$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: 5Z1USXRgzMR/67iHXZuJtqp1ygxM9MA8vd7GMR/K0RA= Subject key identifier: 27:FD:17:BC:10:27:9A:F6:16:C6:C4:1C:DB:E0:E4:35:45:1D:34:0E Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 045D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 044B Signing time: Wed 13 May 2026 00:19:53 +0000 Manifest this update: Wed 13 May 2026 00:19:53 +0000 Manifest next update: Wed 20 May 2026 00:19:53 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: pGm73ClGVHRj3Y8YcRWsgLvEBMgUJ2NfLIcEcKNG4OM=) 2: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: X5PDT1MbgloBsVHEEErT26cO3WdhXztNkcjjEpdBJNM=) 3: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: wPvXbMRDdeZ16YQAsG5yxXC1oVke0Is094fp9Wnssro=) 4: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: 8IoFb/TuJGa8f+hLPDSGTarCT7mkVKZq9W7cRCzmXZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1117 (0x45d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: May 13 00:19:53 2026 GMT Not After : May 20 00:19:53 2026 GMT Subject: CN=6a03c3a9-a8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b8:03:a6:e0:7c:57:3d:73:31:29:d2:3d:12: 31:7f:63:d2:a0:fd:d8:f9:06:3e:82:02:0c:35:89: f6:13:a7:f4:e0:2d:2a:d5:6c:ea:63:8c:fe:5a:dd: 90:fb:45:c7:c1:00:f8:15:f3:f9:fb:05:f5:7c:58: ad:fe:a2:ef:31:a5:c7:37:6e:b1:aa:70:a1:ee:e0: fa:87:cc:85:3a:49:5a:87:ff:a1:b5:a7:b7:f8:65: 96:ec:dd:f2:7d:ac:ea:e2:a9:b7:8b:71:81:86:d9: 46:0c:41:83:e6:2e:1b:fc:ad:b0:62:ab:8f:bb:d3: 7d:01:d6:3e:ff:c1:22:4c:33:29:9a:9a:1b:77:32: 78:1e:87:a7:56:6b:0f:46:02:b3:f3:14:d5:0f:d6: fe:2a:54:c3:54:0c:90:a5:aa:c2:46:d7:e2:c8:9a: 7e:7e:6f:a6:72:ec:4c:b9:6f:34:c1:54:e7:e8:65: 44:78:b6:df:14:35:64:3f:51:b0:ad:4a:0f:9c:8e: 47:0d:40:2c:5b:c2:1f:7a:ea:6e:01:71:60:f4:41: 2e:2c:05:01:2c:0c:09:25:03:51:ae:9b:e8:0a:09: ff:dc:fa:11:8a:61:73:1f:f3:6e:f0:05:fe:a7:1c: 5a:21:29:11:37:4c:3b:4e:39:de:d8:30:42:0f:2d: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FD:17:BC:10:27:9A:F6:16:C6:C4:1C:DB:E0:E4:35:45:1D:34:0E X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:37:16:57:e4:1c:b8:07:18:c5:67:7f:a7:57:98:c8:a4:a8: d0:68:05:ca:b4:27:e5:1a:f0:06:98:46:f0:cc:40:f0:51:08: a2:54:98:3d:03:0b:5e:ed:3b:1f:88:45:aa:e8:c9:c6:0f:33: cb:5a:72:ba:24:70:7f:24:f7:f8:61:9a:c5:c3:46:16:ff:fa: 22:09:cf:7f:d9:31:7a:b9:01:7a:2b:92:bc:81:fb:56:97:7f: 9e:4f:c4:04:93:68:eb:f4:8b:60:e5:20:3c:9a:7e:0b:53:43: be:a2:e4:b0:c6:bc:ed:3e:64:7f:dd:15:f2:82:a6:a5:e5:ac: c0:01:bd:82:97:df:da:3e:77:a2:1f:d6:e5:fd:cd:3b:50:76: 7e:ab:40:d0:ea:bf:b9:4a:e8:a5:13:d3:29:12:c6:fb:09:e0: 3f:b3:8e:e1:68:31:bd:01:2d:f5:ad:c7:d6:f6:15:35:fb:bf: df:c5:57:72:94:ea:41:a3:b8:16:92:fa:7c:4b:57:30:2a:2a: 37:fd:1e:c4:91:7b:c5:d6:a2:f7:24:21:74:dd:4f:95:01:4e: dd:c0:36:31:e7:90:b2:4c:65:34:b7:57:90:b2:3a:6f:4f:2d: d0:cb:68:63:ce:48:62:85:9f:e1:40:3c:e5:a9:8a:b2:41:3e: 6b:94:03:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjYwNTEzMDAxOTUzWhcNMjYwNTIwMDAxOTUzWjAYMRYwFAYD VQQDEw02YTAzYzNhOS1hOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrgDpuB8Vz1zMSnSPRIxf2PSoP3Y+QY+ggIMNYn2E6f04C0q1WzqY4z+Wt2Q +0XHwQD4FfP5+wX1fFit/qLvMaXHN26xqnCh7uD6h8yFOklah/+htae3+GWW7N3y fazq4qm3i3GBhtlGDEGD5i4b/K2wYquPu9N9AdY+/8EiTDMpmpobdzJ4HoenVmsP RgKz8xTVD9b+KlTDVAyQparCRtfiyJp+fm+mcuxMuW80wVTn6GVEeLbfFDVkP1Gw rUoPnI5HDUAsW8IfeupuAXFg9EEuLAUBLAwJJQNRrpvoCgn/3PoRimFzH/Nu8AX+ pxxaISkRN0w7Tjne2DBCDy3+nQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCf9F7wQ J5r2FsbEHNvg5DVFHTQOMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbjcWV+QcuAcYxWd/p1eYyKSo0GgFyrQn5RrwBphG8MxA8FEIolSYPQMLXu07 H4hFqujJxg8zy1pyuiRwfyT3+GGaxcNGFv/6IgnPf9kxerkBeiuSvIH7Vpd/nk/E BJNo6/SLYOUgPJp+C1NDvqLksMa87T5kf90V8oKmpeWswAG9gpff2j53oh/W5f3N O1B2fqtA0Oq/uUropRPTKRLG+wngP7OO4WgxvQEt9a3H1vYVNfu/38VXcpTqQaO4 FpL6fEtXMCoqN/0exJF7xdai9yQhdN1PlQFO3cA2MeeQskxlNLdXkLI6b08t0Mto Y85IYoWf4UA85amKskE+a5QDxw== -----END CERTIFICATE-----Generated at Wed May 13 04:06:21 2026 by rpki-client