$ rpki-client -vvf rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.mft File: BmIVgepjVqm4tbC9s26io0KBciU.mft (raw, json) Hash identifier: U3yq4mVTudEdVViQjXUoO5PJThwJco7ctCf2Goww/LA= Subject key identifier: 08:8F:B7:06:D3:90:97:6F:B6:D3:9F:C8:54:92:BC:B5:40:4D:95:A4 Authority key identifier: 06:62:15:81:EA:63:56:A9:B8:B5:B0:BD:B3:6E:A2:A3:42:81:72:25 Certificate issuer: /CN=A918D9E8/serialNumber=06621581EA6356A9B8B5B0BDB36EA2A342817225 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmIVgepjVqm4tbC9s26io0KBciU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.mft Manifest number: 26 Signing time: Mon 11 May 2026 08:59:18 +0000 Manifest this update: Mon 11 May 2026 08:59:18 +0000 Manifest next update: Mon 18 May 2026 08:59:18 +0000 Files and hashes: 1: BmIVgepjVqm4tbC9s26io0KBciU.crl (hash: 0LzFpQIfecgeheemQWGUCE9POBQ0fP2PtD1YN7l2qKE=) 2: 0EEDB772174D11F193D7AA7E173D8C67.roa (hash: y6pgs+n3x+EaANPspWEoZC1ehkpn8O/za+IreRLvylU=) 3: 3829F376174D11F19A004491173D8C67.roa (hash: 0k0rXsYRdBQmrsruCwfnV2JmIIADeibhHxkfkqZPiGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.crl rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmIVgepjVqm4tbC9s26io0KBciU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D9E8, serialNumber=06621581EA6356A9B8B5B0BDB36EA2A342817225 Validity Not Before: May 11 08:59:18 2026 GMT Not After : May 18 08:59:18 2026 GMT Subject: CN=6a019a66-7a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2b:af:6b:4b:2c:84:f8:e7:97:7c:0f:fc:10: 02:ca:34:dc:d5:1b:e0:00:79:29:c9:49:0b:24:3a: 7d:fb:4d:72:c2:3b:3e:cc:db:cc:59:a4:2f:f1:83: 8e:18:e9:4b:ad:94:4a:1b:dc:30:12:b7:97:df:1f: 52:b8:c4:89:8a:2a:05:52:e8:0b:b1:2e:66:09:81: df:e9:07:2c:cf:31:1c:8f:16:b6:17:1a:a6:22:04: 15:18:17:8c:63:e0:70:04:e7:27:43:1e:02:c0:f3: 90:50:b4:8d:9a:38:9e:6d:9c:f9:58:57:9f:62:0a: 17:4d:1b:68:24:12:07:32:91:0e:a2:d1:21:e5:8d: f6:2a:33:b3:01:1f:4b:f8:61:a1:69:37:d0:0f:9c: 93:c4:d7:33:90:ce:5b:50:45:0d:00:dc:0e:ac:cf: 6a:a4:fd:02:c9:8b:3e:68:02:ed:43:38:a1:db:f4: c8:c6:cb:5f:60:84:07:ee:21:0e:78:86:9b:27:e3: ec:f7:e0:6b:75:6d:29:81:b7:96:1c:e6:96:b5:a5: 4e:4f:ae:85:75:72:da:41:18:89:f1:5d:60:88:3a: 33:1e:66:ec:84:e2:f2:33:cc:12:93:f8:89:59:14: a8:67:16:ea:68:d2:67:b2:9b:e3:f5:f2:78:61:fc: 19:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8F:B7:06:D3:90:97:6F:B6:D3:9F:C8:54:92:BC:B5:40:4D:95:A4 X509v3 Authority Key Identifier: