$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: T/AELiRJ/xiKHim9VNNRSThnDJEJayeOY9EY009VF4Y= Subject key identifier: AF:F1:72:FD:71:11:5C:16:42:05:2D:4E:D0:C5:49:0E:FE:BC:C6:A6 Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0F08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0EF4 Signing time: Tue 12 May 2026 17:39:56 +0000 Manifest this update: Tue 12 May 2026 17:39:55 +0000 Manifest next update: Tue 19 May 2026 17:39:55 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: uRr0VHfgHEKmWh/6r1G+uzxfQMy/diXbFX0xrSY+dbE=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: iut8EEVryRG83jh5a/5UJcx3oIfMx7vlVFCC3Vozxn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3848 (0xf08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743, serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: May 12 17:39:55 2026 GMT Not After : May 19 17:39:55 2026 GMT Subject: CN=6a0365ec-a80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ed:ed:98:4b:2c:3c:ff:0d:ec:84:9b:c5:0f: a4:f5:79:c1:c5:33:a4:21:d2:20:85:d1:d2:9d:96: 1c:da:7d:b6:15:e7:6e:2c:6b:c5:3b:8a:4e:ab:1c: 19:e4:57:3f:54:bf:52:bb:c9:af:69:6c:0c:4f:c3: 8d:cb:e4:8f:0e:69:64:10:2f:aa:b6:40:a4:46:b5: c4:8d:c1:b9:68:dc:07:be:77:49:c0:a0:52:fb:7f: 0c:e9:07:9a:80:79:d7:65:4d:0b:09:33:94:81:18: 61:7e:81:f6:05:91:2e:1c:19:4c:66:1d:23:68:0f: f9:4c:24:2a:ab:b4:f9:2c:83:c3:fa:36:3d:ad:8a: 8d:e5:b9:5b:38:81:57:a4:29:d4:ae:6b:fb:d9:e4: c7:b7:f4:4d:b3:c8:1d:7e:f5:0a:2e:ef:8a:c3:ca: 0b:9c:b4:79:91:d1:93:98:53:57:7b:5d:c1:af:c4: 3e:4d:d6:d7:ee:1b:33:2e:25:d9:cb:59:91:1d:db: cb:16:ba:d9:2b:ea:72:11:23:2f:e8:ad:fa:e7:39: bd:e5:19:c4:db:63:17:ce:24:f8:ec:dc:b5:56:8e: 52:7d:4c:f3:72:ea:ac:02:04:c5:2f:46:0d:62:3b: 06:c8:0f:e2:bd:dc:48:68:10:90:3a:bb:68:49:a5: d1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F1:72:FD:71:11:5C:16:42:05:2D:4E:D0:C5:49:0E:FE:BC:C6:A6 X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:7e:be:42:bc:17:b0:67:11:95:bf:9e:89:b7:69:8d:24:03: 17:92:53:ca:60:0d:ed:af:d8:03:80:df:95:e7:00:54:03:d5: 4b:5e:32:d0:a8:00:d9:1e:38:79:ee:96:a6:6d:d8:e5:c5:43: bd:0a:ce:09:d3:a3:f0:f5:b0:bc:a4:d3:5a:af:40:5c:17:ea: 71:f9:5e:98:38:93:95:84:d1:9c:52:41:a5:42:4e:db:14:98: 9b:1d:a6:1b:75:bc:1c:dc:5d:f5:b7:09:ef:e1:e3:73:82:c9: 24:37:6c:44:b3:a3:d5:f3:7c:9e:d6:a8:de:12:fc:d6:d8:2c: 70:47:06:cb:5e:82:e1:88:d3:e1:bf:6f:f0:af:24:87:9a:b0: f1:6f:ef:21:2e:f6:ee:fe:09:d8:29:cc:5d:ff:78:08:b3:92: 68:38:dc:b8:5c:4d:2d:c2:65:09:a3:97:30:7e:7a:54:83:6c: 05:9d:ab:3b:c4:e7:9b:1f:9d:b4:f8:35:63:77:8d:80:ea:a8: 6b:0b:8f:e2:4a:42:5d:aa:a6:ef:aa:9a:81:3f:7c:90:0f:de: d7:9e:d8:e8:16:f2:23:36:47:d4:7b:bd:94:dc:f9:7f:da:25: cd:4d:64:61:3e:ec:86:65:7d:ff:45:2e:2d:7f:53:3c:ae:ee: 02:b0:57:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjYwNTEyMTczOTU1WhcNMjYwNTE5MTczOTU1WjAYMRYwFAYD VQQDEw02YTAzNjVlYy1hODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6e3tmEssPP8N7ISbxQ+k9XnBxTOkIdIghdHSnZYc2n22FeduLGvFO4pOqxwZ 5Fc/VL9Su8mvaWwMT8ONy+SPDmlkEC+qtkCkRrXEjcG5aNwHvndJwKBS+38M6Qea gHnXZU0LCTOUgRhhfoH2BZEuHBlMZh0jaA/5TCQqq7T5LIPD+jY9rYqN5blbOIFX pCnUrmv72eTHt/RNs8gdfvUKLu+Kw8oLnLR5kdGTmFNXe13Br8Q+TdbX7hszLiXZ y1mRHdvLFrrZK+pyESMv6K365zm95RnE22MXziT47Ny1Vo5SfUzzcuqsAgTFL0YN YjsGyA/ivdxIaBCQOrtoSaXRpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/xcv1x EVwWQgUtTtDFSQ7+vMamMB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM36+QrwXsGcRlb+eibdpjSQDF5JTymAN7a/YA4DflecAVAPVS14y0KgA2R44 ee6Wpm3Y5cVDvQrOCdOj8PWwvKTTWq9AXBfqcflemDiTlYTRnFJBpUJO2xSYmx2m G3W8HNxd9bcJ7+Hjc4LJJDdsRLOj1fN8ntao3hL81tgscEcGy16C4YjT4b9v8K8k h5qw8W/vIS727v4J2CnMXf94CLOSaDjcuFxNLcJlCaOXMH56VINsBZ2rO8Tnmx+d tPg1Y3eNgOqoawuP4kpCXaqm76qagT98kA/e157Y6BbyIzZH1Hu9lNz5f9olzU1k YT7shmV9/0UuLX9TPK7uArBXWw== -----END CERTIFICATE-----Generated at Wed May 13 15:20:38 2026 by rpki-client