$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D65/C6C5B8D422A811F1A29C851CB5833773/shmdscl5XUlnt_7Voe9wn6LpaGE.mft File: shmdscl5XUlnt_7Voe9wn6LpaGE.mft (raw, json) Hash identifier: zgq9SsgXdIc62aT1/KNWax1J3luSGTb1pvIxeMPpOow= Subject key identifier: A8:B6:BD:35:7C:53:77:D5:C8:DD:2F:CC:DA:9D:BC:F6:5A:E7:E3:02 Authority key identifier: B2:19:9D:B1:C9:79:5D:49:67:B7:FE:D5:A1:EF:70:9F:A2:E9:68:61 Certificate issuer: /CN=A9111D65/serialNumber=B2199DB1C9795D4967B7FED5A1EF709FA2E96861 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/shmdscl5XUlnt_7Voe9wn6LpaGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D65/C6C5B8D422A811F1A29C851CB5833773/shmdscl5XUlnt_7Voe9wn6LpaGE.mft Manifest number: 1F Signing time: Wed 13 May 2026 09:01:54 +0000 Manifest this update: Wed 13 May 2026 09:01:53 +0000 Manifest next update: Wed 20 May 2026 09:01:53 +0000 Files and hashes: 1: shmdscl5XUlnt_7Voe9wn6LpaGE.crl (hash: v700z8XV3hVMGfhyFiLFw/Gd/3nXtnSkZc4Vmg5gRtQ=) 2: D5931DD822A911F1B999B242B5833773.roa (hash: 9CC6O07iFUNLEts6pdhGBre/dsBGCYzcLM8YjPj0LWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D65/C6C5B8D422A811F1A29C851CB5833773/shmdscl5XUlnt_7Voe9wn6LpaGE.crl rsync://rpki.apnic.net/member_repository/A9111D65/C6C5B8D422A811F1A29C851CB5833773/shmdscl5XUlnt_7Voe9wn6LpaGE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/shmdscl5XUlnt_7Voe9wn6LpaGE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D65, serialNumber=B2199DB1C9795D4967B7FED5A1EF709FA2E96861 Validity Not Before: May 13 09:01:53 2026 GMT Not After : May 20 09:01:53 2026 GMT Subject: CN=6a043e02-c122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:01:c5:67:f6:11:69:87:53:0f:c7:e6:cb:cf: d1:53:79:a8:65:65:0a:ca:c8:b2:78:6d:cf:e5:fe: b1:7f:99:51:09:98:c8:e0:fb:59:3b:ae:e5:c9:be: 19:f5:80:57:6d:91:c7:ee:fb:8b:a1:02:5d:47:d9: 14:35:1a:61:a8:65:21:40:40:86:38:8f:f6:85:cb: d6:df:26:36:19:f2:6d:87:53:30:fb:64:34:64:8c: 47:d2:5f:b0:58:12:44:cb:ba:72:d6:ef:54:3b:49: 4b:76:b8:13:44:08:fd:19:34:9a:26:1e:9d:1d:fb: e5:67:d5:da:b4:05:b2:f7:41:2b:6b:8c:5b:69:d8: c9:0e:64:55:f5:ac:91:d5:c0:4b:41:9a:16:71:e0: 27:dc:cd:c1:94:ec:3a:46:3c:1f:ce:a7:07:9e:39: 8a:d9:18:97:7b:b8:65:2d:66:ef:be:e6:cf:6a:7e: 02:dd:67:87:c8:78:4a:83:8f:5d:f3:3e:03:84:67: 58:4a:24:9e:64:ff:b4:b6:1a:33:ce:27:b4:d4:f0: cf:10:4d:9f:12:1c:89:e4:8d:80:2d:29:d8:12:96: 33:f8:3e:d6:24:2d:0d:2c:5e:f8:b3:28:39:da:f0: 46:30:f4:86:5c:72:7b:00:04:06:7d:00:50:fd:44: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B6:BD:35:7C:53:77:D5:C8:DD:2F:CC:DA:9D:BC:F6:5A:E7:E3:02 X509v3 Authority Key Identifier: