$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft File: dmXig10WAIXjHsJFIi1LL35IRAk.mft (raw, json) Hash identifier: LEeIDLTebbFU2j9VdpFVResfvBT80wXV6hvnewcGmN8= Subject key identifier: B8:05:24:CA:BE:BA:D6:AC:FC:77:C1:43:09:6C:43:57:87:AC:00:18 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft Manifest number: BE Signing time: Mon 11 May 2026 07:06:38 +0000 Manifest this update: Mon 11 May 2026 07:06:38 +0000 Manifest next update: Mon 18 May 2026 07:06:38 +0000 Files and hashes: 1: dmXig10WAIXjHsJFIi1LL35IRAk.crl (hash: fHj2T0oEOY+FAUX1g88FsHAp+DvhINJDsatjtdaZ/Yk=) 2: CAE10F4030E111F09B76D311C4F9AE02.roa (hash: QYbToAo1d6nye+FsjzAnvw3/lP4Nx+MEududWG8oDyc=) 3: CBDD09E430E111F09B76D311C4F9AE02.roa (hash: reMz8lDbqv/5MKQ6Imr6fG4CgsSrFCmBFY2a5YJcGm4=) 4: E73A5E40A28C11F0A6491A72C4F9AE02.roa (hash: mmlD29Jwj8h5f301RfKicLwmF3TuYi2j0tYABjJXZO0=) 5: 570B12E0562611F09F085F44C4F9AE02.roa (hash: fh4pbk7ZgyPKBaTjsRWjp1tC+xa/lcPj1cdrRM1oMjA=) 6: CC3E7A3A30E111F09B76D311C4F9AE02.roa (hash: i0U6RLy91T9DkhNZtnLF7FlhidMvmsCPREqfKmoGIdU=) 7: CB4E186A30E111F09B76D311C4F9AE02.roa (hash: XTFl/MyUGXYDLMXaMRa7HDON+jfgJcrSfnOokKAkziU=) 8: CA5B991430E111F09B76D311C4F9AE02.roa (hash: PEnLi/2yYSoy8XLBMGLd/6VOl25IvlE5IW4q9j8andY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: May 11 07:06:38 2026 GMT Not After : May 18 07:06:38 2026 GMT Subject: CN=6a017ffe-fdad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:de:2b:ab:18:62:d4:de:f5:a3:a1:ec:b3: 84:ef:70:31:0a:63:fd:56:4b:5d:79:cd:94:60:f9: 9f:36:83:b6:36:40:b4:b6:61:f0:27:af:de:a4:5a: 84:d1:60:7f:9f:03:e2:c0:fc:76:27:b9:89:9f:83: 2a:b5:78:cd:cf:9b:d1:83:a9:56:56:89:6c:08:ae: bb:9c:06:ca:8c:c6:78:90:ad:28:06:49:36:5e:ba: 79:c1:29:5f:5a:64:b8:18:43:4d:a3:eb:6a:b2:de: 4e:a5:5b:de:43:8d:06:27:e5:57:a1:0b:b1:55:8c: e6:ec:86:09:87:15:4a:72:27:e5:e5:03:bf:63:af: 25:d3:5c:31:24:d5:98:6c:d5:8d:a1:c6:c0:90:9a: 36:3e:9d:80:c7:d4:81:9d:82:7b:a6:58:57:9d:60: f9:53:9f:f7:9b:27:1f:80:79:ff:28:85:ce:de:0d: f0:11:e2:fe:e2:95:70:a5:a1:ba:4e:54:d3:e1:aa: 2b:47:39:96:2b:43:46:cb:77:01:93:90:35:a0:de: 4a:65:a5:5d:a3:9e:40:2f:9d:d8:a1:8e:62:87:3d: da:e2:61:cb:8a:ed:2d:24:cc:e5:8d:b4:85:f7:83: 3d:ff:b4:70:9e:47:96:08:f7:65:f1:88:9a:2a:31: 0d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:05:24:CA:BE:BA:D6:AC:FC:77:C1:43:09:6C:43:57:87:AC:00:18 