$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: x+H55cgVMMWsLiFxoRs9yzR8jn+YCMIMDC0t5hstmqg= Subject key identifier: DC:7B:BB:91:70:32:A3:B3:FC:5D:30:BA:51:62:10:60:AC:81:73:B9 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0890 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 087C Signing time: Tue 12 May 2026 20:44:30 +0000 Manifest this update: Tue 12 May 2026 20:44:29 +0000 Manifest next update: Tue 19 May 2026 20:44:29 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: uImPpCA/9XxWSTI+HDjgJU9sMSoMOj5/cEe8+z4Y59w=) 2: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: /xCNBqLNz0L8cDqpYEQMnHLgfzVahak+S8dk9Uan5oM=) 3: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: IxYVxX1BoFCHdIOrjAwAEmnCO+dNiZSE2wEYWsIxYD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: May 12 20:44:29 2026 GMT Not After : May 19 20:44:29 2026 GMT Subject: CN=6a03912e-9208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:15:b1:60:80:96:55:60:6f:33:e8:bf:ec:7e: 6b:51:d7:c7:fb:2c:1a:28:d4:9c:fd:85:c2:10:2f: 7d:a7:41:b4:80:f3:d1:d2:e2:9e:7c:b4:36:6a:04: cb:d5:37:96:2f:71:8d:49:86:28:ac:53:2c:bd:21: f0:7d:19:d9:2d:27:44:7e:b0:64:19:28:ff:88:70: e9:85:39:da:a5:3e:93:1c:eb:50:e0:7b:42:1a:89: 6d:55:e6:98:6b:9c:53:1a:a3:eb:e7:77:4f:e2:0b: ad:fd:7e:4b:94:cb:84:fe:b1:a9:55:27:fc:c7:59: 72:e9:bd:23:ba:12:91:fd:c0:8c:60:37:a3:bc:40: 17:9d:ec:dd:5b:51:4b:f7:05:28:41:f9:e0:19:99: 62:0d:b7:85:19:3e:c0:6a:c2:0c:0a:d8:da:9a:c4: 49:68:f1:cd:72:1b:36:d8:9e:6e:41:39:a8:d2:7e: 1e:34:e9:17:c4:61:83:7d:f1:e0:5a:c4:55:67:6f: bd:56:9e:09:01:00:11:09:da:17:cf:39:00:96:65: 60:2a:f3:0e:3b:66:77:06:e4:f3:f8:3f:bc:19:46: 44:b0:cd:ff:28:ee:59:74:6b:47:18:98:56:08:42: eb:ca:ba:19:03:0d:4d:24:85:71:dc:5a:fc:bd:ad: 14:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7B:BB:91:70:32:A3:B3:FC:5D:30:BA:51:62:10:60:AC:81:73:B9 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:af:b6:bb:83:68:bc:e7:7a:4b:5b:e5:7f:66:2e:57:fc:5e: fc:ec:bf:0c:ef:52:a3:ba:2a:d4:bc:1b:9f:96:c0:7d:5e:1f: b2:84:9f:b2:67:06:9c:8c:1b:b1:5b:de:f1:8d:c0:37:e5:5b: 08:da:98:a6:d8:7d:c5:a8:6b:5d:0d:ab:e6:98:10:78:cb:ca: 40:d8:b3:8b:55:dc:91:b9:63:f3:aa:c3:66:e7:78:1c:3d:f9: 19:ca:86:ca:e3:f1:6e:d4:bd:38:89:e6:db:3b:33:72:3e:6e: 8d:b3:98:ba:10:92:de:cb:01:61:a9:af:9d:82:24:71:c7:41: b9:e3:c5:c4:03:6a:42:e1:35:c8:47:68:4e:a7:be:f4:ea:bd: b4:65:2d:a0:17:bf:7a:4c:79:e6:e8:11:f2:b7:4a:b5:56:0f: a9:fd:8f:1e:71:25:f0:65:d6:cd:18:5b:cb:d8:8c:9e:d9:d6: 0c:23:d5:90:a4:da:38:0d:af:e8:c3:a7:39:3a:af:dc:26:e7: 6e:29:54:62:8f:83:fd:0e:4a:58:81:70:77:77:3c:1f:18:23: bd:23:be:16:34:00:6b:2e:27:17:02:3e:b8:46:a6:82:f2:b2: 03:78:bd:cd:a2:76:1f:0f:b8:41:87:9d:de:0b:28:48:ed:38: b5:e7:ee:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwNTEyMjA0NDI5WhcNMjYwNTE5MjA0NDI5WjAYMRYwFAYD VQQDEw02YTAzOTEyZS05MjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshWxYICWVWBvM+i/7H5rUdfH+ywaKNSc/YXCEC99p0G0gPPR0uKefLQ2agTL 1TeWL3GNSYYorFMsvSHwfRnZLSdEfrBkGSj/iHDphTnapT6THOtQ4HtCGoltVeaY a5xTGqPr53dP4gut/X5LlMuE/rGpVSf8x1ly6b0juhKR/cCMYDejvEAXnezdW1FL 9wUoQfngGZliDbeFGT7AasIMCtjamsRJaPHNchs22J5uQTmo0n4eNOkXxGGDffHg WsRVZ2+9Vp4JAQARCdoXzzkAlmVgKvMOO2Z3BuTz+D+8GUZEsM3/KO5ZdGtHGJhW CELryroZAw1NJIVx3Fr8va0U6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNx7u5Fw MqOz/F0wulFiEGCsgXO5MB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK6+2u4NovOd6S1vlf2YuV/xe/Oy/DO9So7oq1Lwbn5bAfV4fsoSfsmcGnIwb sVve8Y3AN+VbCNqYpth9xahrXQ2r5pgQeMvKQNizi1Xckblj86rDZud4HD35GcqG yuPxbtS9OInm2zszcj5ujbOYuhCS3ssBYamvnYIkccdBuePFxANqQuE1yEdoTqe+ 9Oq9tGUtoBe/ekx55ugR8rdKtVYPqf2PHnEl8GXWzRhby9iMntnWDCPVkKTaOA2v 6MOnOTqv3CbnbilUYo+D/Q5KWIFwd3c8HxgjvSO+FjQAay4nFwI+uEamgvKyA3i9 zaJ2Hw+4QYed3gsoSO04tefu+g== -----END CERTIFICATE-----Generated at Wed May 13 09:10:27 2026 by rpki-client