$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: v+1ZyQwoetg3hSqHqlpCD/fkguFGN1HmiMu54FX88jo= Subject key identifier: 0C:67:6A:6C:B0:EF:21:CB:D6:37:85:03:48:8E:28:12:60:7B:A6:EA Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 011D Signing time: Tue 12 May 2026 19:19:39 +0000 Manifest this update: Tue 12 May 2026 19:19:38 +0000 Manifest next update: Tue 19 May 2026 19:19:38 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: yptQwnU5pwuTuAIb1lmWWrqxMJR59nRD2tt2msmyanE=) 2: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: dPEhTQP3qeAR4yGjatb5GQPGEIi2y0rBsSN9VqRiVX4=) 3: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: eX1W6sEO6qSGiwMhq2AqfocdX9JRjmM9eN6Q3NFHq5U=) 4: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: CmfJtzvbUDIWlxCuJc7fM+dnWaJ+FXCzjzg3v0W8Rc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: May 12 19:19:38 2026 GMT Not After : May 19 19:19:38 2026 GMT Subject: CN=6a037d4b-390d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:11:59:9f:38:8b:8f:5e:99:fa:d1:80:00:85: 48:d4:73:c5:31:b9:07:dd:ef:9b:88:44:dd:0f:2c: 33:64:70:fb:0f:50:d5:bf:fa:dd:f4:ba:b5:62:65: 04:c6:cc:a3:0c:6d:f9:e5:1f:65:ff:b5:bc:70:34: 24:be:f5:e5:a1:3c:2e:96:dd:5c:1a:e7:f2:8e:d5: b5:f7:81:08:cc:73:11:a9:94:79:9f:07:d4:06:14: 44:31:a2:bb:9e:d2:92:95:89:0c:8b:90:e8:44:6b: da:6d:db:5e:c6:32:51:b6:bb:d2:7a:4c:63:1d:b8: c5:c1:05:77:d8:c4:c3:f0:23:c7:77:ca:8a:2d:40: 01:1c:2d:9e:d3:12:87:70:68:fd:8b:52:df:3a:bc: dd:82:c3:64:38:08:7a:53:d7:37:44:3b:e3:9c:ac: 66:d8:85:18:14:4d:b4:90:af:36:3e:4a:6b:6b:fa: 82:d1:0d:d6:12:6b:7c:b2:e8:6d:38:22:04:85:7e: 8d:26:c5:8d:f1:fa:f7:41:ed:fe:d5:e4:8b:16:b1: 7a:db:69:73:bf:1a:54:5e:a6:c0:87:1d:a9:79:f3: 83:f0:b4:93:1b:9a:ac:b1:1e:74:fe:52:d5:e6:97: e8:99:24:37:c0:aa:95:7e:f8:f0:02:81:03:35:d7: cb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:67:6A:6C:B0:EF:21:CB:D6:37:85:03:48:8E:28:12:60:7B:A6:EA X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:37:12:a8:4a:70:4c:4d:5f:46:e0:80:17:db:04:dd:af:ef: 6d:e5:9a:6b:21:90:61:b5:6a:0c:3b:10:18:12:fd:bf:4c:af: 22:e6:d9:00:8a:f3:c1:5f:2b:91:44:56:97:95:c3:13:d5:83: d3:de:e9:aa:60:f2:7b:9b:60:fb:d0:17:d9:30:a5:d3:b5:4c: d1:e4:f2:83:0c:bf:5e:39:2e:d9:1d:20:35:bd:98:45:76:74: 1c:9d:89:87:7a:18:d0:a8:70:9e:4e:6e:a2:8e:fb:36:0c:55: 3a:46:c5:ef:e6:96:6a:84:ab:3f:a5:cf:30:f9:ac:59:93:5e: 61:05:2c:fa:12:6c:b8:dd:4c:23:e4:46:af:b9:6a:74:bc:6b: 3e:b4:94:4c:35:32:6e:67:b3:b2:04:d7:fd:d9:b7:f5:c9:7b: ef:9f:75:18:31:cd:88:9b:22:2f:40:77:7e:9f:69:eb:89:e4: 06:75:12:35:44:c2:5f:6e:e8:69:16:40:95:4e:81:67:72:a2: 5b:c0:2e:d6:1c:d3:2d:9e:11:56:42:27:f9:56:55:d3:8d:ce: c3:b3:07:a8:7d:9c:b9:17:19:c4:9d:65:f8:2b:34:ac:5d:5c: 9d:ac:5d:24:8e:b1:cf:3b:70:e2:dd:c0:ab:0b:f7:8c:85:c0: 16:3a:b3:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwNTEyMTkxOTM4WhcNMjYwNTE5MTkxOTM4WjAYMRYwFAYD VQQDEw02YTAzN2Q0Yi0zOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBFZnziLj16Z+tGAAIVI1HPFMbkH3e+biETdDywzZHD7D1DVv/rd9Lq1YmUE xsyjDG355R9l/7W8cDQkvvXloTwult1cGufyjtW194EIzHMRqZR5nwfUBhREMaK7 ntKSlYkMi5DoRGvabdtexjJRtrvSekxjHbjFwQV32MTD8CPHd8qKLUABHC2e0xKH cGj9i1LfOrzdgsNkOAh6U9c3RDvjnKxm2IUYFE20kK82Pkpra/qC0Q3WEmt8suht OCIEhX6NJsWN8fr3Qe3+1eSLFrF622lzvxpUXqbAhx2pefOD8LSTG5qssR50/lLV 5pfomSQ3wKqVfvjwAoEDNdfLTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAxnamyw 7yHL1jeFA0iOKBJge6bqMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVzcSqEpwTE1fRuCAF9sE3a/vbeWaayGQYbVqDDsQGBL9v0yvIubZAIrzwV8r kURWl5XDE9WD097pqmDye5tg+9AX2TCl07VM0eTygwy/Xjku2R0gNb2YRXZ0HJ2J h3oY0Khwnk5uoo77NgxVOkbF7+aWaoSrP6XPMPmsWZNeYQUs+hJsuN1MI+RGr7lq dLxrPrSUTDUybmezsgTX/dm39cl77591GDHNiJsiL0B3fp9p64nkBnUSNUTCX27o aRZAlU6BZ3KiW8Au1hzTLZ4RVkIn+VZV043Ow7MHqH2cuRcZxJ1l+Cs0rF1cnaxd JI6xzztw4t3Aqwv3jIXAFjqzog== -----END CERTIFICATE-----Generated at Wed May 13 06:54:14 2026 by rpki-client