$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: FVB/usZEDXKyui8ljwb/W8mFS26ZWpVT14Kbj/BG2HQ= Subject key identifier: E8:4B:3A:8E:B3:E6:58:D7:A1:9E:32:99:A4:0A:52:BD:E6:2A:E1:EA Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 028C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 0286 Signing time: Thu 21 May 2026 01:52:43 +0000 Manifest this update: Thu 21 May 2026 01:52:43 +0000 Manifest next update: Thu 28 May 2026 01:52:43 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: Rdmj3CsqVUCctuoTqnwECn+xXoUAinZ6ay+hSFSKhZ4=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: yfzx4N8e3wjfsr320pF+EFitreK6BjvCPZ0wmG/4y/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: May 21 01:52:43 2026 GMT Not After : May 28 01:52:43 2026 GMT Subject: CN=6a0e656b-5bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:90:d6:02:5e:05:ff:33:b2:0c:65:7b:ba:b6: a7:74:88:da:8d:3f:7f:29:b7:35:fe:ff:b6:db:8f: d5:c9:b6:ea:11:e6:32:10:16:02:58:b4:05:18:7b: 5b:67:f4:95:d1:19:e1:f2:71:1d:87:aa:e3:9a:77: e4:a0:69:69:d5:da:b3:63:56:e9:41:06:51:33:02: 14:8c:2b:0f:a7:68:ac:31:7e:ff:c3:85:88:d9:80: 34:bc:91:e9:b6:ca:bc:cf:11:4b:34:1e:da:44:28: d1:e6:6c:6a:d3:f2:8f:c4:0a:42:30:da:65:95:99: c4:39:67:54:b2:46:e8:d3:d6:70:47:d0:05:26:59: ca:7a:2f:a7:8c:89:a6:a6:22:ae:58:8e:a2:bd:cb: 0b:08:c5:de:71:38:d1:49:4a:cd:c2:a6:aa:d4:b8: 34:52:65:44:30:78:35:f8:7c:30:98:f6:48:cc:f4: ba:c9:6d:be:cc:b5:63:a9:98:e9:b9:c5:bc:f2:05: 00:26:a7:a7:c4:9f:c6:0f:15:18:5d:13:ef:b0:15: c2:29:47:ee:50:42:14:bc:a8:d0:de:cc:00:5b:36: 88:63:06:11:79:3d:48:61:54:8b:7d:b7:77:c3:90: da:22:16:c5:53:1b:98:73:71:01:78:b8:27:01:54: 7f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4B:3A:8E:B3:E6:58:D7:A1:9E:32:99:A4:0A:52:BD:E6:2A:E1:EA X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f4:2c:fa:6f:eb:ea:04:20:d3:15:a0:2b:ad:c3:b2:5e:d5: 04:e1:55:f9:ed:97:a9:ad:81:71:7d:82:fb:87:44:80:67:ab: d2:c0:ac:c3:7e:05:e6:b3:04:55:46:a0:33:2c:08:0a:9b:23: 18:b7:e0:0e:30:b8:9d:e9:9e:71:41:d2:ad:74:06:57:98:46: 53:58:c9:41:6e:23:b3:7d:28:ed:95:3f:9c:f0:43:03:29:a6: 38:21:6a:2b:48:98:19:00:1c:7f:ae:4f:24:26:f0:63:84:ae: 5d:2a:4e:17:15:cb:fe:ff:e5:67:eb:65:2b:e4:f6:45:9f:db: 24:6d:33:fe:53:7a:9b:94:1e:e2:a6:ad:4e:20:1e:13:99:b7: e3:49:9b:c9:6d:80:df:23:1c:06:3c:97:82:fc:c4:46:e3:f0: a4:6e:dc:77:31:64:eb:ab:9a:74:47:a7:bc:6a:ff:15:b8:24: 50:46:bf:01:b6:a4:00:74:85:f7:d6:4b:a4:d1:94:88:ce:8f: 96:27:cd:dd:4b:2f:53:39:d7:cd:c8:9e:e1:31:20:0f:c4:ae: 58:24:23:b2:38:16:51:3c:39:14:e3:88:0e:19:a3:2b:94:5b: 38:db:9f:69:40:72:a3:f0:44:d7:e1:85:a1:f7:c0:8c:16:d4: 4a:1e:91:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjYwNTIxMDE1MjQzWhcNMjYwNTI4MDE1MjQzWjAYMRYwFAYD VQQDEw02YTBlNjU2Yi01YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJDWAl4F/zOyDGV7urandIjajT9/Kbc1/v+224/VybbqEeYyEBYCWLQFGHtb Z/SV0Rnh8nEdh6rjmnfkoGlp1dqzY1bpQQZRMwIUjCsPp2isMX7/w4WI2YA0vJHp tsq8zxFLNB7aRCjR5mxq0/KPxApCMNpllZnEOWdUskbo09ZwR9AFJlnKei+njImm piKuWI6ivcsLCMXecTjRSUrNwqaq1Lg0UmVEMHg1+HwwmPZIzPS6yW2+zLVjqZjp ucW88gUAJqenxJ/GDxUYXRPvsBXCKUfuUEIUvKjQ3swAWzaIYwYReT1IYVSLfbd3 w5DaIhbFUxuYc3EBeLgnAVR/oQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOhLOo6z 5ljXoZ4ymaQKUr3mKuHqMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAivQs+m/r6gQg0xWgK63Dsl7VBOFV+e2Xqa2BcX2C+4dEgGer0sCsw34F5rME VUagMywICpsjGLfgDjC4nemecUHSrXQGV5hGU1jJQW4js30o7ZU/nPBDAymmOCFq K0iYGQAcf65PJCbwY4SuXSpOFxXL/v/lZ+tlK+T2RZ/bJG0z/lN6m5Qe4qatTiAe E5m340mbyW2A3yMcBjyXgvzERuPwpG7cdzFk66uadEenvGr/FbgkUEa/AbakAHSF 99ZLpNGUiM6PlifN3UsvUznXzcie4TEgD8SuWCQjsjgWUTw5FOOIDhmjK5RbONuf aUByo/BE1+GFoffAjBbUSh6RIg== -----END CERTIFICATE-----Generated at Thu May 21 10:15:58 2026 by rpki-client