$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: EANlFdYzGuF15LOuTAx+TCf6ixyuCWy5R0uwRtA+EQg= Subject key identifier: A9:FD:27:E1:D9:3E:B5:B8:B0:C4:3B:67:21:3C:EA:9A:22:FE:47:B8 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0C09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0BD7 Signing time: Tue 12 May 2026 18:59:58 +0000 Manifest this update: Tue 12 May 2026 18:59:58 +0000 Manifest next update: Tue 19 May 2026 18:59:58 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: JV0aMvHfmSc+s2nQabpg/dVUSqWSb3F+HsgBCnvcB9Y=) 2: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: RzHBWYWw5IHkZGciQV9CfmaSyQYYH4ManuyCrGOl3Iw=) 3: 4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa (hash: 2xZ7k/voMKzDAbPl0iSayXcIKNq/l+8uvtLON3JZksk=) 4: 4AD53F9AEA0B11F09069D0EA6F6F56BC.roa (hash: naputKDT4YFCuDBkowHlF1Y5kTitkWFz9voR8iEVFrQ=) 5: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: m6A5k7GrCQsQt6UQStLqk4vDI2cF1RjOvSbk8wVUoVE=) 6: 49E05638EA0B11F09069D0EA6F6F56BC.roa (hash: 5lCa0uM9qsyo4Ls9OwY1shMD+q998RLPGqM4GruFZ8A=) 7: 8137CEBC07E911F18CE8BD7B223D8C67.roa (hash: wHgEjCXqndOJLXZ9J6FfS2MgjM1Wq0AwJ0Oymtfq0bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3081 (0xc09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: May 12 18:59:58 2026 GMT Not After : May 19 18:59:58 2026 GMT Subject: CN=6a0378ae-4328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:78:47:ab:be:3c:4d:2c:b2:2d:dd:dc:ac:47: df:3e:34:78:12:3a:e6:fd:bd:5f:ac:6c:ce:36:eb: 99:dd:c9:1e:d7:37:3d:be:05:92:5f:37:6a:6d:b0: 28:68:f9:f3:b4:37:97:cb:f3:58:1d:8c:e1:5c:9e: 27:07:d2:93:8c:08:c5:1a:b3:71:f4:0a:b6:37:f3: 6f:fe:de:ff:12:02:24:28:ec:34:fd:09:93:cc:45: 09:07:63:cd:fa:ed:f0:07:c1:da:c6:8b:db:c7:76: df:26:1c:78:8d:80:a3:0f:fe:ee:4c:3a:70:41:d5: d4:ea:8a:f7:0a:1f:4c:3e:3e:5c:ff:8e:49:a9:61: f7:15:e0:8b:bd:14:e4:dd:c5:dd:3c:f3:bf:32:8f: a1:91:5f:ba:29:e1:76:b2:54:70:58:ab:9c:bf:30: 14:2d:3d:84:8d:5f:41:fe:64:ce:da:0d:61:7a:26: 38:b0:42:5b:33:d9:62:c2:26:bc:f5:05:19:12:c0: 63:a0:6b:8b:26:81:44:48:c0:20:c6:40:ee:64:ad: f0:3b:6e:fe:88:48:fe:84:1f:f3:3c:d0:a4:63:24: d5:09:8c:f9:e4:c6:7a:fb:8d:db:83:c8:31:9d:3f: 7a:82:48:6c:1d:6b:e3:15:db:22:3a:34:f9:9a:d2: 75:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FD:27:E1:D9:3E:B5:B8:B0:C4:3B:67:21:3C:EA:9A:22:FE:47:B8 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2e:f0:79:c3:31:79:d5:05:87:76:f7:1b:5c:a9:f4:19:71: 44:54:9d:e9:49:c2:07:0c:25:51:a6:17:bb:8c:ec:63:13:10: 6a:ad:23:0f:90:4d:4d:1d:10:74:35:1a:7f:07:9a:7b:0c:17: 19:94:30:34:b3:0e:5a:fd:0f:67:3d:d9:11:0d:1f:50:cf:f4: ee:48:8e:38:d9:fd:3c:82:fd:da:1b:f4:a8:ce:73:ba:5c:39: ee:bf:94:8b:ec:3d:6b:0c:6d:d4:66:25:11:13:1f:0e:da:c8: 09:cc:21:b9:bf:f5:2a:22:a4:c4:bc:69:4d:cc:9a:40:17:1d: e9:0b:29:cf:64:2e:21:86:f9:00:46:e8:c7:16:0c:79:54:00: 5e:02:80:6d:b4:f6:78:08:b6:4a:bd:fd:c6:18:97:15:b9:4d: 57:4c:fb:d1:97:51:c6:75:e3:40:e6:08:09:a6:7d:13:97:c3: 3e:ac:47:82:8d:d3:f2:22:3f:e2:4b:33:c0:a7:a3:37:71:b9: 5a:ee:a5:b5:38:bb:eb:13:52:cb:d6:b9:58:ed:89:7b:d1:e8: 48:28:5b:37:f6:78:9f:26:6e:db:1e:a0:a4:fe:d6:f5:d2:25: eb:38:d0:1c:bc:89:b1:15:cb:f1:9b:0e:fd:ce:a2:63:a9:53: bc:67:5a:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwNTEyMTg1OTU4WhcNMjYwNTE5MTg1OTU4WjAYMRYwFAYD VQQDEw02YTAzNzhhZS00MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23hHq748TSyyLd3crEffPjR4Ejrm/b1frGzONuuZ3cke1zc9vgWSXzdqbbAo aPnztDeXy/NYHYzhXJ4nB9KTjAjFGrNx9Aq2N/Nv/t7/EgIkKOw0/QmTzEUJB2PN +u3wB8Haxovbx3bfJhx4jYCjD/7uTDpwQdXU6or3Ch9MPj5c/45JqWH3FeCLvRTk 3cXdPPO/Mo+hkV+6KeF2slRwWKucvzAULT2EjV9B/mTO2g1heiY4sEJbM9liwia8 9QUZEsBjoGuLJoFESMAgxkDuZK3wO27+iEj+hB/zPNCkYyTVCYz55MZ6+43bg8gx nT96gkhsHWvjFdsiOjT5mtJ1LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKn9J+HZ PrW4sMQ7ZyE86poi/ke4MB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADi7wecMxedUFh3b3G1yp9BlxRFSd6UnCBwwlUaYXu4zsYxMQaq0jD5BNTR0Q dDUafweaewwXGZQwNLMOWv0PZz3ZEQ0fUM/07kiOONn9PIL92hv0qM5zulw57r+U i+w9awxt1GYlERMfDtrICcwhub/1KiKkxLxpTcyaQBcd6Qspz2QuIYb5AEboxxYM eVQAXgKAbbT2eAi2Sr39xhiXFblNV0z70ZdRxnXjQOYICaZ9E5fDPqxHgo3T8iI/ 4kszwKejN3G5Wu6ltTi76xNSy9a5WO2Je9HoSChbN/Z4nyZu2x6gpP7W9dIl6zjQ HLyJsRXL8ZsO/c6iY6lTvGdaZA== -----END CERTIFICATE-----Generated at Wed May 13 03:36:26 2026 by rpki-client