$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: GHl6vZVeHqoOkPHo1ASP389HnPkKQtFTpCfPX3Uqw58= Subject key identifier: 85:2D:32:44:EF:65:F8:C4:8C:E5:0F:AE:A9:4B:EE:46:E1:F9:83:25 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 0963 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 0952 Signing time: Tue 12 May 2026 20:12:05 +0000 Manifest this update: Tue 12 May 2026 20:12:04 +0000 Manifest next update: Tue 19 May 2026 20:12:04 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: ZnD4YSCnWqt10q7jT4hqRITe4MUk4tLd9NndHsMRGxo=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: +2GMR/V9mZr0Ife9tGdydPkVcoSqLY2zhQZIUiI3Hq0=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: bPFO6I2wWIPENqB/X87e5uIatc/LQckX7tfxgiWc7ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2403 (0x963) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: May 12 20:12:04 2026 GMT Not After : May 19 20:12:04 2026 GMT Subject: CN=6a038995-5bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6f:9a:98:3e:df:aa:c4:78:72:b3:3f:61:e7: d2:38:6e:f0:e9:99:21:76:02:4d:03:35:b1:c1:85: 22:99:55:26:d6:f5:07:5e:96:b7:f5:ae:ca:3c:df: 8a:c1:9b:9c:84:01:17:c0:be:3c:a7:dc:90:99:b9: 50:c0:63:60:30:ae:e3:13:73:8c:db:71:16:5b:c0: 52:11:f2:c6:0f:23:9c:48:f3:a0:f6:b8:32:cd:9a: 9c:0b:eb:c9:8c:31:34:5a:aa:bd:05:75:87:15:0e: c8:28:67:8e:50:d0:1a:f9:aa:11:f0:38:51:c8:c7: 03:4c:d8:e1:d0:f4:2e:15:4b:e5:59:80:0f:18:4c: 7b:9a:b8:bf:e2:c2:62:44:bd:32:b7:d4:e6:7f:68: d7:1a:9c:b3:74:55:7f:db:5d:f0:9c:cf:94:97:13: 4a:07:d4:58:4a:27:88:7b:be:2f:07:db:a3:d8:a5: 4f:12:a6:da:6f:de:e3:40:6a:b4:c6:95:53:ab:0a: 27:38:60:56:48:2e:33:82:bb:30:2b:74:cd:5d:fc: 21:81:bf:5b:20:62:d1:64:5f:c9:52:b5:4e:20:1b: 53:94:cc:5d:b9:a0:dc:a2:f8:be:f7:02:19:32:9c: f6:cd:ba:97:fd:7d:e5:9f:55:c7:c9:40:6a:80:f4: 11:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2D:32:44:EF:65:F8:C4:8C:E5:0F:AE:A9:4B:EE:46:E1:F9:83:25 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c7:53:45:bc:29:b6:5c:4a:fb:58:6a:1c:83:0c:ee:a0:b1: e4:09:6d:b8:ed:74:e2:77:47:1f:fa:58:93:f6:7c:23:63:64: 84:6f:af:a4:08:33:fa:8d:39:7c:26:9f:85:a1:fc:6f:eb:66: 91:be:64:c1:d0:0a:f4:ba:46:ef:96:5a:6e:ee:9c:d6:83:d1: d7:d6:9f:4f:f8:f4:02:00:47:3e:ae:2c:9b:82:44:e5:3b:b6: bb:6a:7f:a9:c3:6a:b2:de:db:6e:81:df:22:13:d7:8d:a0:7f: 68:90:83:20:ed:5c:c0:73:22:71:f7:17:bf:37:97:d4:ed:55: 04:43:5a:7c:11:63:4e:32:2b:46:9b:15:af:03:c4:8f:92:e3: ad:c1:73:26:22:a3:45:b4:e2:cd:97:4a:ae:61:42:15:e8:8c: 52:2c:40:6f:e6:d0:8c:ca:60:be:04:cd:99:25:83:d6:53:ea: 8d:3d:e2:df:a4:3a:b6:28:a6:ac:ff:c1:e8:51:c1:8f:26:0b: d0:fc:c7:9c:21:43:7d:8b:38:28:94:f2:4a:d9:eb:51:50:39: b4:4a:0b:22:49:bd:4a:1a:8c:ae:fe:82:cf:7a:a1:64:67:07: f0:68:aa:ad:b3:72:26:68:2c:a8:06:4a:fc:a1:68:95:7f:82: 25:f5:1c:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjYwNTEyMjAxMjA0WhcNMjYwNTE5MjAxMjA0WjAYMRYwFAYD VQQDEw02YTAzODk5NS01YmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym+amD7fqsR4crM/YefSOG7w6ZkhdgJNAzWxwYUimVUm1vUHXpa39a7KPN+K wZuchAEXwL48p9yQmblQwGNgMK7jE3OM23EWW8BSEfLGDyOcSPOg9rgyzZqcC+vJ jDE0Wqq9BXWHFQ7IKGeOUNAa+aoR8DhRyMcDTNjh0PQuFUvlWYAPGEx7mri/4sJi RL0yt9Tmf2jXGpyzdFV/213wnM+UlxNKB9RYSieIe74vB9uj2KVPEqbab97jQGq0 xpVTqwonOGBWSC4zgrswK3TNXfwhgb9bIGLRZF/JUrVOIBtTlMxduaDcovi+9wIZ Mpz2zbqX/X3ln1XHyUBqgPQRAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIUtMkTv ZfjEjOUPrqlL7kbh+YMlMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUsdTRbwptlxK+1hqHIMM7qCx5AltuO104ndHH/pYk/Z8I2NkhG+vpAgz+o05 fCafhaH8b+tmkb5kwdAK9LpG75Zabu6c1oPR19afT/j0AgBHPq4sm4JE5Tu2u2p/ qcNqst7bboHfIhPXjaB/aJCDIO1cwHMicfcXvzeX1O1VBENafBFjTjIrRpsVrwPE j5LjrcFzJiKjRbTizZdKrmFCFeiMUixAb+bQjMpgvgTNmSWD1lPqjT3i36Q6tiim rP/B6FHBjyYL0PzHnCFDfYs4KJTyStnrUVA5tEoLIkm9ShqMrv6Cz3qhZGcH8Giq rbNyJmgsqAZK/KFolX+CJfUc3g== -----END CERTIFICATE-----Generated at Wed May 13 11:37:46 2026 by rpki-client