$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: SNCod4G5Rb6vF5VURxlHKD59Cear1fNTHCVZaDICYKU= Subject key identifier: 8D:F4:AF:B7:C7:7D:B1:B5:4D:B7:B0:BC:9E:12:06:AC:DB:DF:9D:22 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0AA3 Signing time: Tue 12 May 2026 19:34:06 +0000 Manifest this update: Tue 12 May 2026 19:34:05 +0000 Manifest next update: Tue 19 May 2026 19:34:05 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: oSXz8id21zokGVxBe9iPyh+SOQj4RPoxZsyiRFHJ2Es=) 2: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: MN08xTHQWyAMmrT/Pkdf4mSOvLZ+rB9gXlkcOfJJ9xI=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: AAIxMzs/gvYk9K/xu4n64rt4zSe4EjThnQNO0Ai3Jj8=) 4: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: K1UTUb7anKdBiS5H6cyi3Qvilb7AAyufcdHnMSB1SCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: May 12 19:34:05 2026 GMT Not After : May 19 19:34:05 2026 GMT Subject: CN=6a0380ae-2976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:58:22:db:d8:e2:8a:4f:7a:1b:69:e1:63:a6: e3:5c:ce:0e:08:fe:9b:c3:4f:79:a4:64:d1:08:a1: 3f:c2:e2:3e:90:47:5f:ba:f9:44:37:6d:33:44:9c: 52:8e:8d:ca:6b:0c:c3:a1:cb:61:90:f9:e4:37:5c: fd:ef:d7:38:47:e2:cf:7e:4a:12:f5:e2:c2:31:a0: a0:43:f0:41:c1:5c:c9:21:e2:3d:5b:7f:bf:6c:7a: 3e:1d:d2:60:c2:8d:a9:a8:ed:59:f4:ef:7d:17:0d: b2:68:34:d3:42:c1:d7:50:26:f6:2e:8c:e1:8f:76: 97:5a:71:fc:f4:7d:ab:08:63:65:8e:dd:f3:ff:1c: a7:84:08:57:f0:f2:22:f7:c2:77:79:9b:eb:31:70: b4:a7:49:b8:6e:b9:4a:5f:46:52:f7:03:d0:c0:3a: 50:22:f5:65:1f:66:55:05:44:72:56:30:c4:b1:4e: e9:63:35:6e:b2:ca:94:28:6b:25:b8:e4:05:f1:20: 95:6c:b8:1e:eb:e8:ad:6e:e4:38:be:0a:33:bc:54: 8b:fe:76:79:a3:44:2d:e3:0a:6c:29:1e:a6:db:bd: 1f:14:7a:7e:f4:32:85:f6:37:be:19:ac:4d:c5:4d: 65:ec:3e:92:b1:1a:fe:da:59:5d:ff:25:dc:a6:41: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F4:AF:B7:C7:7D:B1:B5:4D:B7:B0:BC:9E:12:06:AC:DB:DF:9D:22 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:c1:fe:45:22:18:a0:ad:7a:7a:5f:b6:ed:11:dd:fc:c2:8d: 31:b9:dd:0e:d8:bc:34:d3:5e:8f:02:3a:90:8e:8a:a8:7f:b0: f9:99:60:a7:95:6d:c7:98:c2:9d:e0:f7:66:cc:cc:8a:92:bd: 5c:2c:cf:96:29:f7:ee:8d:d2:dd:0b:9b:5e:60:48:e4:66:c7: db:63:73:81:5a:c9:7c:b7:57:f0:0d:26:3d:1e:69:d2:1a:26: 26:21:10:34:40:5c:96:50:c0:31:b5:74:8a:6d:ba:41:7b:e7: 92:20:24:29:b8:5d:f0:5d:6e:96:fb:90:42:bf:e6:8b:b8:ac: 23:8e:91:5a:4f:3b:c0:c1:d6:12:18:55:f3:f3:16:c1:dd:b7: 1e:de:a8:10:03:39:32:ea:fc:1b:78:6d:aa:c1:99:40:47:83: 33:66:95:b3:7e:b1:81:2f:15:16:30:57:e5:dd:39:6b:b5:b5: d5:d0:03:13:56:e0:3f:ff:31:59:bd:d6:de:c5:03:95:de:c7: 89:2b:ad:ed:3c:a0:61:c6:b8:69:4a:ec:7a:b5:01:4d:66:80: 66:57:d7:af:7f:11:3a:31:ae:b6:04:02:9f:58:ae:95:8f:a3: 6c:59:48:44:35:2a:62:27:f2:d7:e1:66:46:82:f7:33:49:55: 61:4d:1a:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjYwNTEyMTkzNDA1WhcNMjYwNTE5MTkzNDA1WjAYMRYwFAYD VQQDEw02YTAzODBhZS0yOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFgi29jiik96G2nhY6bjXM4OCP6bw095pGTRCKE/wuI+kEdfuvlEN20zRJxS jo3KawzDocthkPnkN1z979c4R+LPfkoS9eLCMaCgQ/BBwVzJIeI9W3+/bHo+HdJg wo2pqO1Z9O99Fw2yaDTTQsHXUCb2Lozhj3aXWnH89H2rCGNljt3z/xynhAhX8PIi 98J3eZvrMXC0p0m4brlKX0ZS9wPQwDpQIvVlH2ZVBURyVjDEsU7pYzVussqUKGsl uOQF8SCVbLge6+itbuQ4vgozvFSL/nZ5o0Qt4wpsKR6m270fFHp+9DKF9je+GaxN xU1l7D6SsRr+2lld/yXcpkGxSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI30r7fH fbG1TbewvJ4SBqzb350iMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxcH+RSIYoK16el+27RHd/MKNMbndDti8NNNejwI6kI6KqH+w+Zlgp5Vtx5jC neD3ZszMipK9XCzPlin37o3S3QubXmBI5GbH22NzgVrJfLdX8A0mPR5p0homJiEQ NEBcllDAMbV0im26QXvnkiAkKbhd8F1ulvuQQr/mi7isI46RWk87wMHWEhhV8/MW wd23Ht6oEAM5Mur8G3htqsGZQEeDM2aVs36xgS8VFjBX5d05a7W11dADE1bgP/8x Wb3W3sUDld7HiSut7TygYca4aUrserUBTWaAZlfXr38ROjGutgQCn1iulY+jbFlI RDUqYify1+FmRoL3M0lVYU0aPw== -----END CERTIFICATE-----Generated at Wed May 13 13:13:07 2026 by rpki-client