$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft File: hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft (raw, json) Hash identifier: LS2vnGhhdHaJP1Dy7QiRocK2dh0cJ6VevznZg7F0F0M= Subject key identifier: 9B:47:12:D6:47:C2:82:34:24:57:35:95:E4:2F:BA:17:C5:1A:F5:59 Authority key identifier: 85:F2:2D:92:15:3F:20:1D:59:23:A9:F2:7F:96:1F:C7:6D:71:19:B8 Certificate issuer: /CN=A91C9706/serialNumber=85F22D92153F201D5923A9F27F961FC76D7119B8 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hfItkhU_IB1ZI6nyf5Yfx21xGbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft Manifest number: 2D Signing time: Mon 11 May 2026 08:56:51 +0000 Manifest this update: Mon 11 May 2026 08:56:50 +0000 Manifest next update: Mon 18 May 2026 08:56:50 +0000 Files and hashes: 1: hfItkhU_IB1ZI6nyf5Yfx21xGbg.crl (hash: kHr1Hl0GVDY9+L0CbDgj1rjQgBEdqQC3DmB0BXeb2iM=) 2: B735FEEA118411F1951E019C333D8C67.roa (hash: qdQyipYaThgccgmXAXR/iB4/lWGcn5evCaadYGd7lUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.crl rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hfItkhU_IB1ZI6nyf5Yfx21xGbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9706, serialNumber=85F22D92153F201D5923A9F27F961FC76D7119B8 Validity Not Before: May 11 08:56:50 2026 GMT Not After : May 18 08:56:50 2026 GMT Subject: CN=6a0199d3-f67c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cf:ff:7e:99:13:48:5e:e1:f8:9a:2d:03:5f: 10:51:bb:ec:51:4e:11:4e:9b:05:aa:ce:73:20:e5: a8:22:fe:9a:60:76:b8:d3:d8:bb:b0:a6:3e:9f:7d: 77:1e:9a:2a:ed:4b:e6:c3:7d:ab:a4:4e:43:cb:0a: d5:fd:06:95:64:6c:52:91:a3:47:f7:52:47:50:c5: 48:32:53:5f:9b:ce:eb:13:7c:e6:ec:76:7c:d9:db: b7:60:83:5b:7c:8d:ad:cf:f1:95:6a:81:91:be:9b: 36:cd:54:d2:0f:3d:0f:c8:cb:5c:19:5c:e4:f8:36: a9:67:6e:11:48:a4:93:cc:89:8b:da:60:8a:e1:56: d8:56:5b:f1:6f:a6:15:31:6a:1c:79:36:14:a4:30: fb:eb:83:6e:4e:15:eb:d7:e4:e5:cd:ff:1d:9e:7e: 78:0f:c3:8f:3b:7a:6c:eb:f6:e4:f2:30:0a:5f:95: f7:91:5e:7e:53:d5:91:ab:00:90:ad:33:e5:ec:cc: 7a:e1:89:9f:b9:55:f9:7b:c9:6e:c7:2a:6a:b3:cd: a2:c5:97:fa:9f:e3:a4:62:03:e2:fe:d2:b8:8c:e9: 1f:21:24:27:77:18:fc:99:63:ae:b4:a1:bb:40:89: b5:d0:84:07:1d:8a:95:70:f0:97:8f:12:c2:f7:7d: d7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:47:12:D6:47:C2:82:34:24:57:35:95:E4:2F:BA:17:C5:1A:F5:59 X509v3 Authority Key Identifier: keyid:85:F2:2D:92:15:3F:20:1D:59:23:A9:F2:7F:96:1F:C7:6D:71:19:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hfItkhU_IB1ZI6nyf5Yfx21xGbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:20:2d:18:77:3b:ac:1d:e8:a9:83:9c:6c:bd:4b:6b:b0:1e: