$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: +u4tcnFPCGshpvlpuctYF75RxMSeat0MwEY/6P6XB7U= Subject key identifier: B1:7B:BF:EF:6E:62:A3:77:3C:44:0D:35:11:2F:C2:44:7C:DD:13:3B Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 028B Signing time: Thu 21 May 2026 01:57:11 +0000 Manifest this update: Thu 21 May 2026 01:57:11 +0000 Manifest next update: Thu 28 May 2026 01:57:11 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: 48EVbjtmUasiTy+cP1KEOLMtEnXXWV0Zx5sMeur5nVQ=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: ZBpZFHSjfj1bISXLZ4G9TvJh+gywnnw40Zr1cDFnGAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: May 21 01:57:11 2026 GMT Not After : May 28 01:57:11 2026 GMT Subject: CN=6a0e6677-3952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a7:8a:24:a1:0f:65:4c:c0:20:28:ee:e1:19: bd:00:3e:36:f1:86:05:a0:3c:98:02:ad:75:71:65: ac:47:c4:0f:b5:12:45:49:4d:a1:e9:e7:62:27:4e: 3d:d9:a0:e1:74:89:d6:4d:53:d6:69:e3:26:06:c7: f3:49:af:fa:32:d4:79:99:f5:10:64:31:b5:72:8c: b1:b5:1e:f4:cb:60:93:b7:f0:f3:71:c7:95:92:63: 47:93:27:82:a1:d8:45:04:62:0a:8e:e5:4c:ef:92: 5d:a7:46:f5:a7:18:96:5a:f5:9f:92:d2:8e:85:57: 86:15:66:84:94:f0:19:73:cd:55:a9:80:17:c7:e9: 24:6c:da:91:a3:23:35:bb:69:4f:86:58:62:f7:b5: f7:18:de:d4:55:0d:10:f4:1b:53:87:97:1a:f3:fa: 5c:72:f7:67:c1:70:07:5d:7b:f8:38:4e:b7:65:41: 8a:65:b8:30:4a:4a:98:ab:e4:a6:46:e6:43:87:ee: cd:29:66:48:b3:4d:8a:ca:7e:a6:f3:52:24:24:14: 30:54:bd:27:78:61:dc:fc:75:ad:65:bb:da:c0:53: c9:7f:92:85:0a:95:30:ef:a1:ab:2f:66:a0:bb:3e: 57:8b:cf:19:af:99:55:68:bc:1c:ac:c7:f4:9f:6b: 93:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7B:BF:EF:6E:62:A3:77:3C:44:0D:35:11:2F:C2:44:7C:DD:13:3B X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:99:98:fb:ab:33:37:48:e4:40:1a:fa:44:64:51:ff:f1:87: 94:59:d8:b5:bb:8f:03:c4:30:1a:b9:41:8b:5c:56:5a:6a:51: 71:1c:f0:31:54:a4:84:23:65:18:5a:80:af:0f:09:d0:e2:5f: de:1b:f1:87:e2:b3:e5:3e:2a:44:c9:59:d8:6f:0a:ed:70:6f: 4c:ef:62:04:6b:e0:6f:6f:0c:ee:56:09:9f:11:12:9f:f7:8f: ee:d5:8a:7a:da:d9:7e:54:5f:24:be:14:48:57:d7:0d:59:97: 25:fc:eb:18:e5:9d:69:b8:a0:d1:32:43:f4:5c:91:22:4a:a8: 52:2f:5c:81:2d:da:1f:ce:81:39:59:e0:a6:d0:3d:68:6e:e5: ff:7c:fe:b0:4d:76:09:4a:b4:ed:6c:2e:68:2c:fa:b9:bb:a0: 6c:fc:12:94:4b:0d:c1:2b:3f:e5:e7:34:d2:98:99:5b:c7:3c: 02:82:45:cc:61:61:a1:0c:a9:ce:92:9c:42:35:c1:db:99:42: d0:15:e8:32:93:04:cf:c0:3a:3f:e4:d2:90:18:aa:75:b1:10: 52:d1:20:25:44:14:31:ef:31:00:d8:28:cc:5a:e0:14:57:2b: a4:c6:1e:ab:35:0b:10:79:49:11:49:1c:a3:56:e8:6c:f2:74: 7e:4d:24:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjYwNTIxMDE1NzExWhcNMjYwNTI4MDE1NzExWjAYMRYwFAYD VQQDEw02YTBlNjY3Ny0zOTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqeKJKEPZUzAICju4Rm9AD428YYFoDyYAq11cWWsR8QPtRJFSU2h6ediJ049 2aDhdInWTVPWaeMmBsfzSa/6MtR5mfUQZDG1coyxtR70y2CTt/DzcceVkmNHkyeC odhFBGIKjuVM75Jdp0b1pxiWWvWfktKOhVeGFWaElPAZc81VqYAXx+kkbNqRoyM1 u2lPhlhi97X3GN7UVQ0Q9BtTh5ca8/pccvdnwXAHXXv4OE63ZUGKZbgwSkqYq+Sm RuZDh+7NKWZIs02Kyn6m81IkJBQwVL0neGHc/HWtZbvawFPJf5KFCpUw76GrL2ag uz5Xi88Zr5lVaLwcrMf0n2uThwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLF7v+9u YqN3PEQNNREvwkR83RM7MB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATpmY+6szN0jkQBr6RGRR//GHlFnYtbuPA8QwGrlBi1xWWmpRcRzwMVSkhCNl GFqArw8J0OJf3hvxh+Kz5T4qRMlZ2G8K7XBvTO9iBGvgb28M7lYJnxESn/eP7tWK etrZflRfJL4USFfXDVmXJfzrGOWdabig0TJD9FyRIkqoUi9cgS3aH86BOVngptA9 aG7l/3z+sE12CUq07WwuaCz6ubugbPwSlEsNwSs/5ec00piZW8c8AoJFzGFhoQyp zpKcQjXB25lC0BXoMpMEz8A6P+TSkBiqdbEQUtEgJUQUMe8xANgozFrgFFcrpMYe qzULEHlJEUkco1bobPJ0fk0kEw== -----END CERTIFICATE-----Generated at Thu May 21 12:36:31 2026 by rpki-client