$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: dy+mw/mtkCUka2vqpCUY2RiN99Et1FkhK8q0VnxSjSk= Subject key identifier: EF:9D:F9:63:05:C9:B2:D5:D2:5A:A9:14:68:45:01:7C:3C:90:18:20 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 0417 Signing time: Wed 13 May 2026 00:31:09 +0000 Manifest this update: Wed 13 May 2026 00:31:08 +0000 Manifest next update: Wed 20 May 2026 00:31:08 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: C2iFv2UIYvU9LwX4uCBYF8cB6kmBlAa5ZdMvTmDGURs=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: H8iyGcp2slRPrtqT5icu1v/N051MgbZlmONF3nH7f+s=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: 4RqePFXcxznoJVl6w8IMckwXSaVn5QEpwopGGGBw+nA=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: oMimkeYYl7dxiacxecAGj8I+bq56ZODIoHCIkyIFzMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: May 13 00:31:08 2026 GMT Not After : May 20 00:31:08 2026 GMT Subject: CN=6a03c64d-2c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b1:58:f9:76:e5:53:6d:83:34:97:91:c6:1d: 09:8c:25:7d:bb:c6:ef:a0:4f:3f:28:52:6d:4f:41: be:0b:de:41:1b:e3:d8:c6:bf:8b:54:89:f0:14:0b: bc:31:d3:1b:78:72:00:56:cf:35:c3:0a:eb:6b:3f: 9e:0a:f1:bb:90:66:6b:34:8c:df:a6:ed:f9:68:ad: 03:6b:0e:b5:ac:60:33:37:36:25:91:5d:85:8f:7a: 8f:14:57:4d:d4:67:89:e6:eb:f7:df:29:6e:23:33: 7f:17:d7:8d:07:52:90:91:35:c2:e3:e9:a3:20:9c: 31:cc:0a:16:c3:90:d1:b7:4a:8e:4b:65:62:f9:c5: 63:1b:4d:57:35:d1:b5:17:17:54:c4:0b:49:f5:1a: ae:1e:5a:7e:05:f9:fd:b0:8d:82:26:f3:02:63:61: fa:6a:bf:35:1b:0b:de:8a:f7:c6:a1:c4:d9:ca:e0: ad:0f:e1:e7:4f:b0:0b:65:90:c5:85:7f:2b:b5:67: ad:29:c4:a6:66:55:e2:b7:c5:d6:11:31:13:06:3f: 04:ef:c1:bb:6c:1c:7c:aa:dc:8b:d4:f2:6c:63:4c: b2:cc:32:16:ef:ac:ab:24:59:6c:dc:4f:b0:c8:cb: 7d:78:ce:d9:43:d8:a5:6b:bc:ba:cd:39:a7:41:d1: 04:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9D:F9:63:05:C9:B2:D5:D2:5A:A9:14:68:45:01:7C:3C:90:18:20 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e2:9c:04:71:9d:9b:7f:d7:4b:6d:83:6d:af:11:e6:f3:6b: 8e:03:7a:58:a5:74:02:1e:3d:11:0f:d4:bb:aa:69:e8:1f:ab: 37:f1:94:4b:fe:93:d4:e9:03:25:62:f7:fc:d3:ef:71:6d:af: 7e:28:00:4b:82:3f:b1:46:ff:c4:5d:50:5f:13:c2:59:29:02: a2:d3:cb:2a:b7:ba:d4:d4:aa:f3:18:bd:cb:0b:20:31:e4:ed: 7c:78:6e:b2:71:65:55:e2:24:cb:4f:d5:1a:a9:56:ef:22:53: dc:5a:77:5a:7d:e0:69:a8:a6:50:24:96:01:c1:48:67:a9:3e: 1a:3c:72:26:6e:01:80:6e:76:e3:40:95:0f:21:d4:41:a6:fa: 6f:3a:bf:15:0d:e7:aa:c9:bc:1c:0c:33:0c:20:21:8a:df:9b: 7e:7c:d7:cb:f4:f0:3e:34:d9:ba:4f:45:f5:fd:5b:ea:7e:9c: 68:98:a5:ca:5d:1a:e9:18:f5:95:95:f4:1e:9d:f4:ab:7d:6d: ab:51:8f:47:f2:25:62:27:fc:fd:ed:15:b0:6d:bb:b0:dd:7d: 8d:70:57:08:1f:4c:16:2f:e2:79:f6:9b:64:c0:c2:5c:df:6a: 70:34:96:ba:58:ad:43:ac:9f:cf:e4:d2:32:d2:b2:45:be:82: 21:d2:ae:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjYwNTEzMDAzMTA4WhcNMjYwNTIwMDAzMTA4WjAYMRYwFAYD VQQDEw02YTAzYzY0ZC0yYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrFY+XblU22DNJeRxh0JjCV9u8bvoE8/KFJtT0G+C95BG+PYxr+LVInwFAu8 MdMbeHIAVs81wwrraz+eCvG7kGZrNIzfpu35aK0Daw61rGAzNzYlkV2Fj3qPFFdN 1GeJ5uv33yluIzN/F9eNB1KQkTXC4+mjIJwxzAoWw5DRt0qOS2Vi+cVjG01XNdG1 FxdUxAtJ9RquHlp+Bfn9sI2CJvMCY2H6ar81GwveivfGocTZyuCtD+HnT7ALZZDF hX8rtWetKcSmZlXit8XWETETBj8E78G7bBx8qtyL1PJsY0yyzDIW76yrJFls3E+w yMt9eM7ZQ9ila7y6zTmnQdEEMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO+d+WMF ybLV0lqpFGhFAXw8kBggMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJuKcBHGdm3/XS22Dba8R5vNrjgN6WKV0Ah49EQ/Uu6pp6B+rN/GUS/6T1OkD JWL3/NPvcW2vfigAS4I/sUb/xF1QXxPCWSkCotPLKre61NSq8xi9ywsgMeTtfHhu snFlVeIky0/VGqlW7yJT3Fp3Wn3gaaimUCSWAcFIZ6k+GjxyJm4BgG5240CVDyHU Qab6bzq/FQ3nqsm8HAwzDCAhit+bfnzXy/TwPjTZuk9F9f1b6n6caJilyl0a6Rj1 lZX0Hp30q31tq1GPR/IlYif8/e0VsG27sN19jXBXCB9MFi/iefabZMDCXN9qcDSW ulitQ6yfz+TSMtKyRb6CIdKuKA== -----END CERTIFICATE-----Generated at Wed May 13 05:04:57 2026 by rpki-client