keyid:06:62:15:81:EA:63:56:A9:B8:B5:B0:BD:B3:6E:A2:A3:42:81:72:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmIVgepjVqm4tbC9s26io0KBciU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D9E8/DAA477E4174C11F1A119F4D8163D8C67/BmIVgepjVqm4tbC9s26io0KBciU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:82:7f:0d:0a:ca:e5:95:7d:25:d0:2e:aa:d5:3a:61:86:e8: f7:f0:9e:e1:53:7e:af:87:78:6a:a2:56:99:0f:a5:59:59:53: ed:2d:a5:2c:65:ba:6d:67:7e:7a:fc:c8:cb:45:ae:d0:40:03: b5:95:47:89:74:0b:7a:da:5c:2b:bf:88:92:9b:c3:89:d7:99: e8:02:a3:4e:a3:96:b6:09:1d:e7:ef:80:b8:bc:ec:55:9f:f5: 7a:b5:ae:18:b6:67:49:d9:5e:0a:49:b9:fd:07:70:a2:87:8e: 08:51:11:ee:63:16:07:22:4a:7c:68:2b:86:aa:3b:6d:73:f6: 5f:1b:79:7e:ca:11:a9:ef:c7:39:6f:e1:00:aa:a2:68:fc:74: df:a3:a2:3b:f7:22:02:fd:d4:25:e1:8a:a1:d2:8c:8c:b6:32: df:8c:71:16:0b:e0:3c:53:f2:8e:69:3a:43:fa:e7:b8:63:54: 85:12:a5:74:49:34:51:a2:e6:3c:79:87:d2:01:6a:62:b0:c4: 1b:55:f3:ef:65:1b:29:c3:bc:53:8d:23:17:49:4b:48:9c:84: ec:2f:97:2b:7e:27:65:7b:72:31:e8:2e:03:7a:5c:d2:c9:4e: e9:67:dc:3b:20:db:83:da:aa:b7:25:94:93:38:4e:48:e4:46: 68:64:4f:4e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDlFODExMC8GA1UEBRMoMDY2MjE1ODFFQTYzNTZBOUI4QjVCMEJEQjM2RUEyQTM0 MjgxNzIyNTAeFw0yNjA1MTEwODU5MThaFw0yNjA1MTgwODU5MThaMBgxFjAUBgNV BAMTDTZhMDE5YTY2LTdhM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1K69rSyyE+OeXfA/8EALKNNzVG+AAeSnJSQskOn37TXLCOz7M28xZpC/xg44Y 6UutlEob3DASt5ffH1K4xImKKgVS6AuxLmYJgd/pByzPMRyPFrYXGqYiBBUYF4xj 4HAE5ydDHgLA85BQtI2aOJ5tnPlYV59iChdNG2gkEgcykQ6i0SHljfYqM7MBH0v4 YaFpN9APnJPE1zOQzltQRQ0A3A6sz2qk/QLJiz5oAu1DOKHb9MjGy19ghAfuIQ54 hpsn4+z34Gt1bSmBt5Yc5pa1pU5ProV1ctpBGInxXWCIOjMeZuyE4vIzzBKT+IlZ FKhnFupo0meym+P18nhh/BkLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCI+3BtOQ l2+205/IVJK8tUBNlaQwHwYDVR0jBBgwFoAUBmIVgepjVqm4tbC9s26io0KBciUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEOUU4L0RBQTQ3N0U0MTc0 QzExRjFBMTE5RjREODE2M0Q4QzY3L0JtSVZnZXBqVnFtNHRiQzlzMjZpbzBLQmNp VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQm1JVmdlcGpWcW00dGJDOXMyNmlvMEtCY2lVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE OUU4L0RBQTQ3N0U0MTc0QzExRjFBMTE5RjREODE2M0Q4QzY3L0JtSVZnZXBqVnFt NHRiQzlzMjZpbzBLQmNpVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBagn8NCsrllX0l0C6q1Tphhuj38J7hU36vh3hqolaZD6VZWVPtLaUsZbptZ356 /MjLRa7QQAO1lUeJdAt62lwrv4iSm8OJ15noAqNOo5a2CR3n74C4vOxVn/V6ta4Y tmdJ2V4KSbn9B3Cih44IURHuYxYHIkp8aCuGqjttc/ZfG3l+yhGp78c5b+EAqqJo /HTfo6I79yIC/dQl4Yqh0oyMtjLfjHEWC+A8U/KOaTpD+ue4Y1SFEqV0STRRouY8 eYfSAWpisMQbVfPvZRspw7xTjSMXSUtInITsL5crfidle3Ix6C4DelzSyU7pZ9w7 INuD2qq3JZSTOE5I5EZoZE9O -----END CERTIFICATE-----Generated at Wed May 13 08:19:23 2026 by rpki-client