$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: 0xC6g4ATCwqlQBDhXQtwdGBEc6ewIu8Ua6YlknkxVHY= Subject key identifier: 79:60:AD:48:2E:9F:9A:4D:E6:AF:7E:7F:AE:6C:84:CF:8C:73:92:5A Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0466 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 044E Signing time: Wed 13 May 2026 00:25:30 +0000 Manifest this update: Wed 13 May 2026 00:25:29 +0000 Manifest next update: Wed 20 May 2026 00:25:29 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: hnJqygtp4MWwCNd/Xhgpct3qpv9wFrtiE3OW4kI0YTs=) 2: F570D764773F11F09FC02036C4F9AE02.roa (hash: gvPu45DyIqZBu1jQxEhjgfSh962TYPXbAHfGb3N8kR4=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: cl/4/5b1299P9Rw9mt6jtdWymjlwHiUICZ1E9aWqHuM=) 4: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: NtIL0Ds6f0ZS7MHa9CMEFQcx6i11Pda/8hAwPCcExQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: May 13 00:25:29 2026 GMT Not After : May 20 00:25:29 2026 GMT Subject: CN=6a03c4fa-6cbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3e:9a:a1:68:b0:c6:39:42:48:35:47:79:89: 63:19:90:0d:49:ab:50:c8:14:11:de:7a:c4:ae:83: 80:93:d5:33:c3:74:b9:6c:4a:53:3a:47:cc:7d:2a: b2:9b:ad:51:77:c0:bc:76:ee:03:b7:bf:6a:f3:bf: 8c:73:2e:07:12:52:ee:8e:2f:2a:a5:08:e8:c2:0e: 31:e6:a0:c7:16:62:d2:ce:d4:94:c4:e0:bd:5e:2a: fe:7c:b4:81:58:8b:c1:5d:db:c6:0e:e6:8d:f5:e4: 28:0c:52:b4:aa:e2:2a:d0:94:16:f9:fa:67:ac:5e: 32:3e:a3:4d:95:f2:81:10:04:9f:61:ef:36:e0:2d: 08:0b:57:f8:55:9a:1a:57:9c:8e:1c:ae:2c:4a:a7: 8c:59:be:ba:ad:8e:71:31:1b:bb:bd:96:f3:78:ef: 5b:55:be:f8:cf:15:89:93:0a:fa:44:94:0f:ca:80: 1a:68:a7:6d:2e:c1:4b:58:6d:96:ac:0b:cb:a3:23: 99:f2:b9:8a:0c:fc:2c:53:5b:d0:6b:d6:bc:03:02: f6:5f:ac:47:e0:f0:d4:51:b7:04:06:d9:c7:c4:70: 4e:86:4f:5f:7b:ec:60:74:83:ea:01:2c:47:4a:3d: 00:3b:93:06:3e:3b:2f:e0:81:d5:84:6f:fc:b6:11: 06:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:60:AD:48:2E:9F:9A:4D:E6:AF:7E:7F:AE:6C:84:CF:8C:73:92:5A X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:2c:aa:4c:f9:da:ed:b3:49:2f:e6:11:80:99:f4:ed:9c:8e: ee:25:0f:7c:82:58:21:00:e7:a0:cc:e5:74:77:32:29:62:96: da:b4:7e:6c:f0:7d:cf:2d:35:05:e2:66:ec:71:14:ca:5d:df: 6d:8c:c0:3a:94:b4:70:d8:94:91:87:dd:3c:73:82:52:35:61: aa:9f:0f:9c:52:7d:0b:90:ab:00:37:a4:67:8a:da:bd:b4:a4: dc:85:88:db:09:c3:5d:29:a4:00:49:bd:db:8b:24:f6:7a:15: 45:0e:17:f3:7a:3a:a6:77:2f:b6:00:4e:04:b6:5b:84:14:16: 60:b3:32:3c:19:71:25:45:fd:93:55:ca:b5:46:52:d7:b3:56: 13:7d:ea:b4:64:fa:b1:0d:bd:0b:62:3f:53:30:42:4c:b1:c7: 4c:d2:8d:7f:71:6a:8a:d7:a7:b1:7e:5e:94:6b:57:8a:46:0f: bf:9e:53:de:00:51:d8:97:ef:b0:f5:19:f6:47:d2:0d:a4:0c: bb:4e:05:46:d3:4b:8e:40:28:98:9c:f4:24:5b:f9:f0:c4:4d: 9d:86:ff:b8:bc:40:9a:7a:5a:fd:bd:dc:6f:b9:59:5f:b7:71: 06:09:4c:bb:ce:f3:61:ec:a2:08:b3:6e:50:7c:47:04:07:a4: f3:5e:0f:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjYwNTEzMDAyNTI5WhcNMjYwNTIwMDAyNTI5WjAYMRYwFAYD VQQDEw02YTAzYzRmYS02Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArD6aoWiwxjlCSDVHeYljGZANSatQyBQR3nrEroOAk9Uzw3S5bEpTOkfMfSqy m61Rd8C8du4Dt79q87+Mcy4HElLuji8qpQjowg4x5qDHFmLSztSUxOC9Xir+fLSB WIvBXdvGDuaN9eQoDFK0quIq0JQW+fpnrF4yPqNNlfKBEASfYe824C0IC1f4VZoa V5yOHK4sSqeMWb66rY5xMRu7vZbzeO9bVb74zxWJkwr6RJQPyoAaaKdtLsFLWG2W rAvLoyOZ8rmKDPwsU1vQa9a8AwL2X6xH4PDUUbcEBtnHxHBOhk9fe+xgdIPqASxH Sj0AO5MGPjsv4IHVhG/8thEGpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHlgrUgu n5pN5q9+f65shM+Mc5JaMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiSyqTPna7bNJL+YRgJn07ZyO7iUPfIJYIQDnoMzldHcyKWKW2rR+bPB9zy01 BeJm7HEUyl3fbYzAOpS0cNiUkYfdPHOCUjVhqp8PnFJ9C5CrADekZ4ravbSk3IWI 2wnDXSmkAEm924sk9noVRQ4X83o6pncvtgBOBLZbhBQWYLMyPBlxJUX9k1XKtUZS 17NWE33qtGT6sQ29C2I/UzBCTLHHTNKNf3FqitensX5elGtXikYPv55T3gBR2Jfv sPUZ9kfSDaQMu04FRtNLjkAomJz0JFv58MRNnYb/uLxAmnpa/b3cb7lZX7dxBglM u87zYeyiCLNuUHxHBAek814Pwg== -----END CERTIFICATE-----Generated at Wed May 13 04:32:55 2026 by rpki-client