f5:2f:78:84:1e:7b:43:aa:f9:53:9f:9c:d3:a5:bc:5e:ed:aa: c1:85:06:2a:2e:64:0c:d5:68:92:48:2c:43:0e:50:7d:34:06: 8c:80:6d:1b:29:58:c8:7f:d3:7f:6d:5d:22:58:4c:d9:c0:a8: 18:a9:be:6b:57:e5:c3:85:9f:54:14:33:21:3b:b3:ea:18:36: 61:8a:8a:cc:2f:12:c3:4c:ea:66:69:d7:c8:dc:f9:6c:33:cd: 2f:06:a0:8e:19:f9:30:17:6c:ca:d4:37:65:ea:2e:c1:63:14: 4c:89:12:03:c2:fa:8d:ea:4f:16:cd:f0:4d:c4:fc:0f:33:c2: 50:7d:57:54:d2:50:a7:7a:c1:fa:8c:a0:57:42:63:48:f9:28: 67:e1:83:7d:9d:ec:a8:99:64:f3:b3:95:b3:6c:f7:58:2c:d4: 11:03:10:73:da:c5:6b:17:26:3f:ee:95:e4:48:44:98:5d:d6: 75:fe:3b:fd:20:d7:22:be:bc:a4:13:67:21:42:61:8c:36:ed: 59:31:1c:3b:07:89:aa:12:1b:b2:82:95:0b:25:a0:95:0d:a9: 9e:39:8d:35:22:0c:15:55:d3:53:37:23:1b:fa:fb:d3:d8:cc: 4f:74:e4:fe -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OTcwNjExMC8GA1UEBRMoODVGMjJEOTIxNTNGMjAxRDU5MjNBOUYyN0Y5NjFGQzc2 RDcxMTlCODAeFw0yNjA1MTEwODU2NTBaFw0yNjA1MTgwODU2NTBaMBgxFjAUBgNV BAMTDTZhMDE5OWQzLWY2N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWz/9+mRNIXuH4mi0DXxBRu+xRThFOmwWqznMg5agi/ppgdrjT2Luwpj6ffXce mirtS+bDfaukTkPLCtX9BpVkbFKRo0f3UkdQxUgyU1+bzusTfObsdnzZ27dgg1t8 ja3P8ZVqgZG+mzbNVNIPPQ/Iy1wZXOT4NqlnbhFIpJPMiYvaYIrhVthWW/FvphUx ahx5NhSkMPvrg25OFevX5OXN/x2efngPw487emzr9uTyMApflfeRXn5T1ZGrAJCt M+XszHrhiZ+5Vfl7yW7HKmqzzaLFl/qf46RiA+L+0riM6R8hJCd3GPyZY660obtA ibXQhAcdipVw8JePEsL3fddBAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUm0cS1kfC gjQkVzWV5C+6F8Ua9VkwHwYDVR0jBBgwFoAUhfItkhU/IB1ZI6nyf5Yfx21xGbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5NzA2L0REREMzOTE2MTE0 NzExRjE4QkI0NTRBRjIyM0Q4QzY3L2hmSXRraFVfSUIxWkk2bnlmNVlmeDIxeEdi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGZJdGtoVV9JQjFaSTZueWY1WWZ4MjF4R2JnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 NzA2L0REREMzOTE2MTE0NzExRjE4QkI0NTRBRjIyM0Q4QzY3L2hmSXRraFVfSUIx Wkk2bnlmNVlmeDIxeEdiZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAPIC0YdzusHeipg5xsvUtrsB71L3iEHntDqvlTn5zTpbxe7arBhQYqLmQM1WiS SCxDDlB9NAaMgG0bKVjIf9N/bV0iWEzZwKgYqb5rV+XDhZ9UFDMhO7PqGDZhiorM LxLDTOpmadfI3PlsM80vBqCOGfkwF2zK1Ddl6i7BYxRMiRIDwvqN6k8WzfBNxPwP M8JQfVdU0lCnesH6jKBXQmNI+Shn4YN9neyomWTzs5WzbPdYLNQRAxBz2sVrFyY/ 7pXkSESYXdZ1/jv9INcivrykE2chQmGMNu1ZMRw7B4mqEhuygpULJaCVDameOY01 IgwVVdNTNyMb+vvT2MxPdOT+ -----END CERTIFICATE-----Generated at Wed May 13 06:27:58 2026 by rpki-client