$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: 8c/+SJUKi7QIWruYgnrSWQwVMOVi6RGqQ6LUDRuG4MQ= Subject key identifier: 75:6E:46:BF:CB:86:36:B6:99:C9:CC:0D:9A:29:74:05:92:64:6C:23 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 0541 Signing time: Tue 12 May 2026 16:29:09 +0000 Manifest this update: Tue 12 May 2026 16:29:08 +0000 Manifest next update: Tue 19 May 2026 16:29:08 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: BJG3cQvj1VcFfDT4WkSzQrJadz3NsEqpE88z82F4ayY=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: pPVg90RNjRjphrQIpFi1Dtq7Yfiqt2CKG2uE/Sw0pBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: May 12 16:29:08 2026 GMT Not After : May 19 16:29:08 2026 GMT Subject: CN=6a035555-a2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:58:e7:fe:5e:f4:55:ab:86:42:61:6c:a3:e4: ab:df:cb:c2:fd:84:48:94:b7:85:fb:3a:2f:ec:32: c3:39:72:3a:81:3f:e7:aa:16:7f:38:b5:3a:f0:76: 5b:df:c1:14:e9:2f:81:8a:22:d4:f5:8a:22:b5:c1: ab:8c:44:b9:3d:48:e1:08:b3:c4:a6:50:b5:5c:12: 9e:18:29:76:d5:ec:0e:20:49:01:ee:3b:26:89:42: d4:e5:94:c1:14:e4:e1:60:78:41:31:6f:17:53:e6: 76:33:8a:3e:db:65:f5:37:de:f4:29:ea:9f:49:b7: a8:8e:d7:98:da:e9:bd:db:da:db:f4:ce:b4:a7:30: 27:04:00:e0:f9:97:31:53:70:57:82:d9:51:cb:4f: 79:62:ec:fc:56:68:f9:3f:5f:15:67:4f:be:3e:ff: 56:73:e1:c1:59:af:f9:6a:6a:62:b3:30:a1:f5:b7: 53:4b:7c:df:d8:11:08:e1:7c:98:db:54:42:fd:fd: 3f:94:5e:e2:58:c2:13:da:c7:73:1f:e8:63:e4:da: b9:b5:5b:58:b4:39:56:f3:e4:c5:7b:7f:2f:b8:7d: ed:6c:69:30:c6:66:33:10:49:9f:34:53:50:c5:78: 7e:49:9b:73:fd:fe:65:a3:f8:94:a0:47:dc:ab:5e: b2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6E:46:BF:CB:86:36:B6:99:C9:CC:0D:9A:29:74:05:92:64:6C:23 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:72:31:45:c8:14:78:e4:69:08:db:11:c4:7c:eb:cd:67:28: bf:11:ca:09:12:7e:ea:51:f9:37:3c:33:89:0f:d1:3c:39:c6: a5:24:a2:ae:3c:ee:c3:23:dd:30:d0:00:70:63:3e:1a:a9:f4: 8d:06:cb:1c:10:db:7c:df:97:c0:92:65:ad:2a:1b:c7:3c:7d: 9e:f7:e5:2a:2c:fb:ac:81:78:0c:8a:f2:49:a4:7f:78:51:bd: 0c:2b:55:a8:51:53:bd:85:21:ad:df:1d:ec:ac:7a:27:bd:63: d7:83:d8:27:dd:12:7d:3a:4b:40:91:7b:24:00:4b:cd:ff:17: fd:fd:13:99:32:90:18:3c:07:96:3e:17:3a:9d:90:db:ca:72: cf:09:fc:59:d8:89:78:32:2b:f4:cd:98:7f:58:e7:f9:7e:cb: 9a:32:ee:8c:94:66:9f:b4:24:80:ad:73:11:ba:19:e9:35:4b: 99:df:de:e8:05:4b:e9:5d:cc:71:10:25:b7:61:70:35:27:16: bf:51:fd:16:ed:bd:cd:17:69:4b:95:0d:11:02:1b:99:21:32: 2f:5a:94:05:2c:3a:b5:53:a4:46:db:55:c3:57:6d:f4:6d:9a: ad:b6:ca:c1:6c:44:4f:89:1f:85:8c:3b:be:8d:d1:f3:2b:9e: 0d:ff:f3:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjYwNTEyMTYyOTA4WhcNMjYwNTE5MTYyOTA4WjAYMRYwFAYD VQQDEw02YTAzNTU1NS1hMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVjn/l70VauGQmFso+Sr38vC/YRIlLeF+zov7DLDOXI6gT/nqhZ/OLU68HZb 38EU6S+BiiLU9YoitcGrjES5PUjhCLPEplC1XBKeGCl21ewOIEkB7jsmiULU5ZTB FOThYHhBMW8XU+Z2M4o+22X1N970KeqfSbeojteY2um929rb9M60pzAnBADg+Zcx U3BXgtlRy095Yuz8Vmj5P18VZ0++Pv9Wc+HBWa/5ampiszCh9bdTS3zf2BEI4XyY 21RC/f0/lF7iWMIT2sdzH+hj5Nq5tVtYtDlW8+TFe38vuH3tbGkwxmYzEEmfNFNQ xXh+SZtz/f5lo/iUoEfcq16yhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHVuRr/L hja2mcnMDZopdAWSZGwjMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAonIxRcgUeORpCNsRxHzrzWcovxHKCRJ+6lH5NzwziQ/RPDnGpSSirjzuwyPd MNAAcGM+Gqn0jQbLHBDbfN+XwJJlrSobxzx9nvflKiz7rIF4DIrySaR/eFG9DCtV qFFTvYUhrd8d7Kx6J71j14PYJ90SfTpLQJF7JABLzf8X/f0TmTKQGDwHlj4XOp2Q 28pyzwn8WdiJeDIr9M2Yf1jn+X7LmjLujJRmn7QkgK1zEboZ6TVLmd/e6AVL6V3M cRAlt2FwNScWv1H9Fu29zRdpS5UNEQIbmSEyL1qUBSw6tVOkRttVw1dt9G2arbbK wWxET4kfhYw7vo3R8yueDf/zAw== -----END CERTIFICATE-----Generated at Wed May 13 12:19:32 2026 by rpki-client