$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: mZxLYmdHKgyVys8qsIeMhS8nG9m2L5PQFX9u7BK6/Kw= Subject key identifier: 80:5B:AB:BC:5D:19:92:5D:55:C7:5E:BB:79:F1:8C:9B:22:5D:3C:77 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 0455 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 044E Signing time: Mon 11 May 2026 00:16:58 +0000 Manifest this update: Mon 11 May 2026 00:16:58 +0000 Manifest next update: Mon 18 May 2026 00:16:58 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: fKoVZOCcwosYQ0omDVmEj3sEvLjtIfHjDyTzHNrl1kQ=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: kVxDpjbggfcolPJrx4wyAyjtrQ4Mtc6iJ6/Dgd9wN9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 00:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1109 (0x455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: May 11 00:16:58 2026 GMT Not After : May 18 00:16:58 2026 GMT Subject: CN=6a011ffa-13e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:de:2b:e4:3c:76:dc:16:9c:43:a5:fd:7e:f7: a4:a4:e2:3f:c1:4c:c5:db:6d:20:a4:11:c3:ee:96: 66:f4:1a:89:d8:62:7e:6d:2f:17:1e:46:81:2d:d4: 4b:c8:74:78:b4:15:0a:04:de:01:dd:fd:7b:9d:92: af:56:60:28:ab:17:b6:43:35:d6:d2:bb:71:e1:92: 4e:ad:44:fb:d3:61:f0:d9:39:c0:e0:ea:ae:44:a1: 5f:72:74:61:c2:f9:5c:f9:d5:c0:4f:28:f8:9b:6a: 59:8a:0e:fb:bf:af:70:ec:ec:09:de:71:09:a5:8d: a7:de:bc:a6:71:4e:92:ba:eb:a8:ad:92:ef:c0:2f: 7c:7b:be:c1:0d:bb:3d:15:65:82:9c:6e:36:57:99: 87:5e:f5:6e:ce:5c:33:c8:a7:df:a9:f3:fd:f9:a1: b4:2d:f9:0b:72:1b:73:6e:cb:cf:e2:75:77:83:9b: 1b:23:bc:a1:b0:ac:a8:bf:3e:e7:2b:7c:31:76:56: cd:3b:f8:06:2a:a7:e3:56:ce:21:b3:8e:64:21:b3: bb:7d:eb:cb:80:10:74:b4:20:e8:c0:7a:c6:3a:2f: c3:27:1b:a0:da:46:52:63:57:f7:88:b8:0e:0a:a8: 81:9e:4d:e9:d4:c0:67:a9:d6:43:ba:06:60:f8:17: 28:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5B:AB:BC:5D:19:92:5D:55:C7:5E:BB:79:F1:8C:9B:22:5D:3C:77 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:2b:3e:65:2a:be:11:ef:23:59:b9:fa:42:79:f5:17:0d:8d: 59:c1:61:07:55:dc:df:53:6f:7e:fc:8c:81:aa:41:35:4e:0b: 8c:74:0b:76:e4:61:9a:59:33:f5:33:8a:d1:65:7f:24:84:10: 74:94:16:a4:de:af:2d:48:62:57:77:ad:a0:fc:19:45:6b:9a: 50:17:22:3b:6a:bb:aa:f7:34:2f:a4:a4:dc:63:b3:85:88:92: 80:5a:04:05:5f:41:fa:92:1e:a8:a4:21:3b:04:77:2f:33:f7: 08:24:b5:45:e4:bb:b0:16:3c:0b:34:8f:ad:75:15:8f:cc:45: b0:1c:5e:e3:85:2e:17:17:c5:a8:09:51:7c:ea:dc:43:58:21: 2a:de:52:81:b3:cf:78:09:45:2b:03:d7:9b:66:f9:a3:f2:73: 70:06:9c:c6:98:80:3c:c0:d7:36:8f:92:68:37:d0:d7:d7:e0: 3b:4c:5e:78:9e:d6:35:1e:06:c2:9f:a2:91:c6:66:2c:29:1e: 5b:74:c1:ab:04:e0:75:99:36:c7:bc:5d:3b:80:55:dd:3f:ed: b1:ea:82:29:4f:93:45:3f:2a:f2:a4:de:be:01:b6:95:72:92: 9b:6e:6f:29:c4:e3:a5:2b:bb:fa:35:74:c5:24:b7:af:92:2d: c3:e6:c4:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjYwNTExMDAxNjU4WhcNMjYwNTE4MDAxNjU4WjAYMRYwFAYD VQQDEw02YTAxMWZmYS0xM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2t4r5Dx23BacQ6X9fvekpOI/wUzF220gpBHD7pZm9BqJ2GJ+bS8XHkaBLdRL yHR4tBUKBN4B3f17nZKvVmAoqxe2QzXW0rtx4ZJOrUT702Hw2TnA4OquRKFfcnRh wvlc+dXATyj4m2pZig77v69w7OwJ3nEJpY2n3rymcU6SuuuorZLvwC98e77BDbs9 FWWCnG42V5mHXvVuzlwzyKffqfP9+aG0LfkLchtzbsvP4nV3g5sbI7yhsKyovz7n K3wxdlbNO/gGKqfjVs4hs45kIbO7fevLgBB0tCDowHrGOi/DJxug2kZSY1f3iLgO CqiBnk3p1MBnqdZDugZg+BcoHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIBbq7xd GZJdVcdeu3nxjJsiXTx3MB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWCs+ZSq+Ee8jWbn6Qnn1Fw2NWcFhB1Xc31NvfvyMgapBNU4LjHQLduRhmlkz 9TOK0WV/JIQQdJQWpN6vLUhiV3etoPwZRWuaUBciO2q7qvc0L6Sk3GOzhYiSgFoE BV9B+pIeqKQhOwR3LzP3CCS1ReS7sBY8CzSPrXUVj8xFsBxe44UuFxfFqAlRfOrc Q1ghKt5SgbPPeAlFKwPXm2b5o/JzcAacxpiAPMDXNo+SaDfQ19fgO0xeeJ7WNR4G wp+ikcZmLCkeW3TBqwTgdZk2x7xdO4BV3T/tseqCKU+TRT8q8qTevgG2lXKSm25v KcTjpSu7+jV0xSS3r5Itw+bE6g== -----END CERTIFICATE-----Generated at Tue May 12 22:18:46 2026 by rpki-client