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:70:b0:c8:65:80:53:c5:ef:6e:e7:13:8e:27:97:27:94:8f: d9:e3:9b:62:33:c8:03:f5:10:a1:e7:17:a2:59:dd:4e:9a:28: ad:9a:f2:bf:f4:9e:82:39:18:50:d8:f3:96:7a:66:33:c3:21: c6:3b:17:e1:40:9c:cc:99:d4:ae:ad:04:4a:17:a7:e3:79:7d: e9:b8:3a:6f:ad:8c:1b:e2:15:28:39:c8:9f:62:77:0f:f2:34: a9:31:2c:e6:8e:58:67:1d:13:47:4a:62:4b:ba:ac:7d:fd:44: 5b:2a:7f:9d:f8:7d:7b:1e:cf:a5:d3:68:a7:96:ee:b2:c5:b7: 7f:1e:f3:f6:65:4e:8a:6e:bf:43:3e:d9:1d:2b:b6:41:95:c2: 02:94:0d:6c:c1:26:3b:e3:58:36:65:e0:bc:04:bd:b4:3f:f3: 58:c2:c5:05:86:2b:41:e3:99:c4:16:f4:aa:b1:07:f8:cb:bb: 3d:a4:87:95:40:c0:df:ef:a5:43:c4:ca:63:f8:fb:c8:49:8e: 71:0a:f0:93:0b:e3:ff:8e:d6:8a:57:ff:18:38:93:c0:28:d4: b4:ee:59:85:37:43:91:09:7b:53:1c:fb:8f:84:78:96:d6:7b: 1d:81:29:aa:91:5c:52:ab:e7:4d:a6:0d:c0:c6:d4:7d:16:89: 40:de:7f:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQzkxMTAvBgNVBAUTKDc2NjVFMjgzNUQxNjAwODVFMzFFQzI0NTIyMkQ0QjJG N0U0ODQ0MDkwHhcNMjYwNTExMDcwNjM4WhcNMjYwNTE4MDcwNjM4WjAYMRYwFAYD VQQDEw02YTAxN2ZmZS1mZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzPeK6sYYtTe9aOh7LOE73AxCmP9Vktdec2UYPmfNoO2NkC0tmHwJ6/epFqE 0WB/nwPiwPx2J7mJn4MqtXjNz5vRg6lWVolsCK67nAbKjMZ4kK0oBkk2Xrp5wSlf WmS4GENNo+tqst5OpVveQ40GJ+VXoQuxVYzm7IYJhxVKcifl5QO/Y68l01wxJNWY bNWNocbAkJo2Pp2Ax9SBnYJ7plhXnWD5U5/3mycfgHn/KIXO3g3wEeL+4pVwpaG6 TlTT4aorRzmWK0NGy3cBk5A1oN5KZaVdo55AL53YoY5ihz3a4mHLiu0tJMzljbSF 94M9/7RwnkeWCPdl8YiaKjEN7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLgFJMq+ utas/HfBQwlsQ1eHrAAYMB8GA1UdIwQYMBaAFHZl4oNdFgCF4x7CRSItSy9+SEQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZDOS84RDM1RTgyRTMw MkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJWGpIc0pGSWkxTEwzNUlS QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REZDOS84RDM1RTgyRTMwMkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJ WGpIc0pGSWkxTEwzNUlSQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS3CwyGWAU8XvbucTjieXJ5SP2eObYjPIA/UQoecXolndTpoorZryv/SegjkY UNjzlnpmM8MhxjsX4UCczJnUrq0EShen43l96bg6b62MG+IVKDnIn2J3D/I0qTEs 5o5YZx0TR0piS7qsff1EWyp/nfh9ex7PpdNop5bussW3fx7z9mVOim6/Qz7ZHSu2 QZXCApQNbMEmO+NYNmXgvAS9tD/zWMLFBYYrQeOZxBb0qrEH+Mu7PaSHlUDA3++l Q8TKY/j7yEmOcQrwkwvj/47Wilf/GDiTwCjUtO5ZhTdDkQl7Uxz7j4R4ltZ7HYEp qpFcUqvnTaYNwMbUfRaJQN5/tA== -----END CERTIFICATE-----Generated at Wed May 13 03:54:35 2026 by rpki-client