$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: JJ+z2JY4XPwfvAzcy2i5Dv+RLxjyg0OR3GFkSaKWOfI= Subject key identifier: 5B:67:29:DE:24:2E:12:E9:C0:4E:2A:AA:A2:CE:FD:EE:49:8E:68:B9 Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 014E Signing time: Wed 13 May 2026 05:14:00 +0000 Manifest this update: Wed 13 May 2026 05:13:59 +0000 Manifest next update: Wed 20 May 2026 05:13:59 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: pY+hTQ3/YDsy98LkSJNUKg9sL2i3JWzBgTYa0AZVx8k=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: iGq1jNFW8Jf/KFgz2eEoKwlpfdulgStFmeWoJUH2Q3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: May 13 05:13:59 2026 GMT Not After : May 20 05:13:59 2026 GMT Subject: CN=6a040897-958c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:7e:21:de:b1:bd:af:ea:71:10:ca:ec:ff: c5:7e:4f:66:38:3d:2a:17:24:69:50:97:60:a0:14: 9a:d3:a1:75:61:86:20:8b:f9:1d:dc:26:2b:56:05: 71:87:5b:fb:08:00:c3:c5:07:60:2a:6d:b3:52:30: c6:eb:24:a5:93:76:83:3a:6b:72:e7:8b:49:52:9c: 64:9e:99:22:6a:57:3a:ac:6d:eb:ec:c6:d9:ad:ab: c8:09:a4:6f:1d:fc:66:54:d7:8d:5a:4e:d4:48:e4: 91:98:b5:c3:fc:b6:7f:ca:e2:76:b0:e5:17:5f:ef: 51:4f:a3:29:e2:f2:57:0a:c3:6d:f4:e5:89:37:2b: 8c:43:2b:90:b2:c0:4f:ae:42:95:b9:54:f5:08:c6: e4:3d:48:a3:02:d2:ce:89:e6:47:fd:88:e3:d7:bd: 90:0b:8c:03:95:a2:f9:df:6b:16:96:f7:08:5e:31: 58:01:f9:64:30:89:8d:f6:4c:d5:02:54:5c:ab:87: ca:bc:aa:ff:0d:ee:91:2b:43:87:24:53:b8:08:a7: a2:e6:06:73:fd:a3:0a:b3:27:de:4d:8e:e2:d1:b5: db:af:4e:6e:94:31:ff:fe:c3:fd:04:24:83:d5:0c: e5:08:63:a6:e5:8b:24:d0:f2:a3:18:95:3c:2d:c4: d6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:67:29:DE:24:2E:12:E9:C0:4E:2A:AA:A2:CE:FD:EE:49:8E:68:B9 X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:ed:c0:24:d9:a4:32:b3:8d:f4:67:67:62:b8:cf:e2:e1:94: b4:fc:c5:c5:e3:c4:5d:97:84:b1:16:da:88:6e:57:15:d2:3d: 0d:ff:eb:73:fd:60:1f:ce:24:e7:dd:34:21:c9:2d:78:60:56: 93:1c:d4:e4:dc:41:4b:b2:20:7f:d8:08:a4:a6:b0:f2:51:83: ba:ee:0e:ea:66:6e:d9:cc:51:57:0f:21:a7:74:27:1f:09:b3: 48:b5:82:ac:a9:31:bc:3e:76:c1:66:9a:d2:9c:fc:6a:c1:a2: e5:bd:38:ca:91:20:46:53:9f:6e:97:aa:59:63:30:1c:f2:67: d4:14:43:2e:3a:7b:8f:2b:c4:a6:cb:ba:58:90:3b:5a:0f:16: aa:60:33:88:90:e6:52:35:87:ed:47:4b:b2:f6:be:1b:5c:1c: 56:41:26:d6:7b:17:e6:50:79:a4:c3:14:62:85:35:33:d9:f0: 49:8a:cd:c9:47:29:ea:ad:cb:4f:f4:b4:f4:4d:a3:fd:12:4d: 79:44:bc:1f:95:8f:48:a8:e6:70:5e:65:e8:03:45:09:16:3d: 2b:73:b8:4d:b4:f3:36:31:67:a7:19:f8:9b:4a:92:cd:f4:df: b5:4b:f5:e3:59:46:38:f1:a7:f2:5d:76:e8:68:bb:1f:a7:1c: 9a:bd:a3:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjYwNTEzMDUxMzU5WhcNMjYwNTIwMDUxMzU5WjAYMRYwFAYD VQQDEw02YTA0MDg5Ny05NThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUp+Id6xva/qcRDK7P/Ffk9mOD0qFyRpUJdgoBSa06F1YYYgi/kd3CYrVgVx h1v7CADDxQdgKm2zUjDG6ySlk3aDOmty54tJUpxknpkialc6rG3r7MbZravICaRv HfxmVNeNWk7USOSRmLXD/LZ/yuJ2sOUXX+9RT6Mp4vJXCsNt9OWJNyuMQyuQssBP rkKVuVT1CMbkPUijAtLOieZH/Yjj172QC4wDlaL532sWlvcIXjFYAflkMImN9kzV AlRcq4fKvKr/De6RK0OHJFO4CKei5gZz/aMKsyfeTY7i0bXbr05ulDH//sP9BCSD 1QzlCGOm5Ysk0PKjGJU8LcTWWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFtnKd4k LhLpwE4qqqLO/e5Jjmi5MB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv+3AJNmkMrON9GdnYrjP4uGUtPzFxePEXZeEsRbaiG5XFdI9Df/rc/1gH84k 5900IckteGBWkxzU5NxBS7Igf9gIpKaw8lGDuu4O6mZu2cxRVw8hp3QnHwmzSLWC rKkxvD52wWaa0pz8asGi5b04ypEgRlOfbpeqWWMwHPJn1BRDLjp7jyvEpsu6WJA7 Wg8WqmAziJDmUjWH7UdLsva+G1wcVkEm1nsX5lB5pMMUYoU1M9nwSYrNyUcp6q3L T/S09E2j/RJNeUS8H5WPSKjmcF5l6ANFCRY9K3O4TbTzNjFnpxn4m0qSzfTftUv1 41lGOPGn8l126Gi7H6ccmr2jJA== -----END CERTIFICATE-----Generated at Wed May 13 13:58:25 2026 by rpki-client