$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: lmK/r7h22MS+Hp2dk2s834LlDBmPvYlFwa4+S5ktALU= Subject key identifier: A9:FC:33:F1:77:49:BB:A3:EA:2F:AA:14:4E:C7:85:4E:5D:10:AB:B5 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 2267 Signing time: Wed 20 May 2026 15:51:58 +0000 Manifest this update: Wed 20 May 2026 15:51:58 +0000 Manifest next update: Wed 27 May 2026 15:51:58 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: Lvo9rY2X7uPmFwhq4Kn07hCaiYDLdu6eLEiVzP5YsIU=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: i8ynNvisFun6KLb9XReq+KAa11jwRPXK2t/Z0bHo3gM=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: IV9u+bL98dY9vhWPzSb2VF1m+KNoLGbMT7wCZc4XtUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8848 (0x2290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: May 20 15:51:58 2026 GMT Not After : May 27 15:51:58 2026 GMT Subject: CN=6a0dd89e-f3a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e4:a8:d4:bb:db:79:41:dc:ba:b1:f2:a4:cd: ab:e9:35:75:63:a5:9b:80:eb:84:8c:ed:69:02:a7: 12:77:40:2d:c5:98:b1:e9:7a:dc:71:1f:e2:9e:d1: f0:14:cc:ca:55:09:3c:27:e5:78:11:28:2e:6a:6a: 94:bc:95:d6:5a:e5:56:e2:95:f5:69:3a:15:65:15: aa:f1:22:f0:a1:4f:f9:b7:52:39:24:e3:a3:20:70: bf:75:ba:f5:2b:06:7d:33:0e:8a:92:89:0b:37:17: 3f:2f:0b:5c:f8:82:40:9b:22:59:03:18:6a:1d:70: 1c:c9:e2:64:42:38:29:a4:f6:cb:37:55:f3:64:28: 7f:cf:0e:ed:be:21:d6:45:f8:d2:dd:4f:33:5b:80: 34:5f:0d:1d:d3:91:22:66:12:07:11:e5:84:3c:9f: d5:f0:b3:b7:fe:b3:7b:ee:e8:e0:cc:7c:8e:15:ea: 71:ab:ed:3f:79:6d:e4:e8:0b:6d:47:8f:a3:e6:26: e3:52:01:fb:51:c8:02:b4:c2:59:7b:2c:2e:49:a6: 57:93:be:d0:ac:81:95:b3:5a:d7:7f:7d:ed:c1:f0: 97:26:fd:67:bf:d1:51:ea:6a:76:f3:8b:12:66:81: 4c:28:4a:63:32:a7:ec:9c:98:18:6f:20:65:fe:f7: 7c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FC:33:F1:77:49:BB:A3:EA:2F:AA:14:4E:C7:85:4E:5D:10:AB:B5 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:62:03:43:7c:8d:fb:6c:99:27:8e:06:71:5c:ef:1d:62:61: 37:ea:51:cb:52:b9:97:c9:56:38:e7:8b:0b:d9:fc:87:ab:c0: 8d:0d:c1:2d:14:2b:e9:a8:89:07:ea:17:d1:7e:d2:b5:42:65: 38:54:bb:25:dd:34:da:56:fa:0a:cd:57:46:51:e3:82:35:3f: 47:5e:2d:a3:73:4b:8f:47:87:2d:a6:55:f9:fd:88:ee:ee:4b: f1:80:c5:cd:cc:10:57:55:b8:6f:db:22:0e:2c:d3:6a:c2:34: e2:2f:ed:3b:00:c2:7e:6a:c0:09:b7:31:45:c8:38:ea:25:a5: f5:d0:85:d2:18:ef:24:9b:f8:5d:c1:9c:62:5b:4b:17:fd:95: ec:a9:0e:b4:83:56:64:a5:c5:b9:5c:32:49:ff:5a:99:42:2a: c0:5f:a0:60:c4:3b:a2:b2:e5:04:7c:fb:c5:79:cf:e2:9c:6d: 78:f8:e6:69:ad:bd:60:f3:6b:e6:56:b0:f0:51:f4:5c:91:ed: d5:b4:65:84:54:44:56:7c:46:ef:9e:d4:3f:32:7c:96:0a:c9: c2:cf:cd:e8:61:d1:08:82:2a:5e:db:91:d3:5d:e8:86:d4:a8: ad:da:57:97:e8:ca:37:e7:97:6c:18:8d:0a:ee:cb:09:49:c2: ba:cd:9e:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjYwNTIwMTU1MTU4WhcNMjYwNTI3MTU1MTU4WjAYMRYwFAYD VQQDEw02YTBkZDg5ZS1mM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreSo1LvbeUHcurHypM2r6TV1Y6WbgOuEjO1pAqcSd0AtxZix6XrccR/intHw FMzKVQk8J+V4ESguamqUvJXWWuVW4pX1aToVZRWq8SLwoU/5t1I5JOOjIHC/dbr1 KwZ9Mw6KkokLNxc/Lwtc+IJAmyJZAxhqHXAcyeJkQjgppPbLN1XzZCh/zw7tviHW RfjS3U8zW4A0Xw0d05EiZhIHEeWEPJ/V8LO3/rN77ujgzHyOFepxq+0/eW3k6Att R4+j5ibjUgH7UcgCtMJZeywuSaZXk77QrIGVs1rXf33twfCXJv1nv9FR6mp284sS ZoFMKEpjMqfsnJgYbyBl/vd8nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKn8M/F3 Sbuj6i+qFE7HhU5dEKu1MB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQGIDQ3yN+2yZJ44GcVzvHWJhN+pRy1K5l8lWOOeLC9n8h6vAjQ3BLRQr6aiJ B+oX0X7StUJlOFS7Jd002lb6Cs1XRlHjgjU/R14to3NLj0eHLaZV+f2I7u5L8YDF zcwQV1W4b9siDizTasI04i/tOwDCfmrACbcxRcg46iWl9dCF0hjvJJv4XcGcYltL F/2V7KkOtINWZKXFuVwySf9amUIqwF+gYMQ7orLlBHz7xXnP4pxtePjmaa29YPNr 5law8FH0XJHt1bRlhFREVnxG757UPzJ8lgrJws/N6GHRCIIqXtuR013ohtSordpX l+jKN+eXbBiNCu7LCUnCus2eTQ== -----END CERTIFICATE-----Generated at Thu May 21 11:57:52 2026 by rpki-client