$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: eiofTzXUQYsygPNiCnqTe+rfd4fqI7hVjH0ZKAjaGxs= Subject key identifier: 5D:98:39:4E:00:87:8A:23:A1:12:14:09:8A:0D:7A:72:1D:38:9A:A8 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0CB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0CA8 Signing time: Wed 20 May 2026 18:32:43 +0000 Manifest this update: Wed 20 May 2026 18:32:42 +0000 Manifest next update: Wed 27 May 2026 18:32:42 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: wzZRSu1aojxQgCbrS7bMWaO7txV0AnXXg32jOpnSpMI=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: mpWE3JxWmusWHtsdnUiKvPMOgwCqfgCScdAt8K/8YQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: May 20 18:32:42 2026 GMT Not After : May 27 18:32:42 2026 GMT Subject: CN=6a0dfe4b-6ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:51:8f:e6:3b:91:5c:7a:8a:79:fe:4c:9a: 6f:96:70:5f:bd:a0:bb:a4:4e:41:3d:46:97:3a:81: 4a:9c:2c:2e:58:be:26:9b:9c:a3:87:55:af:f2:e0: cf:39:3c:ed:57:14:97:ef:cb:02:a5:14:52:5d:45: 51:dc:5d:fb:ac:43:1b:e9:e8:e4:1b:4b:7c:1f:b3: 0b:8f:4d:79:7f:72:10:54:7e:f0:84:58:a8:bf:19: bf:a9:e1:12:34:30:63:c0:8d:2f:65:ca:e9:84:fb: 51:7e:81:89:09:02:3c:ff:6f:ca:c9:bb:1a:d6:34: 10:86:af:9d:8c:dc:9e:5a:60:ab:6a:a4:65:2a:13: 51:6f:c1:72:8a:9b:a6:25:05:73:32:ed:8f:3e:16: 51:5f:aa:a7:f1:f4:81:6c:37:bc:cc:8e:58:a5:d1: 2f:cf:ec:c1:22:ba:bf:bd:12:c3:ed:56:4c:03:61: 51:89:f7:e1:29:70:69:98:17:6e:7e:0d:1c:9e:ab: 6a:97:a5:e8:21:59:83:aa:64:2c:a9:d2:97:52:84: 28:e0:fd:f0:2f:38:e0:9b:4b:3f:6b:91:56:11:0e: 5b:6c:4b:5d:ab:7c:b2:61:ef:ee:89:e4:0f:99:12: e3:ec:19:2b:ae:f3:ee:7d:32:ae:18:39:fd:e1:cd: 44:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:39:4E:00:87:8A:23:A1:12:14:09:8A:0D:7A:72:1D:38:9A:A8 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:b1:3e:8b:17:32:30:8b:f8:3a:99:af:1d:03:84:65:4e:c0: 7a:5c:7a:0c:6c:72:55:77:f7:78:9f:94:f7:72:42:05:5b:4a: f4:e7:48:1d:04:7b:bf:86:16:e1:d6:b7:51:cf:98:34:22:69: 2e:33:73:af:75:cc:1c:4f:65:49:b4:23:b9:75:c1:b6:48:29: 26:26:44:7f:45:44:af:d8:cd:f2:5b:82:e8:75:56:82:38:fa: c3:f3:fd:39:49:0b:8f:bf:d2:f2:a2:88:2a:78:5e:73:6c:34: f8:23:1c:08:46:c4:43:55:32:8b:d7:01:94:ba:ae:4d:3d:4a: bb:02:5b:4c:17:40:3e:d1:f8:9b:db:be:45:9e:ea:ee:c9:67: 36:f0:73:d0:18:d0:cd:1d:6b:c3:82:e6:c1:bb:34:be:a2:29: 30:2d:45:b6:68:6a:8c:09:8d:d8:9e:b9:9a:f1:a4:95:e9:01: 8f:bc:cb:2c:07:1c:45:6f:29:b8:d1:48:ba:6b:54:94:86:23: 6b:5e:d7:d2:54:2e:2d:13:cb:9b:c2:5b:36:34:91:c2:94:1d: 62:fc:4c:76:c0:db:08:40:0f:45:4d:ae:68:1a:91:80:2c:8b: da:76:85:df:f3:79:13:92:7b:ea:be:d7:22:8f:d2:01:ae:53: 85:fb:cc:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjYwNTIwMTgzMjQyWhcNMjYwNTI3MTgzMjQyWjAYMRYwFAYD VQQDEw02YTBkZmU0Yi02ZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuZRj+Y7kVx6inn+TJpvlnBfvaC7pE5BPUaXOoFKnCwuWL4mm5yjh1Wv8uDP OTztVxSX78sCpRRSXUVR3F37rEMb6ejkG0t8H7MLj015f3IQVH7whFiovxm/qeES NDBjwI0vZcrphPtRfoGJCQI8/2/Kybsa1jQQhq+djNyeWmCraqRlKhNRb8Fyipum JQVzMu2PPhZRX6qn8fSBbDe8zI5YpdEvz+zBIrq/vRLD7VZMA2FRiffhKXBpmBdu fg0cnqtql6XoIVmDqmQsqdKXUoQo4P3wLzjgm0s/a5FWEQ5bbEtdq3yyYe/uieQP mRLj7BkrrvPufTKuGDn94c1ETwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF2YOU4A h4ojoRIUCYoNenIdOJqoMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw7E+ixcyMIv4OpmvHQOEZU7Aelx6DGxyVXf3eJ+U93JCBVtK9OdIHQR7v4YW 4da3Uc+YNCJpLjNzr3XMHE9lSbQjuXXBtkgpJiZEf0VEr9jN8luC6HVWgjj6w/P9 OUkLj7/S8qKIKnhec2w0+CMcCEbEQ1Uyi9cBlLquTT1KuwJbTBdAPtH4m9u+RZ7q 7slnNvBz0BjQzR1rw4Lmwbs0vqIpMC1FtmhqjAmN2J65mvGklekBj7zLLAccRW8p uNFIumtUlIYja17X0lQuLRPLm8JbNjSRwpQdYvxMdsDbCEAPRU2uaBqRgCyL2naF 3/N5E5J76r7XIo/SAa5ThfvM1Q== -----END CERTIFICATE-----Generated at Thu May 21 11:59:20 2026 by rpki-client