$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: q8vZKhTBM8pTqKbkN0a4Yt4tvvkrAcONFasDEXlDxuw= Subject key identifier: 76:78:FE:92:E1:39:9E:36:4D:5C:CE:4E:D9:10:DE:80:B9:BE:C3:E7 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 07A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 076F Signing time: Tue 12 May 2026 21:45:18 +0000 Manifest this update: Tue 12 May 2026 21:45:18 +0000 Manifest next update: Tue 19 May 2026 21:45:18 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: mFl8pDX4yuTUpTnfjUCLRTmC5u45bY9nqA+7sB9lbLc=) 2: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: aSxgIlw8nZiN+6lgLNU5XvZ1FdnFtkSevs0pTTJMvJY=) 3: 34956990D75511EF80E68A39C4F9AE02.roa (hash: t2VblrPsPkg3OLGXiwM69R4XdRcwB3mySF4/73qDgbo=) 4: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: vtp4YKFz/A5Vi0zg64GLZs1k3ocvwIIzZCuiJxmejGs=) 5: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: JyT9d9OOCJrRzpFBrxSBmC+CtEx3ZAy2eSQHymf45+s=) 6: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 4thkndOJT3+vXRn8C465Fs6jq2L+GeTYNEVafFWoUXs=) 7: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: phlxZambGxwdatRQWNb2Yjt/alGa6e8xzyqiiNU2+mQ=) 8: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: hn072ZUt0QkiLvSmGaoI0bZ5eHexJ3APJASDMCiyA2M=) 9: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: GtRv2G1MeWMHZlw+kEpfpaWB79CdGXzgFC1k73nj5d0=) 10: 05F05106586011EE9399A92EC4F9AE02.roa (hash: d5Czd9F+MkzuB9PBir/JbWAghXpmJN+auVy0L4FfZfQ=) 11: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: mr8KwOkVa8RAea/BYVd3YUG6na4L4IGVAN/w6VWKUIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: May 12 21:45:18 2026 GMT Not After : May 19 21:45:18 2026 GMT Subject: CN=6a039f6e-e2e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d4:0a:8b:6a:e6:64:31:e0:8a:4c:27:27:bd: 95:f5:2b:d6:90:d1:b3:ef:25:26:1b:b9:56:56:f6: 68:d8:83:26:5b:ff:f7:29:8a:66:96:11:d8:da:be: 08:2a:c4:4b:47:a9:cd:dc:22:4f:85:8e:7e:d5:a0: 4b:82:e8:01:e6:e0:07:cc:e0:22:29:fe:1f:3f:9d: 12:73:ce:dc:99:cf:83:59:88:a8:47:d8:e6:cb:ef: 18:7c:48:77:19:90:6b:4b:2a:b8:e3:83:c3:66:12: b7:ee:45:01:1f:77:49:b3:8d:8e:0c:74:1c:6e:4b: bc:61:e9:4e:54:6b:a8:f8:d5:ba:db:18:ad:42:ce: e8:5f:db:bc:cc:88:08:68:e4:26:3f:53:8f:89:59: 02:00:5d:59:96:b1:56:d5:1f:f7:18:c4:ae:1c:1d: 27:c3:20:b3:83:da:0e:c0:a3:27:8f:c3:6f:e0:66: 71:0e:2e:b7:48:fc:90:fb:fd:c0:0c:fa:39:bc:2e: bb:6a:77:93:22:3e:e6:42:66:f2:5a:2c:f7:46:23: ba:f1:55:d2:0a:e2:ff:3f:95:3e:b0:31:a3:57:4f: ff:dd:85:52:e0:61:45:5c:97:23:2c:22:d4:f7:15: ab:21:26:be:b3:59:a6:89:21:72:17:d8:6e:28:2d: ec:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:78:FE:92:E1:39:9E:36:4D:5C:CE:4E:D9:10:DE:80:B9:BE:C3:E7 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:15:95:6d:1b:3b:64:ec:be:8c:db:f0:03:51:1a:b0:42:ac: 43:76:8f:2b:e0:90:f2:c8:32:d3:8a:8d:c6:b6:84:41:a2:9a: 17:c5:94:00:b5:81:87:9e:e7:9e:be:09:02:91:d9:e7:69:d6: 3f:76:04:46:93:92:8c:0a:67:e4:52:70:f8:ec:44:d6:85:7a: dc:f9:2b:d9:ec:a0:52:99:90:7d:99:07:2f:f3:1d:b7:69:96: 35:ad:d7:d6:9b:df:5c:82:b9:60:d0:29:4f:0b:b8:c2:98:34: 27:5f:a0:21:4a:23:32:e0:e8:f8:fc:54:6f:90:bd:28:2d:82: 00:15:48:be:bc:ed:a8:fc:93:af:05:c4:ec:46:b7:0e:0d:d4: 6f:6a:ea:8f:3e:8c:89:e3:42:a3:39:db:cc:37:0e:cc:b5:cc: 10:0c:de:1f:d3:2e:2e:43:16:f3:82:f8:e8:1b:ba:7e:79:cf: 9c:53:a0:11:b8:87:81:ff:6b:69:30:eb:25:57:f2:f4:5d:cf: a6:84:16:27:3a:22:8a:56:27:6b:19:d8:f8:52:63:36:77:22: 48:62:a5:9f:dc:ec:f0:06:d5:ca:53:40:c3:6a:2b:a1:ab:4d: 95:a1:97:b3:af:3c:50:09:79:c8:66:e7:95:36:73:b0:19:74: 7a:76:1f:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjYwNTEyMjE0NTE4WhcNMjYwNTE5MjE0NTE4WjAYMRYwFAYD VQQDEw02YTAzOWY2ZS1lMmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dQKi2rmZDHgikwnJ72V9SvWkNGz7yUmG7lWVvZo2IMmW//3KYpmlhHY2r4I KsRLR6nN3CJPhY5+1aBLgugB5uAHzOAiKf4fP50Sc87cmc+DWYioR9jmy+8YfEh3 GZBrSyq444PDZhK37kUBH3dJs42ODHQcbku8YelOVGuo+NW62xitQs7oX9u8zIgI aOQmP1OPiVkCAF1ZlrFW1R/3GMSuHB0nwyCzg9oOwKMnj8Nv4GZxDi63SPyQ+/3A DPo5vC67aneTIj7mQmbyWiz3RiO68VXSCuL/P5U+sDGjV0//3YVS4GFFXJcjLCLU 9xWrISa+s1mmiSFyF9huKC3slwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHZ4/pLh OZ42TVzOTtkQ3oC5vsPnMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANRWVbRs7ZOy+jNvwA1EasEKsQ3aPK+CQ8sgy04qNxraEQaKaF8WUALWBh57n nr4JApHZ52nWP3YERpOSjApn5FJw+OxE1oV63Pkr2eygUpmQfZkHL/Mdt2mWNa3X 1pvfXIK5YNApTwu4wpg0J1+gIUojMuDo+PxUb5C9KC2CABVIvrztqPyTrwXE7Ea3 Dg3Ub2rqjz6MieNCoznbzDcOzLXMEAzeH9MuLkMW84L46Bu6fnnPnFOgEbiHgf9r aTDrJVfy9F3PpoQWJzoiilYnaxnY+FJjNnciSGKln9zs8AbVylNAw2oroatNlaGX s688UAl5yGbnlTZzsBl0enYfuw== -----END CERTIFICATE-----Generated at Wed May 13 15:05:19 2026 by rpki-client