$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: OBJxVmZZmfNELiqJaxz06yFeA62P1gITDgqIndfWAj0= Subject key identifier: 30:1B:65:AA:69:AB:1F:19:6F:51:FA:8D:74:25:FB:22:97:B7:85:BD Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03ED Signing time: Mon 11 May 2026 00:34:14 +0000 Manifest this update: Mon 11 May 2026 00:34:13 +0000 Manifest next update: Mon 18 May 2026 00:34:13 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: 1iuVLGeDymX7dA518on/AmeqoZtQEpMD7CC/qySDUvI=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 00:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: May 11 00:34:13 2026 GMT Not After : May 18 00:34:13 2026 GMT Subject: CN=6a012406-2831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9a:d4:81:03:1a:20:b8:04:3e:c7:20:7d:85: 56:e8:75:9b:95:e0:26:d1:18:4e:39:3e:61:21:46: 79:d4:bc:76:e5:d9:7b:c0:39:d3:d5:37:34:70:f9: b8:e6:87:4a:03:8b:11:f7:33:ba:e4:54:af:ee:b0: c2:a9:dc:8d:8b:8a:db:0f:9e:4c:37:11:e4:55:e8: a2:ca:c3:14:0e:fd:2e:43:eb:10:0f:c1:65:a5:fc: 99:9b:14:15:10:5f:5e:04:d9:4a:f5:aa:03:5e:aa: d0:b4:9d:85:45:01:81:1e:f7:96:7d:68:62:8d:5d: 6b:df:ce:dd:c9:80:cb:8b:9e:41:54:30:ef:d2:d2: 46:88:10:d8:9b:bd:46:2d:88:08:8a:b7:df:59:b3: 02:57:32:3b:21:16:3c:e4:41:6f:85:c0:07:f0:b5: 2f:38:86:df:24:bc:32:3f:b2:0f:f8:0b:51:0e:8e: c7:53:7f:86:29:92:a6:84:5d:b7:62:d6:a9:10:66: 5f:0b:57:4f:a9:99:65:16:59:ff:b8:88:ef:47:a8: 2c:b6:ae:92:89:52:a0:26:1d:28:32:38:96:96:16: 9f:d9:4a:3f:bd:5c:93:66:08:69:12:0e:f1:36:2b: 2d:e4:11:f5:49:37:e1:67:69:10:23:73:73:22:b9: 94:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1B:65:AA:69:AB:1F:19:6F:51:FA:8D:74:25:FB:22:97:B7:85:BD X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:b5:58:c4:e3:3c:4e:e4:ea:4d:32:bd:47:4c:22:82:8f:a1: b5:02:1a:7d:cc:0c:a8:d1:10:64:08:1e:95:87:6c:b6:64:bc: 13:ed:89:ad:73:76:5e:43:d6:5c:c2:4d:e9:64:59:cc:d7:8a: 3d:88:8a:6c:c8:e1:77:5d:5b:45:8e:34:52:4b:6f:cd:d0:63: c3:f1:eb:58:62:8d:d3:11:aa:17:8b:4b:1a:ca:8d:81:5d:bf: 68:4c:9a:a7:9a:7f:e1:94:bf:c3:14:db:62:87:4f:9d:cf:f7: 63:e3:54:df:cd:f5:0d:55:40:15:a0:11:ba:e9:10:4b:14:a0: 13:46:0e:c9:f5:2e:2d:29:13:26:4d:a1:f1:14:a1:52:6c:9c: d0:fc:ab:d9:cb:8a:84:3c:8c:f0:25:a0:db:a0:1e:80:25:3a: 10:97:ef:aa:c0:d4:99:d8:80:f2:01:0e:28:f4:b9:88:0b:22: 3a:78:2a:87:03:e0:13:96:0d:82:bc:a6:aa:67:39:44:f7:d0: 4d:0c:42:b8:13:c0:ff:41:b2:c3:e0:54:8c:83:67:9d:ff:30: fa:9f:9c:72:a2:83:03:06:9b:12:10:36:37:cb:3f:cd:31:79: 54:28:a9:da:0f:01:7b:22:db:6a:57:ec:59:63:22:31:04:4f: be:7b:03:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwNTExMDAzNDEzWhcNMjYwNTE4MDAzNDEzWjAYMRYwFAYD VQQDEw02YTAxMjQwNi0yODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1prUgQMaILgEPscgfYVW6HWbleAm0RhOOT5hIUZ51Lx25dl7wDnT1Tc0cPm4 5odKA4sR9zO65FSv7rDCqdyNi4rbD55MNxHkVeiiysMUDv0uQ+sQD8FlpfyZmxQV EF9eBNlK9aoDXqrQtJ2FRQGBHveWfWhijV1r387dyYDLi55BVDDv0tJGiBDYm71G LYgIirffWbMCVzI7IRY85EFvhcAH8LUvOIbfJLwyP7IP+AtRDo7HU3+GKZKmhF23 YtapEGZfC1dPqZllFln/uIjvR6gstq6SiVKgJh0oMjiWlhaf2Uo/vVyTZghpEg7x Nist5BH1STfhZ2kQI3NzIrmUxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDAbZapp qx8Zb1H6jXQl+yKXt4W9MB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfrVYxOM8TuTqTTK9R0wigo+htQIafcwMqNEQZAgelYdstmS8E+2JrXN2XkPW XMJN6WRZzNeKPYiKbMjhd11bRY40UktvzdBjw/HrWGKN0xGqF4tLGsqNgV2/aEya p5p/4ZS/wxTbYodPnc/3Y+NU3831DVVAFaARuukQSxSgE0YOyfUuLSkTJk2h8RSh Umyc0Pyr2cuKhDyM8CWg26AegCU6EJfvqsDUmdiA8gEOKPS5iAsiOngqhwPgE5YN grymqmc5RPfQTQxCuBPA/0Gyw+BUjINnnf8w+p+ccqKDAwabEhA2N8s/zTF5VCip 2g8BeyLbalfsWWMiMQRPvnsDWg== -----END CERTIFICATE-----Generated at Wed May 13 01:02:58 2026 by rpki-client