$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: fmn+F7WqhWD57QYwvaSc+pUmIxGWRFC2mylzrOUyPWU= Subject key identifier: 42:71:60:40:79:FB:D0:68:DB:75:96:69:95:C3:91:66:4C:D2:2A:96 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 2381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 2336 Signing time: Wed 20 May 2026 15:50:18 +0000 Manifest this update: Wed 20 May 2026 15:50:18 +0000 Manifest next update: Wed 27 May 2026 15:50:18 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: sINXqA12zSL7tdRjsO1ezMiICoSXfd51hPxe7lrRTBM=) 2: DD73806ED3C811EF9D76942FC4F9AE02.roa (hash: EwnErXsu5NYk/vKrNa7Bl73VtntPwcy5vYXbhPAWFt0=) 3: 443C3AF2D3F611EFB03C5C14C4F9AE02.roa (hash: kvJG9W7BesVloRiSNTznQQ2Vu/TG695dXNyQ/qNO4G8=) 4: 1AC9199AD3CB11EF84052053C4F9AE02.roa (hash: plwWFq4k0Hgx6vP8bTzqJt9GJIcOt71z9VOfufJhc6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9089 (0x2381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: May 20 15:50:18 2026 GMT Not After : May 27 15:50:18 2026 GMT Subject: CN=6a0dd83a-cb1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ba:3b:76:55:55:8c:70:d8:3d:4e:8c:ae:7f: 05:77:e7:b2:5c:71:7d:5b:7a:62:b1:f0:6e:04:a6: f6:0e:67:32:6c:1e:60:3d:fd:fc:d1:14:87:c9:13: 2d:b6:52:87:21:47:f8:67:2a:35:9f:a7:65:1c:d0: d7:c8:8c:f7:64:83:0f:29:98:f4:07:4e:37:60:5a: 4a:68:fb:17:06:e4:da:33:d5:e6:3b:af:2c:02:3f: c0:eb:e8:95:dd:c7:75:31:64:38:b8:c8:a8:68:87: b9:77:5c:2b:79:03:7c:0b:d4:1b:ae:4b:f8:16:fe: 27:81:83:b1:3d:dc:e6:d9:ed:46:9f:ca:2a:e3:a7: bb:b0:8c:09:45:d7:a3:60:84:16:3b:53:69:d8:1e: 1e:76:96:16:30:96:ef:fe:26:34:4f:07:b7:c1:62: ae:9d:ca:2b:02:52:f3:bd:b6:fe:54:40:b3:78:b8: 21:2c:d6:8a:9b:b2:74:37:9e:5a:50:c0:18:6d:92: 69:dc:e3:d9:b5:18:f6:03:b6:91:b0:5f:e6:8b:75: 73:11:42:9c:bc:d8:9b:a6:23:a6:a8:74:dd:36:b3: 47:03:73:94:fd:03:3f:6a:64:32:56:96:61:f9:d1: e8:7d:89:23:bb:f0:fd:bf:63:66:a1:bb:fe:dd:78: 38:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:71:60:40:79:FB:D0:68:DB:75:96:69:95:C3:91:66:4C:D2:2A:96 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:af:36:50:9f:5c:ba:a8:8b:93:30:bf:9d:be:81:63:72:e2: 89:74:a9:08:8a:1e:b2:ba:ff:e2:2d:4d:97:b2:0f:0e:30:23: 74:ff:bf:81:c2:a7:33:e7:dc:91:b5:af:6b:8b:86:9c:aa:1d: ab:41:8a:95:1d:b3:3f:33:15:6d:e5:c5:2e:20:25:4a:9f:6a: 1c:86:9f:8e:a8:86:75:9b:12:2c:87:e7:90:cf:20:f1:36:f7: 4b:c1:e4:e5:3a:25:23:22:b3:3e:aa:52:26:26:c6:69:6e:88: 4d:a7:5b:9c:3b:64:37:30:6d:0a:97:10:6a:ee:ea:2b:59:9b: 0e:d7:e7:35:13:86:b7:d9:d7:cc:dd:7d:3f:94:22:3d:bc:8f: 50:27:30:35:62:46:77:90:d5:49:5b:77:45:e5:aa:83:e7:7c: f3:a5:5a:01:f1:b5:3e:46:30:11:8e:72:98:7f:e1:a8:15:90: fd:d8:56:d2:f1:4a:44:84:ec:74:a6:53:2d:a3:11:99:a8:e1: d4:9a:f8:3e:4b:e8:a1:1c:65:67:2c:91:d2:c3:f4:c9:dd:3a: 23:95:72:a5:4c:35:74:4d:67:d7:ae:e7:bf:7d:a7:ec:60:4a: d2:75:1f:a2:9a:86:ee:48:cf:63:f1:b9:6a:45:1f:6a:f5:45: 2c:6d:1a:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICI4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjYwNTIwMTU1MDE4WhcNMjYwNTI3MTU1MDE4WjAYMRYwFAYD VQQDEw02YTBkZDgzYS1jYjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ro7dlVVjHDYPU6Mrn8Fd+eyXHF9W3pisfBuBKb2DmcybB5gPf380RSHyRMt tlKHIUf4Zyo1n6dlHNDXyIz3ZIMPKZj0B043YFpKaPsXBuTaM9XmO68sAj/A6+iV 3cd1MWQ4uMioaIe5d1wreQN8C9Qbrkv4Fv4ngYOxPdzm2e1Gn8oq46e7sIwJRdej YIQWO1Np2B4edpYWMJbv/iY0Twe3wWKuncorAlLzvbb+VECzeLghLNaKm7J0N55a UMAYbZJp3OPZtRj2A7aRsF/mi3VzEUKcvNibpiOmqHTdNrNHA3OU/QM/amQyVpZh +dHofYkju/D9v2Nmobv+3Xg4JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEJxYEB5 +9Bo23WWaZXDkWZM0iqWMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt682UJ9cuqiLkzC/nb6BY3LiiXSpCIoesrr/4i1Nl7IPDjAjdP+/gcKnM+fc kbWva4uGnKodq0GKlR2zPzMVbeXFLiAlSp9qHIafjqiGdZsSLIfnkM8g8Tb3S8Hk 5TolIyKzPqpSJibGaW6ITadbnDtkNzBtCpcQau7qK1mbDtfnNROGt9nXzN19P5Qi PbyPUCcwNWJGd5DVSVt3ReWqg+d886VaAfG1PkYwEY5ymH/hqBWQ/dhW0vFKRITs dKZTLaMRmajh1Jr4PkvooRxlZyyR0sP0yd06I5VypUw1dE1n167nv32n7GBK0nUf opqG7kjPY/G5akUfavVFLG0azg== -----END CERTIFICATE-----Generated at Thu May 21 10:19:18 2026 by rpki-client