$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: 8rZPEa+C7c/y+Dc0HQZPwo9GHmLo7aDwhj2iFqi8mwU= Subject key identifier: 67:E5:67:DA:F6:CB:6D:6E:98:CA:33:BE:07:65:02:55:D3:35:1B:47 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 018B Signing time: Mon 11 May 2026 04:29:03 +0000 Manifest this update: Mon 11 May 2026 04:29:02 +0000 Manifest next update: Mon 18 May 2026 04:29:02 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: BIm6Wf4Rxj1YNOGOZXp7ACMvfT0bPv2E8DgB7Ju3g1A=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: LehxYUyNY+Aih3/gKb031XwxWefiznlK8xHHelOl+ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: May 11 04:29:02 2026 GMT Not After : May 18 04:29:02 2026 GMT Subject: CN=6a015b0f-dab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bc:c3:9f:ac:93:80:9a:6d:53:bf:99:57:73: d0:7c:7b:76:5b:86:54:85:e1:16:fd:22:b5:54:33: 47:fb:eb:70:ab:7e:f9:de:8e:9a:61:af:13:74:86: 4f:6c:5c:72:d4:55:2e:f2:5d:56:ab:73:48:4f:5c: ea:1e:42:31:17:c1:3c:ae:54:45:71:5e:ae:e1:c8: f0:af:3e:46:82:45:0f:69:fa:83:35:52:68:cb:55: 67:a2:2a:d7:43:ca:e1:fc:92:f6:cb:64:e8:dc:b3: 55:63:3a:28:f7:1a:51:ac:de:9f:e6:5b:37:7b:f0: d1:8d:32:9a:d3:fd:d5:3d:6a:d7:5e:a5:15:d8:a7: 83:92:77:5c:7e:5b:fd:be:3a:d9:8a:c0:56:8f:9d: f2:3c:e2:5d:3d:73:9b:2c:fc:3f:f0:84:2c:e6:8a: c9:91:a0:30:ca:be:7c:90:9b:29:32:82:0d:83:9d: 3e:19:08:89:a0:f1:08:cc:bf:c7:34:1f:cd:7d:5e: 41:5a:68:66:41:27:79:8d:88:d8:bb:76:16:c9:77: df:2b:96:6d:57:c7:31:5e:1f:db:a4:38:6c:71:70: 85:3a:bf:64:47:60:e7:45:02:2c:ba:ba:1d:a1:95: 41:0f:1a:70:74:41:f5:e8:16:a1:33:8a:8e:0c:ed: ba:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E5:67:DA:F6:CB:6D:6E:98:CA:33:BE:07:65:02:55:D3:35:1B:47 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:df:ac:cd:f9:87:f5:5a:bf:18:d6:1f:eb:be:ed:18:83:b7: 4a:2b:5f:9f:05:63:85:cf:79:34:79:6d:b7:45:4a:e0:07:75: 09:01:56:75:f2:9b:7b:1c:20:ad:78:51:14:e7:33:d1:d6:a9: ef:da:74:7c:9e:7c:e4:76:8c:1c:73:f4:d0:82:e5:3c:cc:b3: a7:60:13:46:19:1a:f6:34:8d:ba:3a:5a:df:46:95:6d:4d:c3: 5c:36:f3:f6:03:20:f2:da:fb:c4:58:a1:be:60:28:84:49:20: 5e:a4:c6:ec:5c:a5:d0:29:2f:c2:a0:1b:25:2f:72:21:12:1f: c9:32:80:f6:e7:7a:78:44:d6:f9:af:f9:35:e5:e0:2b:52:92: 06:7b:97:35:e3:d3:7b:86:1c:49:27:ef:d2:13:22:52:b9:5a: f4:5a:a4:9c:3c:b7:29:fe:ed:7c:c3:c6:d1:79:c5:98:21:d8: d6:47:46:66:a8:38:f1:74:7d:a3:02:d8:72:2f:4f:0a:b0:30: 37:34:6e:ba:02:b0:42:b7:d4:f8:65:f6:6d:00:fa:47:98:f0: 71:45:4a:22:c6:c3:84:95:17:5b:4d:d9:77:b5:36:cf:f7:b6: f0:1a:97:8b:e0:93:e8:52:6f:33:a4:fd:5b:86:86:4c:c4:66: 9a:ad:bc:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjYwNTExMDQyOTAyWhcNMjYwNTE4MDQyOTAyWjAYMRYwFAYD VQQDEw02YTAxNWIwZi1kYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLzDn6yTgJptU7+ZV3PQfHt2W4ZUheEW/SK1VDNH++twq3753o6aYa8TdIZP bFxy1FUu8l1Wq3NIT1zqHkIxF8E8rlRFcV6u4cjwrz5GgkUPafqDNVJoy1VnoirX Q8rh/JL2y2To3LNVYzoo9xpRrN6f5ls3e/DRjTKa0/3VPWrXXqUV2KeDkndcflv9 vjrZisBWj53yPOJdPXObLPw/8IQs5orJkaAwyr58kJspMoINg50+GQiJoPEIzL/H NB/NfV5BWmhmQSd5jYjYu3YWyXffK5ZtV8cxXh/bpDhscXCFOr9kR2DnRQIsurod oZVBDxpwdEH16BahM4qODO26IQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGflZ9r2 y21umMozvgdlAlXTNRtHMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQN+szfmH9Vq/GNYf677tGIO3SitfnwVjhc95NHltt0VK4Ad1CQFWdfKbexwg rXhRFOcz0dap79p0fJ585HaMHHP00ILlPMyzp2ATRhka9jSNujpa30aVbU3DXDbz 9gMg8tr7xFihvmAohEkgXqTG7Fyl0CkvwqAbJS9yIRIfyTKA9ud6eETW+a/5NeXg K1KSBnuXNePTe4YcSSfv0hMiUrla9FqknDy3Kf7tfMPG0XnFmCHY1kdGZqg48XR9 owLYci9PCrAwNzRuugKwQrfU+GX2bQD6R5jwcUVKIsbDhJUXW03Zd7U2z/e28BqX i+CT6FJvM6T9W4aGTMRmmq28Iw== -----END CERTIFICATE-----Generated at Wed May 13 05:09:49 2026 by rpki-client