$ rpki-client -vvf rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft File: cGWovjQWOF29AyJATk9jTG7-XYI.mft (raw, json) Hash identifier: 38X67UoRU289gWa/M5Z840QrpRuLM6Qiwu5vD4nPQrg= Subject key identifier: 58:53:E2:BA:98:AB:D0:57:52:7E:7E:FB:BA:A4:E4:4E:11:09:35:70 Authority key identifier: 70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 Certificate issuer: /CN=A9125AE9/serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Certificate serial: 034F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft Manifest number: 0343 Signing time: Thu 21 May 2026 01:05:13 +0000 Manifest this update: Thu 21 May 2026 01:05:13 +0000 Manifest next update: Thu 28 May 2026 01:05:13 +0000 Files and hashes: 1: cGWovjQWOF29AyJATk9jTG7-XYI.crl (hash: KHAckyn3NfST+xC5tF20RdyTqZeZEbVPFKVU9rgd0Zw=) 2: 6FE0D496064A11EDA0A92068C4F9AE02.roa (hash: nSPvZX7KXzBzUT7OFwC/s1n132cCYNb3XtUKSB/sg50=) 3: 70BB6C14064A11EDA0A92068C4F9AE02.roa (hash: e6bCOgfRSemdp2rsVv83FamwpxN7KaZSE/x3Q3BUALg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125AE9, serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Validity Not Before: May 21 01:05:13 2026 GMT Not After : May 28 01:05:13 2026 GMT Subject: CN=6a0e5a49-6dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:da:78:b4:63:bb:05:ba:e4:16:02:01:de:7a: 85:17:f9:54:27:5f:53:93:3d:d3:90:5c:15:d7:e8: 57:d9:a3:17:a8:c3:10:56:df:19:bf:8b:72:e4:68: fc:1f:30:be:9d:33:a3:b8:eb:b3:3c:6a:f7:13:00: 78:37:3d:72:18:62:ed:13:35:88:a1:d7:10:fd:38: 24:63:05:bb:29:19:48:a0:60:87:41:a7:4f:db:3b: fc:36:36:bc:03:c1:46:ce:f2:20:11:a7:65:d3:0f: dd:cf:86:59:22:11:d2:d0:d3:4d:86:72:e2:be:8c: 04:04:a1:8f:ca:3e:89:b1:45:4f:af:51:3c:0a:11: e8:12:00:76:45:2e:b4:48:aa:ea:4c:83:24:53:06: 7c:2b:91:42:34:10:e4:01:63:d5:64:90:0d:fc:a7: 3d:87:99:f6:99:33:a3:6c:bb:f6:ab:53:8a:d6:e1: e4:1d:e1:df:93:e0:40:bd:04:d0:4e:95:10:c9:55: bc:a6:ff:80:06:61:5a:87:97:46:cf:9c:6d:3d:24: 73:ab:97:86:e6:56:99:51:f3:ba:85:a1:24:a9:7b: 9b:ac:f1:7b:92:a1:cb:84:c1:f8:89:e8:67:47:fd: 5a:77:c1:11:20:21:d8:64:0e:ea:f9:10:8a:2b:f7: 07:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:53:E2:BA:98:AB:D0:57:52:7E:7E:FB:BA:A4:E4:4E:11:09:35:70 X509v3 Authority Key Identifier: keyid:70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:fa:e2:4b:4d:71:cc:6b:71:93:ec:f8:31:d1:09:c3:27:33: a0:61:6f:c1:60:1a:3f:96:3c:9b:db:cd:61:e0:f9:6f:9d:9d: 0a:7d:41:63:36:46:1b:79:3b:19:6f:85:d5:32:8d:a8:5f:11: 5d:6e:b0:1a:6b:31:4d:f3:f4:77:04:2f:fc:fe:c2:fe:38:a7: 9c:2e:9c:41:73:34:4f:fb:f5:35:d2:0b:37:03:29:45:d4:e0: e0:c2:17:a9:a4:f7:9f:cf:a2:0d:ab:9b:6a:9a:7c:b1:21:b4: 25:bc:59:96:b7:f8:38:62:55:f8:14:9f:f4:8b:7b:07:67:11: 44:1b:03:8c:c5:b3:5f:03:ec:97:89:16:96:d4:a0:a4:e0:ef: f7:06:01:e2:d6:71:16:ce:94:9a:c2:f8:d4:1d:0a:ac:8a:7f: 80:24:06:c9:09:bc:b3:88:45:a0:7c:72:f7:b1:27:4e:9f:35: eb:8c:c3:0c:93:1f:40:26:93:b5:64:0e:73:a2:cb:f7:fa:e3: 57:c5:ca:ac:9f:98:57:67:a8:69:91:d1:b5:d1:82:7f:de:4a: ca:7a:1e:91:d5:b8:62:de:92:0d:b2:48:9a:df:c6:ad:f4:65: 26:6d:be:69:07:65:1e:56:f3:45:fd:61:27:05:b3:f1:2a:af: 28:21:02:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBRTkxMTAvBgNVBAUTKDcwNjVBOEJFMzQxNjM4NURCRDAzMjI0MDRFNEY2MzRD NkVGRTVEODIwHhcNMjYwNTIxMDEwNTEzWhcNMjYwNTI4MDEwNTEzWjAYMRYwFAYD VQQDEw02YTBlNWE0OS02ZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhNp4tGO7BbrkFgIB3nqFF/lUJ19Tkz3TkFwV1+hX2aMXqMMQVt8Zv4ty5Gj8 HzC+nTOjuOuzPGr3EwB4Nz1yGGLtEzWIodcQ/TgkYwW7KRlIoGCHQadP2zv8Nja8 A8FGzvIgEadl0w/dz4ZZIhHS0NNNhnLivowEBKGPyj6JsUVPr1E8ChHoEgB2RS60 SKrqTIMkUwZ8K5FCNBDkAWPVZJAN/Kc9h5n2mTOjbLv2q1OK1uHkHeHfk+BAvQTQ TpUQyVW8pv+ABmFah5dGz5xtPSRzq5eG5laZUfO6haEkqXubrPF7kqHLhMH4iehn R/1ad8ERICHYZA7q+RCKK/cHrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFhT4rqY q9BXUn5++7qk5E4RCTVwMB8GA1UdIwQYMBaAFHBlqL40FjhdvQMiQE5PY0xu/l2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUFFOS9GRkVCN0Y5QTA2 NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09GMjlBeUpBVGs5alRHNy1Y WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NHV292alFXT0YyOUF5SkFUazlqVEc3LVhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUFFOS9GRkVCN0Y5QTA2NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09G MjlBeUpBVGs5alRHNy1YWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbvriS01xzGtxk+z4MdEJwyczoGFvwWAaP5Y8m9vNYeD5b52dCn1BYzZGG3k7 GW+F1TKNqF8RXW6wGmsxTfP0dwQv/P7C/jinnC6cQXM0T/v1NdILNwMpRdTg4MIX qaT3n8+iDaubapp8sSG0JbxZlrf4OGJV+BSf9It7B2cRRBsDjMWzXwPsl4kWltSg pODv9wYB4tZxFs6UmsL41B0KrIp/gCQGyQm8s4hFoHxy97EnTp8164zDDJMfQCaT tWQOc6LL9/rjV8XKrJ+YV2eoaZHRtdGCf95KynoekdW4Yt6SDbJImt/GrfRlJm2+ aQdlHlbzRf1hJwWz8SqvKCECeA== -----END CERTIFICATE-----Generated at Thu May 21 09:38:09 2026 by rpki-client