rxy06Y4VM5l9fCq9ypDCfB HR4w7T4E9fN2lny9rbIm3UC01wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGItUHgS N/t1tu3LIb/5gqmTtmW+MB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASRuOEZTzxxa32hoWnQ1+vPxEu7ukEpSX+n8IFQhvJzmuKeyA/dN86n/6uGT4 ZyV/tltrBTNOb43kHtZW312xqVOJuEJ24sqsRRq+cSX3+icFV4yimGZHNkkxfEyH zZ/YLOsO8idJetxYIG+5sQcLS7qDSZms88rhs7enJ1sdNtIjg4hIsrrF0xYBir1q l5wQ5UN9M053M88HgRo6ZabUoqyVIM2eQixtuzOLruOLDwGaSYkJcQ63exnQyS2Q pudH6rTmeSUTx+edCY0++h2eM2ohRVE4lCiEOUQBq7bESZenmvsvLB+Y40YsJ7Mf 0Lt02IAhq5tTZrzijKQRG0dhjg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:50 2026 by rpki-client