$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: DIVITJI/OXQ50zA4OOiQx8DKFvePHgJwpjiWxqXXMHA= Subject key identifier: A3:44:64:A2:DA:4C:61:FB:29:23:49:4A:14:EC:DC:2E:55:3A:33:0F Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: 0147 Signing time: Mon 11 May 2026 05:17:06 +0000 Manifest this update: Mon 11 May 2026 05:17:06 +0000 Manifest next update: Mon 18 May 2026 05:17:06 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: UJSJCx6N0sj51D/XTOPHcgs+bSbCXznFwBJ3538h4EM=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: 4qI4Ml9uIYG2SLfkLkYCessVGIjFflva1W8j/+okM6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:17:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: May 11 05:17:06 2026 GMT Not After : May 18 05:17:06 2026 GMT Subject: CN=6a016652-a8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fa:ce:25:92:21:11:e2:60:1c:63:2a:67:10: 9d:52:9a:07:40:1a:a9:d0:c8:a4:bf:f9:d2:b1:72: 00:17:91:f9:25:02:d3:2d:05:ed:a4:ed:ec:4b:23: ee:e8:77:21:68:f3:39:05:8a:d5:57:a5:fe:aa:54: 16:46:9a:fb:bc:ca:45:1c:ba:00:58:92:f7:8c:e6: ca:79:5c:8e:62:18:f1:45:3a:25:61:25:55:36:f2: 5f:59:27:73:b1:e7:60:50:92:75:fe:70:82:ff:1c: 57:ae:5c:f3:b0:8f:2d:f1:08:34:2c:59:f6:78:92: 99:c9:62:ba:36:e6:0d:76:03:6e:a9:37:bf:06:72: b5:3e:37:a6:01:16:c7:a9:cb:38:46:9f:43:95:9d: 15:f2:3f:d8:fa:06:1e:60:e2:5a:e2:89:8b:76:bc: af:2b:a4:63:1e:22:e7:c0:90:7d:7d:43:c3:0b:90: 50:a2:1d:e5:23:81:a4:46:46:7b:f1:81:76:48:9c: 22:6d:9a:3c:20:5b:d3:06:e9:b4:2a:c7:e8:ae:f4: cb:f1:2d:d5:56:f3:13:77:57:ac:7e:59:da:05:e8: f9:f6:12:d9:3c:97:f1:db:85:de:90:1d:f8:b2:a1: aa:09:3d:85:08:ac:f0:43:e0:72:81:77:b2:ea:5d: 13:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:44:64:A2:DA:4C:61:FB:29:23:49:4A:14:EC:DC:2E:55:3A:33:0F X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:84:e8:28:92:d1:14:5d:de:ab:8b:3b:2d:1a:ea:a5:e1:a2: 0b:16:1c:b1:ff:f2:74:48:aa:67:6b:c1:2c:71:27:2d:09:cf: 3d:65:de:a9:b5:6a:46:d4:3c:49:67:fc:17:aa:ee:ef:2b:cb: 99:91:0f:19:07:7d:7e:45:fc:31:86:7a:b5:c4:90:d3:62:e2: 75:f5:e4:a6:65:fc:68:07:11:ea:a4:85:f1:75:09:3c:60:fa: 06:6b:29:07:75:fa:14:9c:19:92:43:95:b1:04:46:70:eb:e3: cd:76:88:eb:4a:1e:dd:b6:3e:22:3b:55:ff:3b:a8:46:1e:12: 10:2b:23:7a:e9:fa:cf:3c:39:ed:88:ef:a0:d9:4c:ac:00:35: bc:39:ab:6f:fe:38:71:29:7b:7f:35:1c:f8:71:60:7e:79:8d: 71:56:ae:47:ef:e4:1f:b9:2c:8c:99:40:94:c7:90:1b:11:64: 6a:d4:a9:4c:cb:db:13:c4:2a:dd:86:f9:14:b8:91:68:46:5b: db:22:b9:f1:ee:a9:e7:f6:9c:d3:14:14:d0:59:ae:5f:9e:64: 29:53:cf:c3:9e:ba:02:af:9a:f6:3c:00:b7:24:3d:c3:01:bd: b8:66:63:f3:71:17:19:a4:7a:87:f6:fd:a7:c7:eb:18:21:2e: 99:e7:0e:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjYwNTExMDUxNzA2WhcNMjYwNTE4MDUxNzA2WjAYMRYwFAYD VQQDEw02YTAxNjY1Mi1hOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/rOJZIhEeJgHGMqZxCdUpoHQBqp0Mikv/nSsXIAF5H5JQLTLQXtpO3sSyPu 6HchaPM5BYrVV6X+qlQWRpr7vMpFHLoAWJL3jObKeVyOYhjxRTolYSVVNvJfWSdz sedgUJJ1/nCC/xxXrlzzsI8t8Qg0LFn2eJKZyWK6NuYNdgNuqTe/BnK1PjemARbH qcs4Rp9DlZ0V8j/Y+gYeYOJa4omLdryvK6RjHiLnwJB9fUPDC5BQoh3lI4GkRkZ7 8YF2SJwibZo8IFvTBum0KsforvTL8S3VVvMTd1esflnaBej59hLZPJfx24XekB34 sqGqCT2FCKzwQ+BygXey6l0T7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKNEZKLa TGH7KSNJShTs3C5VOjMPMB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdoToKJLRFF3eq4s7LRrqpeGiCxYcsf/ydEiqZ2vBLHEnLQnPPWXeqbVqRtQ8 SWf8F6ru7yvLmZEPGQd9fkX8MYZ6tcSQ02LidfXkpmX8aAcR6qSF8XUJPGD6Bmsp B3X6FJwZkkOVsQRGcOvjzXaI60oe3bY+IjtV/zuoRh4SECsjeun6zzw57YjvoNlM rAA1vDmrb/44cSl7fzUc+HFgfnmNcVauR+/kH7ksjJlAlMeQGxFkatSpTMvbE8Qq 3Yb5FLiRaEZb2yK58e6p5/ac0xQU0FmuX55kKVPPw566Aq+a9jwAtyQ9wwG9uGZj 83EXGaR6h/b9p8frGCEumecOBA== -----END CERTIFICATE-----Generated at Wed May 13 03:57:21 2026 by rpki-client