$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: s2sKRU8F5dYvD+MuEAZJkdVApkQH0CrdPvjnNCpmKw8= Subject key identifier: CF:AE:5D:6E:CC:08:CB:84:B7:BE:D0:3F:71:C8:E7:5B:1C:6E:7E:15 Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 085F Signing time: Tue 12 May 2026 20:35:53 +0000 Manifest this update: Tue 12 May 2026 20:35:53 +0000 Manifest next update: Tue 19 May 2026 20:35:53 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: a8ltuF3C0w1fBYUKeYT/qqgkJNzB1nF+DAn+GKRPyZE=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: uPVVKDs8FXCGXCVQqQJZYdG3JPqyWcieyoiy4+qFczg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: May 12 20:35:53 2026 GMT Not After : May 19 20:35:53 2026 GMT Subject: CN=6a038f29-f719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:81:f3:6e:64:ef:b9:26:f8:20:02:2f:48:43: 96:f2:2b:a9:19:68:7c:fe:31:70:51:0c:82:b9:a4: c3:9b:ce:2c:1b:28:15:b1:0e:7a:bb:cc:f3:63:0f: 96:c3:bd:10:4f:e1:87:ef:15:4c:b9:4b:61:80:ed: c7:1d:35:ab:bb:2f:ce:d2:cc:97:16:a3:e4:62:7c: 7d:bd:ce:b2:e4:f0:95:c3:62:de:7d:31:56:63:f4: 3e:ff:1d:dc:f0:1c:bf:81:1b:d6:64:e5:32:b3:a9: 59:9b:b7:0b:38:ad:19:04:dd:93:4c:13:09:ec:7d: 4e:a6:1d:8b:2e:83:a8:c8:c8:29:8c:cf:b3:71:ae: 20:aa:f1:52:12:44:70:bc:eb:b8:f9:d2:e8:cb:90: d0:ce:26:a5:86:79:d0:10:b3:53:c8:8f:96:3b:7c: 79:49:fe:e6:40:b5:68:c0:2e:77:90:01:ba:fc:59: db:45:58:61:51:41:18:6b:40:ca:99:ff:b2:69:ba: f5:a6:65:0d:d0:18:b8:29:6a:93:2a:eb:df:0c:97: 06:52:0b:3d:17:a0:01:c9:23:67:2d:25:13:e5:9b: f8:82:7e:5e:b9:4b:82:c0:c7:c7:90:65:d5:35:03: 3b:df:2c:e9:76:bb:21:34:2a:cf:b2:40:81:ab:21: b3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AE:5D:6E:CC:08:CB:84:B7:BE:D0:3F:71:C8:E7:5B:1C:6E:7E:15 X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:7d:9f:7e:03:64:f8:e1:09:b5:c7:42:06:22:4a:ed:6a:72: bb:7e:f5:51:15:b9:3d:7c:0f:23:40:ea:eb:be:9b:f6:ca:66: 4f:7a:5b:1a:a5:56:0d:e5:9a:6b:02:78:96:d5:a1:d9:39:da: 8f:bc:8e:e8:5a:25:3f:a7:74:15:5a:15:4d:4d:c8:78:8c:e2: b1:45:66:f1:36:92:b7:23:b7:2e:f6:9b:f7:ce:a1:fb:be:90: f1:ce:18:7f:f6:1e:cc:ca:00:b0:3a:87:ce:1a:15:d7:f8:34: b2:2c:c6:4c:49:5b:e7:89:6e:d2:4d:fb:74:ce:49:b3:59:55: f1:f5:d6:a9:6d:1b:36:52:11:33:91:70:2d:87:56:68:95:8a: 88:ff:fd:d1:a9:05:58:a2:c1:d3:cf:31:e8:1c:d7:99:9a:76: ec:5c:b1:6f:13:3d:f9:d3:a2:2a:a2:f4:b6:b2:37:34:fd:58: 1b:fa:dc:1a:4b:fb:04:02:b9:88:d7:b8:54:ba:3a:d3:4a:57: a9:b2:b9:41:63:9d:a6:ba:89:59:5b:b2:7e:49:ff:dd:9b:84: 98:cd:57:8e:eb:b3:13:a6:fb:0e:f9:40:82:13:68:be:53:db: cc:0d:bf:9d:1c:d3:f6:c5:6f:5b:21:6d:5f:e9:4e:99:2a:c9: f6:f5:88:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjYwNTEyMjAzNTUzWhcNMjYwNTE5MjAzNTUzWjAYMRYwFAYD VQQDEw02YTAzOGYyOS1mNzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIHzbmTvuSb4IAIvSEOW8iupGWh8/jFwUQyCuaTDm84sGygVsQ56u8zzYw+W w70QT+GH7xVMuUthgO3HHTWruy/O0syXFqPkYnx9vc6y5PCVw2LefTFWY/Q+/x3c 8By/gRvWZOUys6lZm7cLOK0ZBN2TTBMJ7H1Oph2LLoOoyMgpjM+zca4gqvFSEkRw vOu4+dLoy5DQzialhnnQELNTyI+WO3x5Sf7mQLVowC53kAG6/FnbRVhhUUEYa0DK mf+yabr1pmUN0Bi4KWqTKuvfDJcGUgs9F6ABySNnLSUT5Zv4gn5euUuCwMfHkGXV NQM73yzpdrshNCrPskCBqyGzVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM+uXW7M CMuEt77QP3HI51scbn4VMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgX2ffgNk+OEJtcdCBiJK7Wpyu371URW5PXwPI0Dq676b9spmT3pbGqVWDeWa awJ4ltWh2Tnaj7yO6FolP6d0FVoVTU3IeIzisUVm8TaStyO3Lvab986h+76Q8c4Y f/YezMoAsDqHzhoV1/g0sizGTElb54lu0k37dM5Js1lV8fXWqW0bNlIRM5FwLYdW aJWKiP/90akFWKLB088x6BzXmZp27FyxbxM9+dOiKqL0trI3NP1YG/rcGkv7BAK5 iNe4VLo600pXqbK5QWOdprqJWVuyfkn/3ZuEmM1XjuuzE6b7DvlAghNovlPbzA2/ nRzT9sVvWyFtX+lOmSrJ9vWIJQ== -----END CERTIFICATE-----Generated at Wed May 13 00:35:58 2026 by rpki-client