$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: xIh9d2p5RNkY4gUcbwzcYLOQtNGi+qiHqslOvjfoAF4= Subject key identifier: 68:5C:84:EA:A3:70:81:91:58:A3:C4:44:E3:5B:E4:A2:DA:AE:A0:75 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 086C Signing time: Tue 12 May 2026 20:55:59 +0000 Manifest this update: Tue 12 May 2026 20:55:58 +0000 Manifest next update: Tue 19 May 2026 20:55:58 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: MfvzwC5PPt4iCzlfLrKzW9hmabiaZPpTEPIdi5Dbjak=) 2: D5775FF4E54F11F0875E48B9366F56BC.roa (hash: dBaY0JbbVzl8W6CAtYQ8b8Su4AnGzP3sLeHSsKnDsdA=) 3: 0ED6FD58E4AC11F09CFF02084D6F56BC.roa (hash: c00S8PMH6seb894IcBTA4+jGD8At/7O3wWr5RItqF8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: May 12 20:55:58 2026 GMT Not After : May 19 20:55:58 2026 GMT Subject: CN=6a0393df-9b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d2:cc:37:18:8c:68:08:92:cb:e1:c9:8b:8b: a7:0a:3a:57:bc:1a:82:d8:cc:b4:b2:a6:34:0e:14: 96:d2:d7:e7:02:35:7b:79:b9:c7:7f:64:88:ac:c0: 7e:b2:af:35:ba:ac:e8:41:c3:a7:98:ee:ea:da:89: 66:38:8e:fe:01:76:9e:4f:70:cc:3b:a1:63:9b:50: b4:37:bb:30:e5:ee:36:c5:ce:ee:8c:42:a8:b5:ed: 0b:79:c1:67:76:a1:70:86:a8:dc:72:10:fb:28:a6: cb:45:4a:3b:5d:3a:61:00:39:82:f9:54:aa:8e:41: 4c:d9:ad:c6:ce:16:d3:35:c2:33:ca:99:0a:38:bb: 08:33:e3:88:c5:42:88:a9:ac:c5:1c:53:b3:48:3f: 31:d5:25:aa:5c:e3:de:0c:c4:28:fb:84:0c:8c:56: e1:58:0c:33:11:43:a4:8e:87:d5:87:3b:e3:46:29: 27:08:69:45:a4:c9:6f:b3:2a:49:3a:cd:0c:7c:a2: b0:d5:7c:71:81:98:3a:f8:c5:f8:64:37:19:2f:5c: 73:7b:0c:fe:c6:57:56:aa:77:d5:cb:79:7a:fb:dd: 39:50:8f:44:48:ea:b2:22:e2:15:91:cf:30:6a:2d: da:30:0e:f1:36:11:de:65:54:04:0e:67:6b:da:5e: da:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5C:84:EA:A3:70:81:91:58:A3:C4:44:E3:5B:E4:A2:DA:AE:A0:75 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:20:47:a7:5c:cd:ca:cd:07:66:73:c3:3f:d3:e2:b5:28:95: 03:41:e7:74:9c:66:37:75:7e:b6:67:ef:85:f9:34:ea:ee:ab: 20:7d:e0:fe:4e:9d:61:77:12:90:96:fe:87:69:95:39:7f:7e: a5:28:41:81:7c:65:88:7a:54:65:e5:e1:8e:ef:0c:08:34:b2: 65:ff:57:7e:5e:62:b8:d5:7a:b8:c4:89:05:38:ce:03:09:25: 9d:45:0f:8f:e7:1a:ff:23:5a:1d:f0:0a:19:cf:f7:2e:80:62: 49:45:9d:ba:48:94:84:64:91:16:da:81:7f:0d:e1:83:4e:dd: 18:f8:f7:c3:c9:52:d4:c9:0b:38:ef:f7:62:d9:ca:07:0a:0e: 84:66:7f:7c:ff:14:74:00:68:8e:02:44:ce:41:25:b2:1b:ac: 5a:84:ce:4f:bd:a4:cb:f7:08:12:ea:57:bb:6f:d2:73:9d:dc: d6:61:6e:67:c9:e9:48:7f:cb:24:6f:9f:54:42:f6:b3:88:c1: 69:de:5d:24:a7:88:d0:af:de:4f:18:53:96:57:d7:34:30:b7: 49:90:90:7f:75:73:ab:e9:5d:a1:3e:ed:bc:76:20:0d:46:cc: 38:9a:a5:13:31:b5:c3:e7:53:fe:18:cb:c7:e6:72:67:4b:e3: 13:a6:6c:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjYwNTEyMjA1NTU4WhcNMjYwNTE5MjA1NTU4WjAYMRYwFAYD VQQDEw02YTAzOTNkZi05YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49LMNxiMaAiSy+HJi4unCjpXvBqC2My0sqY0DhSW0tfnAjV7ebnHf2SIrMB+ sq81uqzoQcOnmO7q2olmOI7+AXaeT3DMO6Fjm1C0N7sw5e42xc7ujEKote0LecFn dqFwhqjcchD7KKbLRUo7XTphADmC+VSqjkFM2a3GzhbTNcIzypkKOLsIM+OIxUKI qazFHFOzSD8x1SWqXOPeDMQo+4QMjFbhWAwzEUOkjofVhzvjRiknCGlFpMlvsypJ Os0MfKKw1XxxgZg6+MX4ZDcZL1xzewz+xldWqnfVy3l6+905UI9ESOqyIuIVkc8w ai3aMA7xNhHeZVQEDmdr2l7aowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGhchOqj cIGRWKPERONb5KLarqB1MB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQyBHp1zNys0HZnPDP9PitSiVA0HndJxmN3V+tmfvhfk06u6rIH3g/k6dYXcS kJb+h2mVOX9+pShBgXxliHpUZeXhju8MCDSyZf9Xfl5iuNV6uMSJBTjOAwklnUUP j+ca/yNaHfAKGc/3LoBiSUWdukiUhGSRFtqBfw3hg07dGPj3w8lS1MkLOO/3YtnK BwoOhGZ/fP8UdABojgJEzkElshusWoTOT72ky/cIEupXu2/Sc53c1mFuZ8npSH/L JG+fVEL2s4jBad5dJKeI0K/eTxhTllfXNDC3SZCQf3Vzq+ldoT7tvHYgDUbMOJql EzG1w+dT/hjLx+ZyZ0vjE6ZsLg== -----END CERTIFICATE-----Generated at Wed May 13 02:56:26 2026 by rpki-client