$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: 5AJd57OyXySR1g4Bkj0yIqK4yEE3QlJmrgztXEWkva8= Subject key identifier: B9:25:F2:F3:E1:F6:57:3C:8A:F2:55:86:D4:F9:E1:07:E7:F2:2E:42 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 075C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 074A Signing time: Tue 12 May 2026 21:50:06 +0000 Manifest this update: Tue 12 May 2026 21:50:06 +0000 Manifest next update: Tue 19 May 2026 21:50:06 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: DLjit1m30KO4Gyp0Qwd7OZ9iWB1dt5YgAQ8ziNYeTMQ=) 2: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: POpr8wQqUbcrtsin7090l3LSjMlxCYgCxYONDuDwzEA=) 3: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 0A1AOVsjVRyjkOa0stdyBH8yBCmf007m2jZE8cgy4HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1884 (0x75c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: May 12 21:50:06 2026 GMT Not After : May 19 21:50:06 2026 GMT Subject: CN=6a03a08e-b0c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c7:bf:7e:c1:9b:32:dc:ea:6d:1e:63:85:fa: 7e:5e:c9:b1:f6:76:00:54:7b:14:09:b6:12:59:ce: 28:b7:4d:14:90:34:4f:11:ee:df:18:99:a4:15:95: 2c:37:5e:cc:d5:36:8a:35:1d:4e:36:6f:b9:32:b4: 38:2d:e2:3f:2d:aa:bf:76:6d:22:14:46:f8:07:c3: 70:8e:66:18:d0:e6:dd:4a:32:d1:8e:21:73:45:d1: e6:a8:e1:8a:be:4b:1d:21:7a:6e:77:18:f9:87:17: 18:59:77:f6:1c:50:48:9d:4e:7a:e7:c3:90:a0:7a: d7:d6:2a:29:0c:d5:89:12:0c:e1:3a:5f:dc:c8:78: 0b:44:8b:3c:3a:5c:cd:92:b4:fb:db:38:7a:f3:bd: 4f:9e:c2:cf:f2:c5:aa:ad:c2:e7:bd:6a:7b:3a:77: ed:48:a1:50:b7:93:5c:30:79:b5:91:08:cf:75:4f: 3c:f2:b5:42:e0:8c:7b:71:ef:b2:06:1c:b2:49:77: cd:c4:bc:09:5b:87:a4:63:28:30:9e:8c:d2:54:77: 16:41:2b:c5:cd:f2:fd:d2:26:53:f7:f9:b2:d5:f4: eb:da:62:d6:77:c2:22:43:c8:ca:f3:df:20:66:00: 37:51:6a:39:e4:6b:5e:01:fc:0a:c9:b1:56:f4:04: e9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:25:F2:F3:E1:F6:57:3C:8A:F2:55:86:D4:F9:E1:07:E7:F2:2E:42 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:98:d0:f0:b4:54:dc:a9:bf:b7:f6:b9:66:5f:e3:06:d9:a8: 92:64:90:13:2b:1e:e0:6c:93:d0:79:06:47:b8:30:67:b3:a8: 5e:fa:a9:0d:fa:30:9a:d3:9e:47:9d:fa:9d:a4:62:bb:25:a6: 47:05:5c:2d:e1:d2:87:ba:7f:92:88:89:75:93:24:3c:7a:9f: a1:3e:21:44:e4:aa:b6:f4:4c:0d:8d:3a:d8:0b:b0:76:34:51: 8f:73:22:17:e1:b7:6a:e5:55:7f:a8:ad:e7:bb:6e:c9:c7:0e: 3e:54:bf:39:ae:01:49:78:5b:aa:a0:c9:40:09:86:b8:2a:84: b3:6d:21:ae:2d:ce:71:13:34:9e:d0:e1:87:95:fc:71:22:c5: 3e:93:e9:8f:23:71:cb:3c:e1:5d:2a:2c:de:e8:ae:86:ed:4f: 85:c1:47:f8:f2:51:83:b6:ef:d1:96:0a:f6:b6:bd:82:d7:a7: 3a:6d:38:2e:3a:36:6d:5d:d5:b0:5b:a9:ef:2b:1a:51:6a:4a: c0:c9:f2:1f:a4:25:f5:71:88:06:81:09:9f:e3:6c:12:0b:58: 64:7b:b9:c3:d6:98:b5:22:a3:c8:c8:31:a7:f7:20:1c:27:32: c0:99:24:8b:12:3a:3f:3b:ba:8e:f8:7a:79:9b:65:b3:2f:ef: 8c:e0:2a:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjYwNTEyMjE1MDA2WhcNMjYwNTE5MjE1MDA2WjAYMRYwFAYD VQQDEw02YTAzYTA4ZS1iMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMe/fsGbMtzqbR5jhfp+Xsmx9nYAVHsUCbYSWc4ot00UkDRPEe7fGJmkFZUs N17M1TaKNR1ONm+5MrQ4LeI/Laq/dm0iFEb4B8NwjmYY0ObdSjLRjiFzRdHmqOGK vksdIXpudxj5hxcYWXf2HFBInU5658OQoHrX1iopDNWJEgzhOl/cyHgLRIs8OlzN krT72zh6871PnsLP8sWqrcLnvWp7OnftSKFQt5NcMHm1kQjPdU888rVC4Ix7ce+y BhyySXfNxLwJW4ekYygwnozSVHcWQSvFzfL90iZT9/my1fTr2mLWd8IiQ8jK898g ZgA3UWo55GteAfwKybFW9ATpRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLkl8vPh 9lc8ivJVhtT54Qfn8i5CMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEpjQ8LRU3Km/t/a5Zl/jBtmokmSQEyse4GyT0HkGR7gwZ7OoXvqpDfowmtOe R536naRiuyWmRwVcLeHSh7p/koiJdZMkPHqfoT4hROSqtvRMDY062AuwdjRRj3Mi F+G3auVVf6it57tuyccOPlS/Oa4BSXhbqqDJQAmGuCqEs20hri3OcRM0ntDhh5X8 cSLFPpPpjyNxyzzhXSos3uiuhu1PhcFH+PJRg7bv0ZYK9ra9gtenOm04Ljo2bV3V sFup7ysaUWpKwMnyH6Ql9XGIBoEJn+NsEgtYZHu5w9aYtSKjyMgxp/cgHCcywJkk ixI6Pzu6jvh6eZtlsy/vjOAq4g== -----END CERTIFICATE-----Generated at Wed May 13 11:33:48 2026 by rpki-client