$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: iZXbFE7UEQxHWkkM/r28b7/yYXOrG0y+2akB7kmcmro= Subject key identifier: D0:AB:7E:01:B6:BE:C2:A8:A1:E6:FF:FF:21:39:87:B8:7A:D8:3C:46 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 08C5 Signing time: Tue 12 May 2026 20:30:46 +0000 Manifest this update: Tue 12 May 2026 20:30:46 +0000 Manifest next update: Tue 19 May 2026 20:30:46 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: S6PUpeUrJ6TJD0p+Ea6f1cgzxhf8s1J3g/h74h7Izsc=) 2: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=) 3: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: May 12 20:30:46 2026 GMT Not After : May 19 20:30:46 2026 GMT Subject: CN=6a038df6-d314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:16:d5:07:21:1e:d8:55:69:9d:39:e8:19:8e: d6:b3:ba:92:d4:18:1c:9d:66:5d:26:71:38:16:aa: c2:8e:67:38:61:7b:15:02:fb:93:b1:81:fc:7b:d0: b4:47:c4:3c:6b:11:14:5d:45:b2:97:eb:bc:12:03: 5c:2f:c4:3f:d1:b9:f9:88:e9:b8:4b:58:21:a1:db: 85:0d:58:f6:c0:66:97:12:44:1b:1b:67:cd:9e:bf: cf:27:47:8f:a6:7f:fa:ba:d7:ca:08:e8:da:7e:b9: 95:23:c6:de:b4:b2:07:ab:15:c6:a3:9e:49:88:d4: c0:ae:63:89:e5:d8:9c:01:68:6a:3f:85:e8:d4:10: 8c:b2:eb:18:25:fe:4f:16:0c:95:87:7b:01:58:73: 88:99:66:c2:a0:5b:a4:89:e2:57:4b:43:07:8d:93: 6f:1e:90:5e:88:cd:a4:41:48:ca:c4:61:d2:45:e8: 26:08:37:da:11:eb:68:01:33:17:7a:bd:58:23:88: 1c:6f:2b:be:4e:94:ba:c5:ab:c6:11:77:4b:a0:99: 6e:17:3f:d6:45:d9:0b:45:f1:3f:36:2b:08:f0:ca: 03:20:08:f4:22:ad:71:9c:88:8b:80:e1:da:73:4a: 40:07:86:48:99:8f:02:a9:a1:6a:9f:c1:d4:ee:d0: 1a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AB:7E:01:B6:BE:C2:A8:A1:E6:FF:FF:21:39:87:B8:7A:D8:3C:46 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:db:40:a7:3f:86:c3:d1:6c:93:07:5e:d4:e8:55:9b:19:f9: 1f:d5:39:b9:45:9e:30:3e:1d:e4:8d:80:ee:e5:18:78:74:67: 3b:7f:03:61:f3:95:6c:31:cf:ae:1a:a4:6e:71:a6:0b:38:a8: 1b:d8:c7:02:fa:99:5c:25:d8:6d:7c:62:7a:d3:d1:ef:9b:01: f7:a3:89:e6:77:b9:1d:62:eb:c3:1e:b0:eb:b2:76:53:d3:e2: df:a4:65:d0:67:b6:3b:62:1b:30:13:53:d2:bc:5a:42:2c:0e: d3:e6:78:a5:81:ba:62:0f:e1:65:35:7f:ec:3f:63:19:e5:d8: cf:a2:47:28:fa:a5:1a:66:52:51:4d:a8:82:60:ef:2d:b2:26: 35:2c:d2:fc:61:6c:b1:14:96:8d:8a:d5:ed:d1:50:b6:64:22: fc:d6:9a:3e:79:a8:e1:55:df:ab:0b:0e:68:90:02:db:68:07: cc:6a:fa:cd:4e:f2:81:1f:fe:5b:7a:0e:5e:83:e1:87:80:5c: 1e:92:47:40:c4:31:5c:f2:8f:83:22:4e:15:2f:0d:fc:c3:e2: 40:9a:0d:91:ef:b9:c5:10:2b:0c:89:a9:16:1e:81:b1:45:ad: b0:a1:02:d7:14:30:a4:f5:de:18:c7:0a:41:78:54:d5:a2:03: 16:95:f3:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjYwNTEyMjAzMDQ2WhcNMjYwNTE5MjAzMDQ2WjAYMRYwFAYD VQQDEw02YTAzOGRmNi1kMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBbVByEe2FVpnTnoGY7Ws7qS1BgcnWZdJnE4FqrCjmc4YXsVAvuTsYH8e9C0 R8Q8axEUXUWyl+u8EgNcL8Q/0bn5iOm4S1ghoduFDVj2wGaXEkQbG2fNnr/PJ0eP pn/6utfKCOjafrmVI8betLIHqxXGo55JiNTArmOJ5dicAWhqP4Xo1BCMsusYJf5P FgyVh3sBWHOImWbCoFukieJXS0MHjZNvHpBeiM2kQUjKxGHSRegmCDfaEetoATMX er1YI4gcbyu+TpS6xavGEXdLoJluFz/WRdkLRfE/NisI8MoDIAj0Iq1xnIiLgOHa c0pAB4ZImY8CqaFqn8HU7tAaDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNCrfgG2 vsKooeb//yE5h7h62DxGMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT9tApz+Gw9Fskwde1OhVmxn5H9U5uUWeMD4d5I2A7uUYeHRnO38DYfOVbDHP rhqkbnGmCzioG9jHAvqZXCXYbXxietPR75sB96OJ5ne5HWLrwx6w67J2U9Pi36Rl 0Ge2O2IbMBNT0rxaQiwO0+Z4pYG6Yg/hZTV/7D9jGeXYz6JHKPqlGmZSUU2ogmDv LbImNSzS/GFssRSWjYrV7dFQtmQi/NaaPnmo4VXfqwsOaJAC22gHzGr6zU7ygR/+ W3oOXoPhh4BcHpJHQMQxXPKPgyJOFS8N/MPiQJoNke+5xRArDImpFh6BsUWtsKEC 1xQwpPXeGMcKQXhU1aIDFpXz/A== -----END CERTIFICATE-----Generated at Wed May 13 11:43:08 2026 by rpki-client