$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: m7+uFLQzxhFD8TR6hXmATcAUrbN0AtYO8SG56TgEJzU= Subject key identifier: 18:C4:FE:C1:66:C2:EA:62:07:5A:EA:35:2F:08:F8:08:D1:C3:5F:81 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 0113 Signing time: Mon 11 May 2026 06:04:16 +0000 Manifest this update: Mon 11 May 2026 06:04:16 +0000 Manifest next update: Mon 18 May 2026 06:04:16 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: 6gqpext0KKth59yyBIkJ9+hSxnFbOqYrRDccFjPUT14=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: oDbq8aHQpmwpTVbKMN5yg6duwCoRhyPVojQ6jr19VtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: May 11 06:04:16 2026 GMT Not After : May 18 06:04:16 2026 GMT Subject: CN=6a017160-f285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1b:8c:77:9f:32:27:57:3d:88:39:ce:a8:f2: 6d:de:52:5e:cb:0c:51:2e:62:77:02:6f:b0:a6:ab: 76:ca:5d:a7:18:0f:08:26:23:49:10:a3:9e:58:03: be:ec:c9:13:ee:4f:8e:ae:51:b4:a3:3d:c9:68:05: 04:1b:9a:6b:b9:ad:ea:0c:cd:86:12:5a:ec:7a:c0: 09:e9:a6:9f:5c:b0:3a:e4:d7:0d:56:30:45:34:92: d2:bc:be:e3:df:fe:24:9c:01:cb:78:e8:ad:6a:30: 39:5c:dd:44:7a:3f:01:e9:62:09:9a:df:dd:9b:c1: 31:5e:eb:de:04:44:11:7f:9d:7e:df:34:e8:13:9b: 11:11:66:f6:5c:7d:b4:ab:6a:99:58:c5:e2:80:aa: 24:94:56:70:c2:6a:17:12:79:3f:ac:df:c5:4c:2a: 3c:bc:d3:88:2a:27:31:dd:e8:1c:44:63:52:18:01: 1d:f9:5c:0a:0e:ea:b4:4c:74:0c:f8:1c:6c:f9:14: 23:94:3f:7e:5e:d9:0d:24:cd:93:7f:8e:54:e7:59: 32:93:41:77:57:c2:47:71:0a:53:28:41:33:fe:24: 73:d4:00:96:7e:ab:e9:79:54:6c:95:ee:a9:c9:a3: 8f:57:22:3c:43:a5:76:38:ed:08:72:f1:8e:98:ae: 73:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C4:FE:C1:66:C2:EA:62:07:5A:EA:35:2F:08:F8:08:D1:C3:5F:81 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:59:2e:5f:18:e0:89:ca:9c:f3:8f:d3:95:89:73:90:45:ca: 81:8c:ca:0e:bf:0a:cd:bd:e8:d5:63:ed:f4:da:a6:a3:54:a7: 68:39:16:09:7a:9c:3e:6f:d6:44:e1:35:33:64:24:51:a4:5f: 76:f1:58:e8:53:49:64:09:2d:07:79:2e:c6:76:73:d1:5c:cf: 0c:82:de:ff:59:a6:b4:70:32:64:f0:c1:af:10:2b:a0:62:c7: c9:95:4a:69:3f:10:e7:ad:eb:3b:2b:9d:17:03:06:91:dc:07: 90:1a:54:77:e0:19:28:11:e0:c7:51:d8:4c:a3:04:9e:a9:0b: cf:8c:22:8a:93:a9:9f:9a:7b:e3:71:8b:4d:95:f5:9b:ea:00: 54:2d:4e:87:8b:52:70:c5:22:ef:76:75:d2:f6:0a:a7:9d:40: 79:d8:14:a0:c3:1c:cb:da:3f:15:bc:c1:a3:4a:1a:b5:a0:62: 06:93:3f:89:d4:27:f7:1a:db:12:8c:57:53:e9:0f:f2:36:97: 77:9b:58:1d:41:53:94:6a:98:5d:55:f5:1f:19:ae:0b:1c:96: 23:9a:c5:5f:bb:87:ea:96:62:59:73:20:8d:53:ca:c9:49:fd: 31:56:75:f2:b2:78:cc:24:66:87:de:72:b8:f0:e8:26:35:9a: fc:35:39:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjYwNTExMDYwNDE2WhcNMjYwNTE4MDYwNDE2WjAYMRYwFAYD VQQDEw02YTAxNzE2MC1mMjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRuMd58yJ1c9iDnOqPJt3lJeywxRLmJ3Am+wpqt2yl2nGA8IJiNJEKOeWAO+ 7MkT7k+OrlG0oz3JaAUEG5prua3qDM2GElrsesAJ6aafXLA65NcNVjBFNJLSvL7j 3/4knAHLeOitajA5XN1Eej8B6WIJmt/dm8ExXuveBEQRf51+3zToE5sREWb2XH20 q2qZWMXigKoklFZwwmoXEnk/rN/FTCo8vNOIKicx3egcRGNSGAEd+VwKDuq0THQM +Bxs+RQjlD9+XtkNJM2Tf45U51kyk0F3V8JHcQpTKEEz/iRz1ACWfqvpeVRsle6p yaOPVyI8Q6V2OO0IcvGOmK5z3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBjE/sFm wupiB1rqNS8I+AjRw1+BMB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH1kuXxjgicqc84/TlYlzkEXKgYzKDr8Kzb3o1WPt9Nqmo1SnaDkWCXqcPm/W ROE1M2QkUaRfdvFY6FNJZAktB3kuxnZz0VzPDILe/1mmtHAyZPDBrxAroGLHyZVK aT8Q563rOyudFwMGkdwHkBpUd+AZKBHgx1HYTKMEnqkLz4wiipOpn5p743GLTZX1 m+oAVC1Oh4tScMUi73Z10vYKp51AedgUoMMcy9o/FbzBo0oataBiBpM/idQn9xrb EoxXU+kP8jaXd5tYHUFTlGqYXVX1HxmuCxyWI5rFX7uH6pZiWXMgjVPKyUn9MVZ1 8rJ4zCRmh95yuPDoJjWa/DU5/w== -----END CERTIFICATE-----Generated at Wed May 13 04:29:12 2026 by rpki-client