$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: pmyLgHf8HaSntdbkh576dQ7mbCL+iAV5omNAgvMSfsY= Subject key identifier: AE:7A:52:9D:C5:8D:63:8C:A2:5A:23:62:DB:9F:A0:69:29:4D:C3:FA Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 03E9 Signing time: Wed 13 May 2026 00:36:52 +0000 Manifest this update: Wed 13 May 2026 00:36:52 +0000 Manifest next update: Wed 20 May 2026 00:36:52 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: R7yQ26GRorTErrdiF7f0bNVU7nP85mBsjoT/FIm2KKM=) 2: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: Yt0TqJaTmIJd27cHaCbpte8qJaUobmzMaQoo+mme+Sg=) 3: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: d2IO53QQHp9HhXVDc1CoUGPFf1YUTdGHgG7B3UV4InA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: May 13 00:36:52 2026 GMT Not After : May 20 00:36:52 2026 GMT Subject: CN=6a03c7a4-aff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:59:1d:42:8d:c5:29:ab:ec:d4:26:9a:6a:a1: 83:d9:17:a1:69:23:90:39:02:5b:f7:53:b8:0b:c6: de:fb:e1:bc:18:bf:9c:f7:c8:00:c5:10:df:c9:99: de:55:5f:0c:e2:0e:8d:4b:60:f6:c5:63:94:17:91: 91:10:ce:55:2e:e5:c4:0d:29:40:a4:ab:60:e5:61: f3:0e:35:9e:3e:f2:93:70:fe:a3:03:8c:9c:89:0d: 90:e0:8b:11:2c:34:4e:38:77:a5:9c:57:04:f8:db: bc:b8:8c:a8:0b:d6:7b:f5:37:37:1b:f8:f4:e2:30: e6:72:04:2c:0b:7b:d7:de:fd:48:a8:2f:fa:94:d6: 02:03:73:84:a0:5c:0e:15:87:63:b1:8b:d3:00:f2: ed:98:b0:07:96:72:fd:c1:cc:d8:40:20:59:68:39: 4b:7b:4f:3d:61:44:7b:2d:79:ce:f4:e9:f6:c1:55: 18:b6:1d:7c:bb:39:1b:99:aa:ae:80:70:61:e2:9a: 85:6b:15:9b:5c:c2:90:c5:f7:00:d9:66:a0:07:47: f1:43:7e:3c:77:0c:e2:8f:db:99:ed:61:0c:e8:8a: b0:7d:35:e3:d9:4e:30:53:37:b9:d4:ca:07:d5:ae: a3:ac:b3:31:b9:d4:48:98:e3:8a:b7:6a:e1:72:5e: 89:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7A:52:9D:C5:8D:63:8C:A2:5A:23:62:DB:9F:A0:69:29:4D:C3:FA X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b8:df:2d:1f:19:4e:b9:6a:47:9b:1e:31:34:10:89:79:fd: a3:eb:b5:71:f8:b1:e7:31:e7:1c:ef:66:b3:a9:09:41:cd:ca: 6b:7f:c2:ea:ac:8c:46:c5:4f:2c:39:2f:09:de:7f:cf:bb:ec: 91:7f:a1:df:b1:31:9b:11:c4:6c:98:64:00:3f:33:81:cb:1c: 6f:4e:7d:ed:8d:6e:4d:51:8a:dc:f1:ff:23:95:d2:3a:76:75: d8:f6:b4:21:5a:49:00:97:e5:ef:77:3a:a0:b6:68:f9:5f:8a: 90:13:b0:28:3f:b6:9c:6c:03:18:17:f3:e9:97:11:12:bc:a2: a3:d7:20:3c:7c:fa:13:4a:46:dd:5f:a4:08:a1:dd:a2:cd:f4: 2c:75:64:4a:5e:b6:2c:0c:1d:1d:21:fb:bf:36:09:8f:29:f4: 6d:e0:64:23:35:7d:7f:76:f7:c1:c6:66:c5:29:43:02:b4:97: 9e:11:53:5a:a2:1b:fb:94:1b:6a:53:c9:5f:04:4a:bc:9a:8f: 9b:62:10:4a:a4:6e:32:98:f6:01:67:59:53:07:19:bc:5f:3c: 06:3c:5e:48:63:6e:25:e5:04:6a:a2:94:eb:a4:68:a0:97:57: ed:63:03:19:33:75:63:82:a8:0c:27:d3:36:6e:5b:ab:8c:58: ea:07:fb:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjYwNTEzMDAzNjUyWhcNMjYwNTIwMDAzNjUyWjAYMRYwFAYD VQQDEw02YTAzYzdhNC1hZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1kdQo3FKavs1CaaaqGD2RehaSOQOQJb91O4C8be++G8GL+c98gAxRDfyZne VV8M4g6NS2D2xWOUF5GREM5VLuXEDSlApKtg5WHzDjWePvKTcP6jA4yciQ2Q4IsR LDROOHelnFcE+Nu8uIyoC9Z79Tc3G/j04jDmcgQsC3vX3v1IqC/6lNYCA3OEoFwO FYdjsYvTAPLtmLAHlnL9wczYQCBZaDlLe089YUR7LXnO9On2wVUYth18uzkbmaqu gHBh4pqFaxWbXMKQxfcA2WagB0fxQ348dwzij9uZ7WEM6IqwfTXj2U4wUze51MoH 1a6jrLMxudRImOOKt2rhcl6J/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK56Up3F jWOMolojYtufoGkpTcP6MB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAELjfLR8ZTrlqR5seMTQQiXn9o+u1cfix5zHnHO9ms6kJQc3Ka3/C6qyMRsVP LDkvCd5/z7vskX+h37ExmxHEbJhkAD8zgcscb0597Y1uTVGK3PH/I5XSOnZ12Pa0 IVpJAJfl73c6oLZo+V+KkBOwKD+2nGwDGBfz6ZcREryio9cgPHz6E0pG3V+kCKHd os30LHVkSl62LAwdHSH7vzYJjyn0beBkIzV9f3b3wcZmxSlDArSXnhFTWqIb+5Qb alPJXwRKvJqPm2IQSqRuMpj2AWdZUwcZvF88BjxeSGNuJeUEaqKU66RooJdX7WMD GTN1Y4KoDCfTNm5bq4xY6gf7WA== -----END CERTIFICATE-----Generated at Wed May 13 11:31:37 2026 by rpki-client