$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: Daaqc5uuz5lOmQKHE7HlwMEt6tMk/ZeNdkVi4yPfixg= Subject key identifier: B2:5B:5C:48:0F:10:88:3A:8C:10:D0:47:08:E5:AD:70:6B:11:A0:2A Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0DA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0D9E Signing time: Tue 12 May 2026 17:57:52 +0000 Manifest this update: Tue 12 May 2026 17:57:52 +0000 Manifest next update: Tue 19 May 2026 17:57:52 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: KngqCuuIhpZYNZtNyp3lQOxvR9sBUMc77QyGPj97Fpk=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: n4Sr8XQlMSqL6gzDWm/TDckqQSOFH1CNlIw47oAhdDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3495 (0xda7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: May 12 17:57:52 2026 GMT Not After : May 19 17:57:52 2026 GMT Subject: CN=6a036a20-d4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:13:93:b9:a3:cd:c6:64:9f:0c:5a:40:5c: 50:2d:9b:cd:77:b8:a7:16:2c:e5:3a:f4:0e:29:c9: d8:c9:6e:9c:c5:cd:20:b6:65:9e:c5:90:52:ba:20: 91:7c:33:c0:de:46:50:12:14:8c:29:a6:37:7b:9a: c6:be:f2:18:1c:23:c5:a1:26:db:86:88:8a:b4:6f: c5:50:92:af:b1:08:26:c1:fc:d6:f2:1e:7d:01:d1: 9b:89:4a:b8:72:77:79:d8:94:a0:2e:81:52:3d:a8: 08:13:9c:fe:f0:b5:5d:95:ca:f9:10:51:10:bb:c4: 31:1e:84:b0:ce:0a:53:fc:2f:44:fb:de:ee:56:2d: 9b:35:bb:98:39:c0:9d:90:c7:fe:98:5e:3e:5a:64: 54:87:9e:43:11:6d:e2:b2:c0:aa:95:1a:d5:1f:84: 06:82:2d:73:45:80:69:aa:76:87:ed:16:24:1a:3a: 0c:e9:89:8b:02:17:18:f9:d6:51:b5:3e:47:0d:4a: 77:67:96:7b:7a:6a:72:21:2c:d8:29:f4:89:b9:1c: 9e:28:24:08:52:8e:d2:07:98:b1:73:3d:4f:be:d6: 7c:79:e4:8f:1f:35:c2:6d:4b:21:6c:b0:b0:f2:dc: 8b:59:bd:be:8e:10:86:6e:7a:49:61:85:1b:d7:03: 58:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5B:5C:48:0F:10:88:3A:8C:10:D0:47:08:E5:AD:70:6B:11:A0:2A X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:2c:35:17:a0:e4:a1:52:6a:96:1d:e2:a9:ce:c3:9e:eb:7b: 19:ed:9f:fc:45:0a:24:6a:7a:98:14:a0:fe:a9:1c:76:b0:7c: 15:8f:1c:b7:ee:a3:40:5c:cc:04:21:90:5a:29:0f:02:e0:da: 0b:f0:f3:00:82:de:6f:68:97:fc:5e:eb:33:93:06:99:00:3e: 36:ff:69:f6:27:ab:82:44:7e:88:89:71:52:f8:80:9b:7c:0a: 77:9f:d1:e8:e6:5c:76:62:6c:50:64:a7:cc:f0:0f:8c:4d:dd: a3:e6:df:0b:56:37:ce:ad:c0:f3:36:db:eb:58:5b:8b:51:e3: f4:fe:b5:c5:8c:7a:06:b9:a8:70:aa:e4:a1:01:68:ea:9d:5b: c2:a8:fd:7f:3b:aa:eb:48:e0:a0:97:66:cf:9b:f4:bd:c4:3f: 54:35:10:1e:a9:81:1c:80:80:d5:39:6e:51:03:46:de:77:ca: 2d:98:0c:1d:33:1d:4d:4d:8e:a9:d7:60:f7:7e:5d:4a:80:55: e4:41:bb:61:a9:af:d0:8f:f2:31:10:dd:f0:1f:4b:53:1a:e0: ed:10:c0:34:f4:6d:b2:35:4d:88:34:49:c8:77:77:24:10:c9: df:a4:75:78:30:8d:24:4a:53:a6:c1:65:88:da:2e:17:6c:31: bd:d9:19:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjYwNTEyMTc1NzUyWhcNMjYwNTE5MTc1NzUyWjAYMRYwFAYD VQQDEw02YTAzNmEyMC1kNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv50Tk7mjzcZknwxaQFxQLZvNd7inFizlOvQOKcnYyW6cxc0gtmWexZBSuiCR fDPA3kZQEhSMKaY3e5rGvvIYHCPFoSbbhoiKtG/FUJKvsQgmwfzW8h59AdGbiUq4 cnd52JSgLoFSPagIE5z+8LVdlcr5EFEQu8QxHoSwzgpT/C9E+97uVi2bNbuYOcCd kMf+mF4+WmRUh55DEW3issCqlRrVH4QGgi1zRYBpqnaH7RYkGjoM6YmLAhcY+dZR tT5HDUp3Z5Z7empyISzYKfSJuRyeKCQIUo7SB5ixcz1PvtZ8eeSPHzXCbUshbLCw 8tyLWb2+jhCGbnpJYYUb1wNYJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLJbXEgP EIg6jBDQRwjlrXBrEaAqMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKSw1F6DkoVJqlh3iqc7Dnut7Ge2f/EUKJGp6mBSg/qkcdrB8FY8ct+6jQFzM BCGQWikPAuDaC/DzAILeb2iX/F7rM5MGmQA+Nv9p9iergkR+iIlxUviAm3wKd5/R 6OZcdmJsUGSnzPAPjE3do+bfC1Y3zq3A8zbb61hbi1Hj9P61xYx6BrmocKrkoQFo 6p1bwqj9fzuq60jgoJdmz5v0vcQ/VDUQHqmBHICA1TluUQNG3nfKLZgMHTMdTU2O qddg935dSoBV5EG7Yamv0I/yMRDd8B9LUxrg7RDANPRtsjVNiDRJyHd3JBDJ36R1 eDCNJEpTpsFliNouF2wxvdkZLA== -----END CERTIFICATE-----Generated at Wed May 13 01:19:57 2026 by rpki-client