$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft File: T0h-_rfHeWiBVy2X1iVPot21qHw.mft (raw, json) Hash identifier: 9xX87pWKyDAb7E9Y2g8zLljH0CN56GVvnXEYnsRv3Xg= Subject key identifier: 2E:28:C3:DA:9B:9F:84:9D:83:A1:EB:93:10:8A:52:DE:AF:3E:8D:6B Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft Manifest number: 36 Signing time: Mon 11 May 2026 08:46:47 +0000 Manifest this update: Mon 11 May 2026 08:46:47 +0000 Manifest next update: Mon 18 May 2026 08:46:47 +0000 Files and hashes: 1: T0h-_rfHeWiBVy2X1iVPot21qHw.crl (hash: s4mDMi/Y5avn6kl+S5s4wIpi8pBTaejs4fKBliDl76o=) 2: 9DD3FFC6001111F18C67D2A9406F56BC.roa (hash: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Validity Not Before: May 11 08:46:47 2026 GMT Not After : May 18 08:46:47 2026 GMT Subject: CN=6a019777-1f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6d:99:ce:7a:14:dd:f3:02:25:d4:9c:e4:e5: 4a:8a:62:8a:cc:c2:f3:d5:97:de:49:39:bb:94:ce: c3:92:9e:36:79:63:ec:22:97:02:e6:a8:5a:d6:2e: ef:be:98:0a:de:7e:e5:bd:f8:73:64:53:a0:94:5d: 0a:fe:e2:68:02:26:06:da:a1:73:dd:ba:16:4d:6b: ab:2b:be:2b:05:44:ca:07:90:ac:5d:6c:77:6f:3c: a0:01:f2:3b:c0:18:9a:41:a1:5a:65:83:47:bf:72: ea:51:56:c0:3f:b7:67:d8:67:4b:02:b9:1e:9d:74: 2c:1d:9f:e5:4f:c2:14:1b:59:93:31:6f:e7:60:a2: 98:e0:70:a1:8b:24:78:b8:82:6d:44:4f:b7:a6:c5: 60:57:e3:09:28:74:de:2c:07:6f:fe:ef:e2:7c:ee: b1:0d:cf:95:3e:f3:55:49:e4:83:18:a7:d1:b7:99: 59:35:b4:15:d8:24:7b:d8:d0:84:fc:1e:fa:79:07: e9:22:e7:cb:d2:22:ea:6f:b0:f1:c9:13:22:63:42: 87:44:09:14:fb:53:1c:2b:8c:98:65:bb:80:29:ea: e7:2b:b8:77:0b:d8:e3:1f:e8:b7:93:6e:4c:b4:df: 0e:da:2d:9e:91:a9:d1:1e:bb:14:ce:c4:ae:47:a8: d2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:28:C3:DA:9B:9F:84:9D:83:A1:EB:93:10:8A:52:DE:AF:3E:8D:6B X509v3 Authority Key Identifier: keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:75:38:14:26:aa:d1:87:e0:e7:86:7a:19:8f:aa:a3:0a:de: 1a:d6:55:9d:98:c7:ad:25:f1:cd:6d:37:39:b3:03:a7:4a:5b: 74:32:49:fe:96:fd:37:d5:02:d7:f3:fa:96:4f:88:ba:30:83: 4d:89:9e:d9:35:9d:10:d4:70:62:b4:dd:8f:25:a0:24:e8:f1: bc:fa:dc:6f:36:6a:aa:07:d9:fc:55:14:f6:7f:52:bc:6d:62: c0:dd:e4:be:3a:62:df:8d:f6:b6:c6:6c:76:92:83:36:e7:e0: b4:ec:04:bf:a9:d3:6c:66:01:56:1c:54:25:b6:de:97:4a:e9: 5f:dc:06:29:4e:6b:13:d3:d8:56:7f:fe:b7:f3:9c:c3:d7:1b: 4d:0d:58:5c:cc:bc:90:74:15:53:c0:19:d1:8b:67:cb:93:f6: d0:0e:e6:66:e1:91:0d:88:24:c9:f4:34:35:e8:f5:95:aa:5f: e8:66:a9:7c:25:8b:bb:98:65:11:c4:66:8f:e2:32:8b:9f:56: 67:93:6f:a2:25:82:cd:0d:4b:86:83:18:34:83:72:72:b7:0f: b6:bf:4f:ed:50:28:cb:34:e3:3a:31:7d:c3:d9:02:cb:27:60: 63:7b:0b:0f:33:d1:d4:57:0f:83:6c:85:84:85:a9:2c:54:3b: 21:35:ed:cf -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzJEOTExMC8GA1UEBRMoNEY0ODdFRkVCN0M3Nzk2ODgxNTcyRDk3RDYyNTRGQTJE REI1QTg3QzAeFw0yNjA1MTEwODQ2NDdaFw0yNjA1MTgwODQ2NDdaMBgxFjAUBgNV BAMTDTZhMDE5Nzc3LTFmMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+bZnOehTd8wIl1Jzk5UqKYorMwvPVl95JObuUzsOSnjZ5Y+wilwLmqFrWLu++ mArefuW9+HNkU6CUXQr+4mgCJgbaoXPduhZNa6srvisFRMoHkKxdbHdvPKAB8jvA GJpBoVplg0e/cupRVsA/t2fYZ0sCuR6ddCwdn+VPwhQbWZMxb+dgopjgcKGLJHi4 gm1ET7emxWBX4wkodN4sB2/+7+J87rENz5U+81VJ5IMYp9G3mVk1tBXYJHvY0IT8 Hvp5B+ki58vSIupvsPHJEyJjQodECRT7UxwrjJhlu4Ap6ucruHcL2OMf6LeTbky0 3w7aLZ6RqdEeuxTOxK5HqNLfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQULijD2puf hJ2DoeuTEIpS3q8+jWswHwYDVR0jBBgwFoAUT0h+/rfHeWiBVy2X1iVPot21qHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMkQ5LzY0REYxMzJDMDAx MTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdpQlZ5MlgxaVZQb3QyMXFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDBoLV9yZkhlV2lCVnkyWDFpVlBvdDIxcUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MkQ5LzY0REYxMzJDMDAxMTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdp QlZ5MlgxaVZQb3QyMXFIdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCLdTgUJqrRh+DnhnoZj6qjCt4a1lWdmMetJfHNbTc5swOnSlt0Mkn+lv031QLX 8/qWT4i6MINNiZ7ZNZ0Q1HBitN2PJaAk6PG8+txvNmqqB9n8VRT2f1K8bWLA3eS+ OmLfjfa2xmx2koM25+C07AS/qdNsZgFWHFQltt6XSulf3AYpTmsT09hWf/6385zD 1xtNDVhczLyQdBVTwBnRi2fLk/bQDuZm4ZENiCTJ9DQ16PWVql/oZql8JYu7mGUR xGaP4jKLn1Znk2+iJYLNDUuGgxg0g3Jytw+2v0/tUCjLNOM6MX3D2QLLJ2BjewsP M9HUVw+DbIWEhaksVDshNe3P -----END CERTIFICATE-----Generated at Wed May 13 04:13:44 2026 by rpki-client