$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft File: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft (raw, json) Hash identifier: QU0rfvRTI1vx9oTstSJ9T3JZoAa/y3/svt1xOMVNtvw= Subject key identifier: 59:44:33:DE:40:17:E0:4E:81:31:FB:F2:25:B8:9A:38:D4:E1:0B:86 Authority key identifier: F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 Certificate issuer: /CN=A9146A02/serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Certificate serial: 0D03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft Manifest number: 0CFA Signing time: Tue 12 May 2026 18:13:56 +0000 Manifest this update: Tue 12 May 2026 18:13:55 +0000 Manifest next update: Tue 19 May 2026 18:13:55 +0000 Files and hashes: 1: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl (hash: zyIHNBkzxxuHNFVsp7LxbvLVfgZLODYDEVqetwFEXSU=) 2: 3F1B0EF2045F11EA87A3BD3BC4F9AE02.roa (hash: UfHKPMUY6EmaHpXY4OrXsN6dBJ4bjLIXmajgIcZM4a8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A02, serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Validity Not Before: May 12 18:13:55 2026 GMT Not After : May 19 18:13:55 2026 GMT Subject: CN=6a036de4-ffca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:db:68:ed:26:a6:85:1d:c7:75:de:59:b0:a1: db:55:8d:27:12:db:3f:df:70:8c:b4:d4:b8:b2:b3: 09:cd:13:4b:5b:c2:bf:21:01:4c:a9:17:89:6c:70: 9a:2b:b5:db:d1:f9:e5:b7:18:f1:bc:aa:a6:dc:94: fd:db:e9:8a:0b:5b:71:d4:52:52:de:94:3c:66:3a: 57:be:60:d8:5f:8c:f4:ca:18:af:7d:6b:4a:99:cd: 32:4b:71:a9:e6:96:e9:13:94:6c:08:8d:45:23:05: 72:91:68:db:f4:61:bc:4a:4d:86:2b:10:78:af:c5: a7:d5:c3:06:11:21:56:04:10:bb:5c:2a:61:ad:cc: 88:d8:c5:79:4b:df:73:4a:d6:70:0e:f1:73:1d:72: ad:5a:1f:3f:24:3b:2e:1c:dc:b2:91:7e:1f:b2:10: 77:72:c8:5d:af:00:21:1c:67:ac:5b:fe:93:db:19: de:d7:67:ab:da:f4:1b:93:cf:64:2f:7b:a5:59:02: ac:65:b0:4e:a8:6a:e8:dc:90:b7:f3:fa:9c:54:d5: 62:01:c5:70:43:26:c9:79:47:7b:19:45:05:b9:b1: ec:21:ce:94:c0:41:4e:7a:49:dc:a1:2a:94:8f:76: e5:b6:aa:53:b8:11:05:07:be:77:ab:71:1b:27:c4: f3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:44:33:DE:40:17:E0:4E:81:31:FB:F2:25:B8:9A:38:D4:E1:0B:86 X509v3 Authority Key Identifier: keyid:F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:96:e4:8f:e3:41:75:81:9b:5a:e6:52:1e:82:65:ef:ea:fe: 18:ae:8b:97:7a:9e:aa:44:11:0a:35:c8:5b:5c:f9:b9:68:0b: 1f:c5:92:c3:92:03:cc:26:bd:db:fe:6e:b2:5c:64:98:e1:88: 4a:1c:22:b0:b1:34:78:b1:a8:1c:51:8d:27:eb:88:ae:63:48: 10:71:a1:c7:bd:2c:02:86:dc:a4:3a:2b:51:25:a7:ee:07:76: 15:42:49:c9:a8:ce:c1:d4:85:b7:cf:1a:d2:53:9f:50:75:ef: 08:cb:0c:8b:c2:0c:cd:79:f7:39:c4:1a:bc:1b:0c:db:04:ba: c2:8d:a5:e3:7a:2a:88:3f:0a:89:6b:d0:f2:c2:90:34:c2:1b: 49:71:84:34:d8:ea:c2:90:cc:8e:e4:81:b2:ff:13:e4:e7:7c: b6:85:9d:a4:47:6a:92:a0:7c:01:d7:f6:39:50:86:58:7d:0f: 41:38:7f:68:42:2d:4d:7f:b5:18:5a:a1:fc:60:b2:45:99:9e: f1:bd:f5:18:9c:2e:ac:66:d6:f3:d6:c1:01:68:a4:96:09:ad: 87:6a:db:7a:2d:ed:57:e3:d4:31:ec:45:72:12:27:9c:47:72: 7b:d3:6e:2d:93:ce:64:85:03:76:19:24:19:27:60:44:32:62: e3:4f:67:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBMDIxMTAvBgNVBAUTKEYwNzI4RUVEMkQ0RjhGRkQ4Q0ZFNUY4N0Y2MUJFQzA0 MzQ1MTQxMjkwHhcNMjYwNTEyMTgxMzU1WhcNMjYwNTE5MTgxMzU1WjAYMRYwFAYD VQQDEw02YTAzNmRlNC1mZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9to7SamhR3Hdd5ZsKHbVY0nEts/33CMtNS4srMJzRNLW8K/IQFMqReJbHCa K7Xb0fnltxjxvKqm3JT92+mKC1tx1FJS3pQ8ZjpXvmDYX4z0yhivfWtKmc0yS3Gp 5pbpE5RsCI1FIwVykWjb9GG8Sk2GKxB4r8Wn1cMGESFWBBC7XCphrcyI2MV5S99z StZwDvFzHXKtWh8/JDsuHNyykX4fshB3cshdrwAhHGesW/6T2xne12er2vQbk89k L3ulWQKsZbBOqGro3JC38/qcVNViAcVwQybJeUd7GUUFubHsIc6UwEFOekncoSqU j3bltqpTuBEFB753q3EbJ8Tz+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFlEM95A F+BOgTH78iW4mjjU4QuGMB8GA1UdIwQYMBaAFPByju0tT4/9jP5fh/Yb7AQ0UUEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkEwMi84RENFRTlGQzA0 NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpfMk1fbC1IOWh2c0JEUlJR U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIS083UzFQal8yTV9sLUg5aHZzQkRSUlFTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkEwMi84RENFRTlGQzA0NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpf Mk1fbC1IOWh2c0JEUlJRU2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvpbkj+NBdYGbWuZSHoJl7+r+GK6Ll3qeqkQRCjXIW1z5uWgLH8WSw5IDzCa9 2/5uslxkmOGIShwisLE0eLGoHFGNJ+uIrmNIEHGhx70sAobcpDorUSWn7gd2FUJJ yajOwdSFt88a0lOfUHXvCMsMi8IMzXn3OcQavBsM2wS6wo2l43oqiD8KiWvQ8sKQ NMIbSXGENNjqwpDMjuSBsv8T5Od8toWdpEdqkqB8Adf2OVCGWH0PQTh/aEItTX+1 GFqh/GCyRZme8b31GJwurGbW89bBAWiklgmth2rbei3tV+PUMexFchInnEdye9Nu LZPOZIUDdhkkGSdgRDJi409nAQ== -----END CERTIFICATE-----Generated at Wed May 13 02:29:43 2026 by rpki-client