keyid:B2:19:9D:B1:C9:79:5D:49:67:B7:FE:D5:A1:EF:70:9F:A2:E9:68:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D65/C6C5B8D422A811F1A29C851CB5833773/shmdscl5XUlnt_7Voe9wn6LpaGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/shmdscl5XUlnt_7Voe9wn6LpaGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D65/C6C5B8D422A811F1A29C851CB5833773/shmdscl5XUlnt_7Voe9wn6LpaGE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:df:f1:c9:fc:44:9e:4c:95:70:27:91:f3:57:33:7b:2c:aa: bf:b2:20:07:28:e1:d1:2a:0b:06:4f:74:1c:fb:b9:11:cb:7a: aa:3b:dd:48:18:14:9e:ef:98:22:56:5f:f9:03:f6:52:2c:5d: 82:7e:47:65:95:2a:5d:ed:f1:99:b0:23:f7:c1:66:a7:3e:6a: ff:52:fc:ec:67:2a:70:25:93:ac:f0:02:e5:8a:83:85:c3:4c: d8:ef:00:0e:a5:98:c0:d2:46:7d:c9:5e:9a:84:5c:e4:f6:88: 48:8c:64:aa:01:04:1f:da:62:b7:20:5e:6b:2c:6f:c9:08:09: 40:a4:10:e6:53:5e:0a:e6:04:2a:29:bb:e9:68:a7:a4:11:ce: 15:a6:a3:0c:e5:68:e5:2b:2a:98:f3:e6:76:0c:42:d8:ba:6f: 2e:50:95:0e:7b:e9:e9:6e:4b:55:a0:5e:b6:a9:46:2c:74:63: 34:92:c7:12:c7:d5:74:a9:f3:f4:c4:61:aa:82:b5:56:3f:a8: 5c:e8:89:ce:6b:e5:53:1b:f8:25:ed:dc:ad:23:4f:62:93:b6: 18:9e:25:8f:25:4a:f9:69:36:0b:6b:66:ae:c2:41:60:24:83: 5e:7d:1d:e7:83:77:a0:3f:e2:99:96:1a:ea:73:73:57:f7:3e: 7a:14:55:a4 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MUQ2NTExMC8GA1UEBRMoQjIxOTlEQjFDOTc5NUQ0OTY3QjdGRUQ1QTFFRjcwOUZB MkU5Njg2MTAeFw0yNjA1MTMwOTAxNTNaFw0yNjA1MjAwOTAxNTNaMBgxFjAUBgNV BAMTDTZhMDQzZTAyLWMxMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjAcVn9hFph1MPx+bLz9FTeahlZQrKyLJ4bc/l/rF/mVEJmMjg+1k7ruXJvhn1 gFdtkcfu+4uhAl1H2RQ1GmGoZSFAQIY4j/aFy9bfJjYZ8m2HUzD7ZDRkjEfSX7BY EkTLunLW71Q7SUt2uBNECP0ZNJomHp0d++Vn1dq0BbL3QStrjFtp2MkOZFX1rJHV wEtBmhZx4CfczcGU7DpGPB/OpweeOYrZGJd7uGUtZu++5s9qfgLdZ4fIeEqDj13z PgOEZ1hKJJ5k/7S2GjPOJ7TU8M8QTZ8SHInkjYAtKdgSljP4PtYkLQ0sXvizKDna 8EYw9IZccnsABAZ9AFD9RKCFAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUqLa9NXxT d9XI3S/M2p289lrn4wIwHwYDVR0jBBgwFoAUshmdscl5XUlnt/7Voe9wn6LpaGEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExRDY1L0M2QzVCOEQ0MjJB ODExRjFBMjlDODUxQ0I1ODMzNzczL3NobWRzY2w1WFVsbnRfN1ZvZTl3bjZMcGFH RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc2htZHNjbDVYVWxudF83Vm9lOXduNkxwYUdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx RDY1L0M2QzVCOEQ0MjJBODExRjFBMjlDODUxQ0I1ODMzNzczL3NobWRzY2w1WFVs bnRfN1ZvZTl3bjZMcGFHRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCu3/HJ/ESeTJVwJ5HzVzN7LKq/siAHKOHRKgsGT3Qc+7kRy3qqO91IGBSe75gi Vl/5A/ZSLF2CfkdllSpd7fGZsCP3wWanPmr/UvzsZypwJZOs8ALlioOFw0zY7wAO pZjA0kZ9yV6ahFzk9ohIjGSqAQQf2mK3IF5rLG/JCAlApBDmU14K5gQqKbvpaKek Ec4VpqMM5WjlKyqY8+Z2DELYum8uUJUOe+npbktVoF62qUYsdGM0kscSx9V0qfP0 xGGqgrVWP6hc6InOa+VTG/gl7dytI09ik7YYniWPJUr5aTYLa2auwkFgJINefR3n g3egP+KZlhrqc3NX9z56FFWk -----END CERTIFICATE-----Generated at Wed May 13 12:35:27 2026 by rpki-client