$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: 1uni5g8/VnxH9nDowGxkiWrsahXdJ/TTxBRLdtNGGqY= Subject key identifier: 4D:0B:F4:E6:C7:67:C6:79:A0:9C:9B:38:2B:66:06:F3:E7:AF:9F:6F Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1E47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1E3A Signing time: Wed 20 May 2026 16:04:44 +0000 Manifest this update: Wed 20 May 2026 16:04:44 +0000 Manifest next update: Wed 27 May 2026 16:04:44 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: eMXejMsn5WIlmElLzb4nYDFRoIxAesD81fAZZyh2ZzM=) 2: C78E4E640BC111F19AB158B3293D8C67.roa (hash: iBnvey2w1CD1G33AJZCTqUkiJ/9udD23Qpc3pr39tfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7751 (0x1e47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: May 20 16:04:44 2026 GMT Not After : May 27 16:04:44 2026 GMT Subject: CN=6a0ddb9c-8e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6b:d7:86:96:51:1a:00:8f:23:5f:49:7f:dc: 3a:2d:c5:78:ac:85:8e:33:30:12:be:fa:d1:a9:07: f3:f3:2d:78:2d:26:3c:07:59:e5:4d:92:be:77:a5: f2:d7:ed:cb:ae:28:fe:ea:cd:2b:58:ba:bc:ea:07: 76:6e:ad:b2:6b:84:ee:03:c7:65:59:3c:7c:a0:9a: 2d:bc:da:a2:ab:82:9b:3e:02:00:ed:77:a0:49:9e: d9:8f:65:dc:5f:bf:31:22:54:4d:2d:2d:6b:17:f8: 4c:bb:9f:71:2e:1a:a4:e0:61:e6:20:83:d3:12:40: 7f:83:90:17:df:34:a9:5f:03:9f:67:c8:65:ab:c7: 27:1c:bc:bb:0a:0a:d4:75:fa:95:2a:d5:c5:a6:05: 89:cb:04:e0:7f:86:60:be:99:8c:51:2e:92:23:ba: 75:46:d3:5f:3d:49:f0:40:cb:9f:e4:93:66:05:9f: 5f:34:59:fe:b4:05:f8:4b:cc:b2:25:1f:4b:a0:54: 95:7d:7d:8f:16:ed:dd:9e:47:37:6f:45:9c:2e:6b: 48:33:35:a1:e8:e7:1a:bd:67:6d:48:7c:bd:04:5d: 5d:bf:c8:5b:44:67:18:c0:49:a5:4e:d5:54:3f:33: 16:14:ca:58:64:6d:7d:74:79:c4:4c:b4:ec:6d:86: 0c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:0B:F4:E6:C7:67:C6:79:A0:9C:9B:38:2B:66:06:F3:E7:AF:9F:6F X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:81:6c:a5:91:a7:de:9c:b8:3b:5c:ac:48:0c:3d:f1:85:37: 15:7a:e6:1c:b1:6d:08:fc:d8:6a:3f:6b:59:44:20:21:b5:e2: 8f:a5:c1:42:88:fa:17:1e:ec:f3:1e:08:ed:eb:2a:18:28:93: 2f:f2:59:b1:09:68:fb:04:8a:d3:d1:b0:ec:02:19:10:7a:84: 0d:bb:a6:27:d6:69:d2:63:f4:9b:15:ae:67:c7:b1:26:4e:9c: 5d:d0:98:d6:ed:63:88:e0:9c:99:f4:bf:2f:79:50:04:04:dc: 9e:ba:51:35:ee:1d:d0:5f:6c:0d:04:ee:e3:5b:6b:d9:8d:b6: 9e:fc:64:45:26:34:20:5a:e8:6a:fd:ca:b4:9a:9e:41:cb:24: 27:02:d8:7a:d2:46:b5:80:ef:03:52:d8:09:c3:88:e3:e8:91: af:39:69:0f:5e:a6:f3:07:6d:54:75:49:2b:12:36:89:97:72: f0:52:d9:49:78:1d:86:e1:91:e3:3b:36:48:b4:11:12:b1:63: c5:88:34:5c:b3:fe:44:35:47:c6:88:8b:d1:e9:16:ee:d1:76: 77:da:fc:db:df:5d:6c:83:2f:03:9e:0a:ad:f9:22:5b:62:26: 2c:ba:3b:a2:6c:10:2b:9d:6c:bd:01:66:53:95:ff:3d:c7:2c: dd:36:5a:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjYwNTIwMTYwNDQ0WhcNMjYwNTI3MTYwNDQ0WjAYMRYwFAYD VQQDEw02YTBkZGI5Yy04ZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGvXhpZRGgCPI19Jf9w6LcV4rIWOMzASvvrRqQfz8y14LSY8B1nlTZK+d6Xy 1+3Lrij+6s0rWLq86gd2bq2ya4TuA8dlWTx8oJotvNqiq4KbPgIA7XegSZ7Zj2Xc X78xIlRNLS1rF/hMu59xLhqk4GHmIIPTEkB/g5AX3zSpXwOfZ8hlq8cnHLy7CgrU dfqVKtXFpgWJywTgf4ZgvpmMUS6SI7p1RtNfPUnwQMuf5JNmBZ9fNFn+tAX4S8yy JR9LoFSVfX2PFu3dnkc3b0WcLmtIMzWh6OcavWdtSHy9BF1dv8hbRGcYwEmlTtVU PzMWFMpYZG19dHnETLTsbYYMcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE0L9ObH Z8Z5oJybOCtmBvPnr59vMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX4FspZGn3py4O1ysSAw98YU3FXrmHLFtCPzYaj9rWUQgIbXij6XBQoj6Fx7s 8x4I7esqGCiTL/JZsQlo+wSK09Gw7AIZEHqEDbumJ9Zp0mP0mxWuZ8exJk6cXdCY 1u1jiOCcmfS/L3lQBATcnrpRNe4d0F9sDQTu41tr2Y22nvxkRSY0IFroav3KtJqe QcskJwLYetJGtYDvA1LYCcOI4+iRrzlpD16m8wdtVHVJKxI2iZdy8FLZSXgdhuGR 4zs2SLQRErFjxYg0XLP+RDVHxoiL0ekW7tF2d9r8299dbIMvA54KrfkiW2ImLLo7 omwQK51svQFmU5X/Pccs3TZa/w== -----END CERTIFICATE-----Generated at Thu May 21 09:39:13 2026 by rpki-client