$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft File: A4zy4oB33yytpFdW-12ZpuJA_Qk.mft (raw, json) Hash identifier: +YqFT9tDnyH7WwwOuwu8vAba1dXok8lanmvjdFJoFjA= Subject key identifier: 88:B3:DF:4D:83:2D:F8:2E:CA:22:B0:13:05:84:C1:1E:06:F0:54:3F Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 354E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft Manifest number: 3542 Signing time: Wed 20 May 2026 15:09:10 +0000 Manifest this update: Wed 20 May 2026 15:09:09 +0000 Manifest next update: Wed 27 May 2026 15:09:09 +0000 Files and hashes: 1: A4zy4oB33yytpFdW-12ZpuJA_Qk.crl (hash: BFmppfixr8jeKL284cEyXeEsYY9y7EcuervuUvzxfSY=) 2: 55A4C5C004AA11E8935B7021C4F9AE02.roa (hash: H6okVBbXA5R44ceAsB8vN/16AqSmiHbSqzPIsnHvUSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13646 (0x354e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC, serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: May 20 15:09:09 2026 GMT Not After : May 27 15:09:09 2026 GMT Subject: CN=6a0dce95-9c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:6b:6f:d2:b9:95:0a:a4:6c:05:03:51:72: 73:d6:e6:a6:54:d5:03:fe:7d:f8:2d:bc:33:0c:c9: 6d:bd:b2:c1:bb:c9:07:7d:1e:06:eb:fa:06:ad:86: 73:da:6b:ac:d7:9e:dd:38:d9:8a:34:af:91:e9:74: 3b:65:db:eb:cb:52:a0:6a:25:25:db:5c:46:4f:13: 39:7f:62:02:ee:90:24:70:19:8e:a7:8a:1a:eb:15: 6f:9f:26:10:ce:d1:93:66:a7:6e:38:ef:4a:56:e6: 3a:fb:86:ed:97:eb:68:c0:12:86:11:6e:6f:dc:21: 4d:c4:68:ab:0f:1e:b0:cc:1d:9b:24:23:3a:53:6a: 5e:8c:21:bc:bc:24:bd:43:bf:32:f2:ba:a5:f5:f0: 1f:ad:d0:2c:3d:20:bf:f0:5c:01:4f:da:60:52:37: de:d3:be:1e:d5:7c:03:cf:30:bb:77:c3:a9:e1:bf: c2:f7:1e:db:5c:45:41:03:13:0d:3e:c8:a1:0d:3e: 2e:b6:f4:06:63:4f:95:0f:59:fa:6e:a5:f1:0c:cc: 0f:cc:a5:18:f4:a1:2b:9a:78:d5:f1:3b:b4:f9:72: 32:3c:f7:ba:2d:9f:8d:b6:be:d2:32:13:7a:f0:45: 84:f4:62:dc:6b:0c:c7:05:c0:91:89:ac:b8:24:4e: 49:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B3:DF:4D:83:2D:F8:2E:CA:22:B0:13:05:84:C1:1E:06:F0:54:3F X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:97:19:de:52:e1:0a:3d:19:44:67:74:33:1a:e5:10:0e:79: 14:bd:44:4f:b5:6b:1c:10:27:cc:4f:79:f1:46:7a:3e:22:6a: 36:a9:d8:4b:b1:32:30:7b:c9:fc:51:4e:91:c3:6c:0b:e8:25: 77:fb:c5:5d:b0:c1:66:21:45:ca:d1:8e:44:90:90:3e:fd:d2: 0d:6a:12:68:a7:ce:b9:9c:b7:83:6f:7a:59:b9:65:61:9a:9e: 24:f0:95:12:06:19:17:f7:a5:09:61:16:8a:7c:b3:44:75:c8: e5:e9:21:7c:6c:78:28:d2:bd:f0:fc:06:34:e8:41:50:be:09: d2:4b:b6:09:1d:3d:39:3d:52:a1:9e:ba:3e:46:df:74:75:f5: 88:47:8b:e7:03:ca:86:80:cd:ec:8c:5c:ee:ec:ce:5d:53:4c: d4:69:e7:13:25:1f:30:66:f5:d0:87:b2:83:7f:3d:f9:b5:fa: 01:dc:7c:74:04:32:16:f3:5e:a6:7e:eb:3a:d6:41:b7:d2:3c: 1b:e9:a2:fd:67:2a:8e:15:2a:d7:17:98:5a:59:55:45:9d:83: e4:a0:33:b6:da:02:ce:29:3c:6e:ec:97:d6:5a:b2:74:d2:29: 1f:43:9f:32:34:5a:37:4c:49:0c:4c:90:f2:a3:12:e5:b6:30: 6c:7e:f1:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjYwNTIwMTUwOTA5WhcNMjYwNTI3MTUwOTA5WjAYMRYwFAYD VQQDEw02YTBkY2U5NS05YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0drb9K5lQqkbAUDUXJz1uamVNUD/n34LbwzDMltvbLBu8kHfR4G6/oGrYZz 2mus157dONmKNK+R6XQ7Zdvry1KgaiUl21xGTxM5f2IC7pAkcBmOp4oa6xVvnyYQ ztGTZqduOO9KVuY6+4btl+towBKGEW5v3CFNxGirDx6wzB2bJCM6U2pejCG8vCS9 Q78y8rql9fAfrdAsPSC/8FwBT9pgUjfe074e1XwDzzC7d8Op4b/C9x7bXEVBAxMN PsihDT4utvQGY0+VD1n6bqXxDMwPzKUY9KErmnjV8Tu0+XIyPPe6LZ+Ntr7SMhN6 8EWE9GLcawzHBcCRiay4JE5J2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIiz302D LfguyiKwEwWEwR4G8FQ/MB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkNFQy9COEIwQzc4ODFEQTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5 eXRwRmRXLTEyWnB1SkFfUWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU5cZ3lLhCj0ZRGd0MxrlEA55FL1ET7VrHBAnzE958UZ6PiJqNqnYS7EyMHvJ /FFOkcNsC+gld/vFXbDBZiFFytGORJCQPv3SDWoSaKfOuZy3g296WbllYZqeJPCV EgYZF/elCWEWinyzRHXI5ekhfGx4KNK98PwGNOhBUL4J0ku2CR09OT1SoZ66Pkbf dHX1iEeL5wPKhoDN7Ixc7uzOXVNM1GnnEyUfMGb10Ieyg389+bX6Adx8dAQyFvNe pn7rOtZBt9I8G+mi/WcqjhUq1xeYWllVRZ2D5KAzttoCzik8buyX1lqydNIpH0Of MjRaN0xJDEyQ8qMS5bYwbH7xzQ== -----END CERTIFICATE-----Generated at Thu May 21 09:38:05 2026 by rpki-client