$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: g1aR1q7zcgw1zJDCeTg2MosuvU/VQUTjdi6PNMUykZs= Subject key identifier: B9:3E:63:B4:16:05:26:F2:DA:2E:D6:8D:47:5D:5F:13:36:8B:57:E3 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0290 Signing time: Mon 11 May 2026 01:54:31 +0000 Manifest this update: Mon 11 May 2026 01:54:30 +0000 Manifest next update: Mon 18 May 2026 01:54:30 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: 9zEbvDQMZrYtGwKY6TGd3VnccovZJ/thWm8lb975bpM=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 01:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: May 11 01:54:30 2026 GMT Not After : May 18 01:54:30 2026 GMT Subject: CN=6a0136d7-75db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:48:7d:57:fd:c1:70:6c:3d:f6:e7:43:0d:75: 53:39:63:b6:3a:ce:3d:f6:8b:bd:a2:6d:b7:08:f3: d8:f5:dd:00:e0:88:93:ce:34:09:e5:7d:a1:76:dd: 1b:9a:bd:88:db:f5:32:1f:59:56:4c:86:1f:8e:b7: 3f:43:c3:60:3d:06:d5:d7:93:b3:02:f4:cc:b2:db: 12:e3:bd:1a:c1:3a:76:b4:aa:1f:73:77:54:93:21: de:d3:0f:32:25:55:99:fb:b7:46:fc:bc:b3:ce:81: 77:1c:5c:c4:51:c7:04:7b:4e:f4:de:3c:e7:27:3b: de:51:26:cf:1e:f4:23:a1:a1:dc:89:7a:0e:ed:01: 7e:1a:48:3d:15:16:0f:1d:ac:6a:45:c2:99:76:18: ee:39:4d:55:97:ed:67:3d:41:91:e8:1b:5b:1c:36: 8b:fc:f3:00:62:ac:8e:fb:36:8d:2f:49:8a:6b:6b: 57:5f:80:9a:e1:75:ad:a1:87:00:03:8e:1d:cd:af: 2c:c3:de:bf:f9:d4:48:63:96:2f:cd:ba:a3:81:82: 79:62:f3:d7:47:a4:56:d1:36:46:c9:4b:e7:4f:6c: ad:93:c6:d5:a3:ca:c6:15:57:2e:5e:c8:dc:36:6e: d5:0c:4d:03:f2:32:48:f9:40:84:19:b9:4f:5c:22: 98:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3E:63:B4:16:05:26:F2:DA:2E:D6:8D:47:5D:5F:13:36:8B:57:E3 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:7d:d8:96:e8:f5:b7:d5:a1:4b:57:ef:ee:dd:b5:49:56:1b: f7:bc:ff:dd:d2:2d:79:b5:03:03:c2:7a:22:07:de:31:5c:b5: 3a:f9:ad:dd:b8:56:e9:b6:3c:a4:45:81:5b:5f:10:aa:e9:f7: ea:b8:ed:43:41:75:7f:a4:79:2c:2f:2a:9c:20:ae:af:af:96: 6c:ae:b0:4f:02:50:c9:22:09:b1:d8:ba:d7:74:3d:77:93:a4: 97:99:5b:a0:71:c9:ca:d8:d7:c1:0e:28:2e:3a:37:0b:d5:cb: 5d:17:8e:f5:d1:4a:03:ad:6d:5c:24:f9:6f:cc:f9:17:47:ad: ca:d5:f2:22:65:0a:e5:3e:2b:8c:77:aa:b1:43:02:3c:e5:34: 5b:6e:18:7d:3e:2e:ff:75:6a:83:05:94:83:5c:2f:af:f1:00: d3:5b:12:d4:fd:71:5a:36:56:e1:69:b6:5a:03:35:64:dd:b1: cd:72:06:37:11:65:e4:13:9b:36:03:62:8d:70:18:16:d1:ef: 84:c1:a1:d3:84:06:30:dc:9b:0c:47:02:01:29:21:10:79:dc: ba:66:85:b0:53:d3:14:0e:e2:86:4b:92:e7:2b:3c:7a:56:90: d1:6e:c5:c1:0d:0e:f1:ef:ad:8a:83:30:14:3c:be:42:ee:00: 45:4e:e9:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwNTExMDE1NDMwWhcNMjYwNTE4MDE1NDMwWjAYMRYwFAYD VQQDEw02YTAxMzZkNy03NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00h9V/3BcGw99udDDXVTOWO2Os499ou9om23CPPY9d0A4IiTzjQJ5X2hdt0b mr2I2/UyH1lWTIYfjrc/Q8NgPQbV15OzAvTMstsS470awTp2tKofc3dUkyHe0w8y JVWZ+7dG/LyzzoF3HFzEUccEe0703jznJzveUSbPHvQjoaHciXoO7QF+Gkg9FRYP HaxqRcKZdhjuOU1Vl+1nPUGR6BtbHDaL/PMAYqyO+zaNL0mKa2tXX4Ca4XWtoYcA A44dza8sw96/+dRIY5YvzbqjgYJ5YvPXR6RW0TZGyUvnT2ytk8bVo8rGFVcuXsjc Nm7VDE0D8jJI+UCEGblPXCKY9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLk+Y7QW BSby2i7WjUddXxM2i1fjMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPX3Yluj1t9WhS1fv7t21SVYb97z/3dItebUDA8J6IgfeMVy1Ovmt3bhW6bY8 pEWBW18Qqun36rjtQ0F1f6R5LC8qnCCur6+WbK6wTwJQySIJsdi613Q9d5Okl5lb oHHJytjXwQ4oLjo3C9XLXReO9dFKA61tXCT5b8z5F0etytXyImUK5T4rjHeqsUMC POU0W24YfT4u/3VqgwWUg1wvr/EA01sS1P1xWjZW4Wm2WgM1ZN2xzXIGNxFl5BOb NgNijXAYFtHvhMGh04QGMNybDEcCASkhEHncumaFsFPTFA7ihkuS5ys8elaQ0W7F wQ0O8e+tioMwFDy+Qu4ARU7pyg== -----END CERTIFICATE-----Generated at Tue May 12 22:31:44 2026 by rpki-client