$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: N4ArN3AZ0vbEX4YqCISgQgHs9VDvCz7z8DgEffr2yhc= Subject key identifier: 3A:39:23:34:63:1E:A1:28:58:FC:06:4F:30:CC:1A:41:51:42:C9:F6 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CDC Signing time: Tue 12 May 2026 18:27:24 +0000 Manifest this update: Tue 12 May 2026 18:27:23 +0000 Manifest next update: Tue 19 May 2026 18:27:23 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: fcVhhyTNfBWUsjWiL+hW2sBjoA9BluMyiuqDD6X3ECc=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg=) 3: 2BA0624C078511ED87041524C4F9AE02.roa (hash: ZcdBlD0cGDsdpulCv2fc2yReHhNwViqaBn++RZ5qJME=) 4: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: svlh2+vPV9FFZwbhD1Wgc1v2nG2kP+knUxNtCuCVjZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3321 (0xcf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: May 12 18:27:23 2026 GMT Not After : May 19 18:27:23 2026 GMT Subject: CN=6a03710c-5f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:75:e4:75:e5:4e:9f:d5:fa:f0:05:2f:ff: 51:73:72:55:77:7b:d2:08:72:3e:b6:bc:7e:0b:55: c6:f0:2c:f3:33:71:c9:17:53:f5:0a:5d:7c:ea:f2: ac:52:eb:dd:7b:eb:b6:6c:7c:98:04:72:28:8e:84: 46:b8:af:20:a3:c3:e0:1b:e0:ec:ab:bc:44:ab:37: db:05:95:77:25:c5:46:d6:18:eb:e5:1f:9a:40:09: 4f:74:70:53:ef:8a:33:46:a9:5e:8f:37:86:4a:f2: 36:9c:6b:2b:ef:d6:c2:94:49:5c:ec:b6:79:2e:84: 14:d4:c8:9c:9e:94:ea:9d:2e:a1:5f:ad:19:67:e7: 2e:b3:2d:3c:38:e3:5b:9d:79:56:60:6e:25:98:61: e3:5f:a3:d8:56:41:b6:af:6a:f9:1c:7f:f6:13:eb: 21:4b:a9:ff:b4:bc:b1:2b:f5:b9:ce:d0:bb:d6:e4: 8a:ac:2b:58:69:93:94:47:de:f3:86:b1:20:24:0d: 32:bf:a1:d8:17:70:09:7c:d3:33:8f:07:e3:7a:c5: 18:b7:b3:6d:dc:45:80:2c:0b:59:19:ba:b0:ab:63: af:cc:59:2f:f5:f5:04:d4:97:d4:81:49:ef:cc:2b: a2:eb:26:ad:b1:a0:6e:05:e5:4b:72:77:5b:4a:f1: c3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:39:23:34:63:1E:A1:28:58:FC:06:4F:30:CC:1A:41:51:42:C9:F6 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:97:3e:e0:af:1c:9a:45:ac:6c:f6:a5:92:85:47:cb:cf:cd: 22:d3:64:72:0a:7a:d5:15:3d:58:58:ad:97:c3:cf:c0:6c:2a: 89:ad:b6:55:aa:76:96:e0:66:3b:86:e4:60:57:67:68:10:dd: 38:32:6a:43:87:1e:85:5d:9d:b3:7a:12:cb:91:21:9b:02:d2: b6:e9:95:0b:62:16:95:2d:49:b1:47:7e:c8:69:8b:a0:eb:8f: 21:fc:28:02:af:75:86:6b:3d:db:74:06:e0:29:6f:19:22:91: 49:29:32:16:df:56:87:a1:99:72:38:c2:61:26:ec:90:ad:dc: 58:bb:58:bb:63:8d:94:c7:cd:d5:24:8c:f8:b4:cb:34:b3:66: 24:41:57:bc:7a:22:c3:5b:d8:37:66:90:b5:92:cc:30:0d:2a: 60:ed:f4:fc:ee:d8:5e:38:50:4d:68:64:10:7c:9d:b9:cb:b5: 18:09:0d:59:57:3f:df:dc:ed:1f:43:d5:e9:1e:8e:c9:d5:7b: 74:0f:0f:71:5c:45:18:9d:65:96:41:05:4d:9e:7d:77:36:76: 4f:ff:2d:a8:1a:4e:78:a1:79:09:6a:28:16:24:95:9e:56:18: b9:51:80:ae:41:fd:8e:11:c5:4c:d0:f5:e1:6e:7f:6b:e6:48: 44:13:26:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwNTEyMTgyNzIzWhcNMjYwNTE5MTgyNzIzWjAYMRYwFAYD VQQDEw02YTAzNzEwYy01ZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uR15HXlTp/V+vAFL/9Rc3JVd3vSCHI+trx+C1XG8CzzM3HJF1P1Cl186vKs Uuvde+u2bHyYBHIojoRGuK8go8PgG+Dsq7xEqzfbBZV3JcVG1hjr5R+aQAlPdHBT 74ozRqlejzeGSvI2nGsr79bClElc7LZ5LoQU1MicnpTqnS6hX60ZZ+cusy08OONb nXlWYG4lmGHjX6PYVkG2r2r5HH/2E+shS6n/tLyxK/W5ztC71uSKrCtYaZOUR97z hrEgJA0yv6HYF3AJfNMzjwfjesUYt7Nt3EWALAtZGbqwq2OvzFkv9fUE1JfUgUnv zCui6yatsaBuBeVLcndbSvHD7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDo5IzRj HqEoWPwGTzDMGkFRQsn2MB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiJc+4K8cmkWsbPalkoVHy8/NItNkcgp61RU9WFitl8PPwGwqia22Vap2luBm O4bkYFdnaBDdODJqQ4cehV2ds3oSy5EhmwLStumVC2IWlS1JsUd+yGmLoOuPIfwo Aq91hms923QG4ClvGSKRSSkyFt9Wh6GZcjjCYSbskK3cWLtYu2ONlMfN1SSM+LTL NLNmJEFXvHoiw1vYN2aQtZLMMA0qYO30/O7YXjhQTWhkEHyducu1GAkNWVc/39zt H0PV6R6OydV7dA8PcVxFGJ1llkEFTZ59dzZ2T/8tqBpOeKF5CWooFiSVnlYYuVGA rkH9jhHFTND14W5/a+ZIRBMmSQ== -----END CERTIFICATE-----Generated at Wed May 13 01:39:13 2026 by rpki-client