$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft File: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft (raw, json) Hash identifier: Wr6odCH0+gUH2kK4SSX9y1MZDS8sl34yhXd2Bq+84y0= Subject key identifier: BB:E9:E8:C5:44:55:21:D4:BD:DE:F0:03:F4:5C:25:24:A7:3D:36:DA Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 08C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft Manifest number: 08AE Signing time: Tue 12 May 2026 20:33:42 +0000 Manifest this update: Tue 12 May 2026 20:33:42 +0000 Manifest next update: Tue 19 May 2026 20:33:42 +0000 Files and hashes: 1: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl (hash: v2JmntGGERBOd6U4acHSRiNcoJwLvNUR32LB4ZxTzE8=) 2: B94BEEA036D811ECB5BD1470C4F9AE02.roa (hash: +xbbDGKjJ6DqQpBrbDd8JJCmqdHxccmvBDGEJY8Y1eA=) 3: DA0C233E3EE411ED905A3415C4F9AE02.roa (hash: mf6qln82PscHDH0xPIvnUcgowJvdgyrORzlGrhrol0w=) 4: 903E8812E38A11EAA3B8AE59C4F9AE02.roa (hash: GhHf45/vb5I/X0MIOpzOvwX20CEWTC0IaH/0NH4EfF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2248 (0x8c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539, serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: May 12 20:33:42 2026 GMT Not After : May 19 20:33:42 2026 GMT Subject: CN=6a038ea6-364e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6f:ee:ec:be:f3:8e:0e:f5:7e:75:fe:c8:f0: 83:5e:46:fc:4a:b1:b4:27:f0:9d:81:fb:76:a0:71: 9a:d1:c3:0b:6b:ac:83:14:9f:30:0c:9e:a3:3d:78: a9:d3:b8:5c:ca:1a:26:00:17:b8:54:0a:22:61:24: 37:c7:0d:3f:d9:5a:e8:8f:f4:40:96:58:d9:76:1e: 1b:29:6e:77:8b:eb:5a:4e:10:ee:d5:5e:a6:4f:b7: b6:79:23:af:02:4d:dc:6b:e9:5b:6e:49:1c:d6:b6: ce:be:b7:dc:54:1b:4e:f4:af:82:d2:4c:7a:ea:2c: 98:6a:84:8e:42:8e:3b:c1:02:be:1e:54:64:57:8a: a3:8c:ff:db:77:08:b4:c0:b1:37:64:ac:6e:c6:a1: 12:da:38:01:c9:ca:af:93:06:5f:48:55:3e:fe:f7: 89:67:98:5f:fa:e0:9c:e0:8e:bc:d6:ad:7b:19:1a: fb:5b:50:f3:70:d4:96:09:82:03:bd:ed:24:92:9b: 29:a3:d0:0c:f7:55:53:91:f6:a0:e6:b3:17:1a:30: 74:ba:83:dc:8f:32:2f:71:ff:50:a9:6a:0f:cb:2c: 5d:51:86:15:ce:d4:6b:08:e2:41:57:53:0e:f4:20: a0:e5:e9:40:c0:d7:2f:38:80:95:9b:a6:1b:99:f5: 97:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E9:E8:C5:44:55:21:D4:BD:DE:F0:03:F4:5C:25:24:A7:3D:36:DA X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:14:e1:7f:cc:9b:87:de:77:1d:25:98:80:d2:72:75:d0:76: 79:77:ef:46:07:b2:f8:07:e4:c8:d6:04:28:7d:f8:1b:ab:37: f9:5e:14:24:16:68:65:54:b5:cf:d5:45:9c:b6:4b:89:8d:c5: 15:55:c9:c4:18:1b:07:fb:0e:4d:f7:36:88:11:78:b2:4b:59: 2c:47:fd:9a:e8:d5:61:61:14:15:de:63:88:e7:d8:0a:d3:3f: b5:05:57:5d:d8:fc:61:54:bf:17:68:f5:90:99:f5:00:8a:ce: 89:52:2b:d2:e5:cf:b1:70:80:e1:13:9a:d7:6e:1a:e8:fc:1e: 4c:4e:e7:eb:5b:3f:fe:76:69:c0:ab:f7:f5:74:84:9e:aa:7d: d6:96:86:60:8b:7d:8c:75:04:4a:ee:32:fd:b4:48:e1:49:ea: 1c:34:64:59:e6:8d:f9:b9:cd:eb:75:4b:e5:8d:c8:15:33:bb: 2d:ff:17:0e:84:f2:49:e0:5d:01:ea:4e:38:22:48:70:83:e0: 21:7d:3f:b0:8a:3c:78:8d:34:cb:b4:90:0e:1e:f5:1f:4f:c6: 0a:b4:47:37:50:77:d3:15:6a:96:b1:68:f2:c2:61:7a:0c:90: ed:96:bf:1a:d8:51:c2:82:49:5e:24:e3:1c:90:46:4a:5f:fc: a1:ce:f8:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjYwNTEyMjAzMzQyWhcNMjYwNTE5MjAzMzQyWjAYMRYwFAYD VQQDEw02YTAzOGVhNi0zNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW/u7L7zjg71fnX+yPCDXkb8SrG0J/Cdgft2oHGa0cMLa6yDFJ8wDJ6jPXip 07hcyhomABe4VAoiYSQ3xw0/2Vroj/RAlljZdh4bKW53i+taThDu1V6mT7e2eSOv Ak3ca+lbbkkc1rbOvrfcVBtO9K+C0kx66iyYaoSOQo47wQK+HlRkV4qjjP/bdwi0 wLE3ZKxuxqES2jgBycqvkwZfSFU+/veJZ5hf+uCc4I681q17GRr7W1DzcNSWCYID ve0kkpspo9AM91VTkfag5rMXGjB0uoPcjzIvcf9QqWoPyyxdUYYVztRrCOJBV1MO 9CCg5elAwNcvOICVm6YbmfWXMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLvp6MVE VSHUvd7wA/RcJSSnPTbaMB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzOS9DMTI2NURDMEUzODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1 UEV6VEhKX3VlaVRlZ0I4dGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsxThf8ybh953HSWYgNJyddB2eXfvRgey+AfkyNYEKH34G6s3+V4UJBZoZVS1 z9VFnLZLiY3FFVXJxBgbB/sOTfc2iBF4sktZLEf9mujVYWEUFd5jiOfYCtM/tQVX Xdj8YVS/F2j1kJn1AIrOiVIr0uXPsXCA4ROa124a6PweTE7n61s//nZpwKv39XSE nqp91paGYIt9jHUESu4y/bRI4UnqHDRkWeaN+bnN63VL5Y3IFTO7Lf8XDoTySeBd AepOOCJIcIPgIX0/sIo8eI00y7SQDh71H0/GCrRHN1B30xVqlrFo8sJhegyQ7Za/ GthRwoJJXiTjHJBGSl/8oc74gg== -----END CERTIFICATE-----Generated at Wed May 13 08:19:26 2026 by rpki-client