$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: bEiRsaiSztb88qcB9DJZRgpT8IG/ESKmcFCC9Ho0s/w= Subject key identifier: 65:48:AB:0C:91:2E:BD:97:EE:E0:03:5A:0D:3E:96:60:F5:F7:21:73 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2E61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2DE1 Signing time: Wed 20 May 2026 15:30:47 +0000 Manifest this update: Wed 20 May 2026 15:30:46 +0000 Manifest next update: Wed 27 May 2026 15:30:46 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: V+ibLwoKJh96nDJtg0Pwzo5oRzxzfE5oKouY8iRVK+Y=) 2: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=) 3: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=) 4: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11873 (0x2e61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: May 20 15:30:46 2026 GMT Not After : May 27 15:30:46 2026 GMT Subject: CN=6a0dd3a7-e100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:8f:5e:53:15:4d:16:50:e0:97:44:8d:83: 95:19:74:87:36:e1:a1:a8:fa:6a:37:62:ca:a3:71: ae:88:17:d5:a3:4c:0a:0c:0d:32:c0:f4:8b:0b:0b: 46:c4:79:0a:96:34:10:e5:64:5f:c0:53:03:07:55: de:d4:65:0e:e7:cb:e8:94:ff:19:71:13:9b:ab:41: b9:6e:06:9a:8b:6f:77:54:03:d0:4c:87:3c:46:f8: c1:f7:8c:24:bc:33:d5:d9:09:d6:44:4e:0f:e5:cf: 87:2a:17:b9:f1:02:6e:55:7a:03:34:ab:b9:f8:d1: 83:7b:a3:a2:37:9c:fc:97:45:72:09:b4:a1:2c:a6: b3:e4:3c:d3:91:7a:58:fd:42:de:8c:02:6d:94:5b: bd:67:cb:c1:6c:71:70:40:57:40:84:bc:7d:28:5d: 4f:ab:84:d2:07:4f:41:06:ca:70:62:33:aa:1e:c9: 9a:3a:9e:d7:16:34:fd:1c:c4:6b:c6:c2:df:e4:cf: 5b:20:00:7b:ef:71:eb:b8:78:1a:a9:e9:77:ef:77: 0e:7c:0f:75:59:24:cf:40:01:17:92:e4:59:be:02: 79:1e:56:9f:fb:4d:23:e1:63:06:16:11:e1:4f:97: c8:c1:de:23:4c:04:98:88:31:7f:34:cf:d6:9c:01: c1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:48:AB:0C:91:2E:BD:97:EE:E0:03:5A:0D:3E:96:60:F5:F7:21:73 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:aa:b2:d0:1a:4d:07:55:9f:21:ec:f3:cc:ee:d6:d7:32:cd: f4:3d:8e:21:77:44:a4:68:3f:e4:0c:4e:97:c3:88:db:d1:19: 6d:09:30:7e:94:81:d4:11:bf:94:55:03:5c:fa:cd:c3:e3:7b: d7:fb:a6:28:05:46:ef:29:9d:f4:66:34:83:a4:39:cb:7d:3c: b6:96:02:3c:9a:e7:65:9a:f9:3e:4f:04:ec:17:3a:1e:78:0d: 71:f0:43:da:94:c5:3e:9f:d3:94:a9:0d:ee:99:bb:4a:78:9a: c7:23:22:f2:1a:b8:66:99:1d:4d:61:1a:f3:14:16:12:fe:ed: ea:60:93:e4:f7:07:02:b5:49:89:ef:5a:48:c4:e0:11:8c:84: 45:c3:5d:26:23:26:5a:89:b5:6c:2a:c6:b0:91:1f:af:25:9c: 46:a3:cf:a8:04:9c:96:a5:6e:68:c5:d6:e2:f1:bd:12:a6:f6: 9b:60:83:0a:39:dc:d6:d4:1d:f9:01:54:c8:79:6e:df:bf:13: 1b:f3:ae:fd:92:fa:67:d5:7a:fa:18:ab:15:7f:03:84:2c:a2: cb:48:e5:7b:f5:69:51:4c:f4:e7:34:a6:b1:76:dd:fd:af:b8: c5:ac:61:bd:1d:c2:79:71:96:e1:be:ba:e7:54:e3:73:de:3c: a3:2d:e8:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjYwNTIwMTUzMDQ2WhcNMjYwNTI3MTUzMDQ2WjAYMRYwFAYD VQQDEw02YTBkZDNhNy1lMTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8ePXlMVTRZQ4JdEjYOVGXSHNuGhqPpqN2LKo3GuiBfVo0wKDA0ywPSLCwtG xHkKljQQ5WRfwFMDB1Xe1GUO58volP8ZcRObq0G5bgaai293VAPQTIc8RvjB94wk vDPV2QnWRE4P5c+HKhe58QJuVXoDNKu5+NGDe6OiN5z8l0VyCbShLKaz5DzTkXpY /ULejAJtlFu9Z8vBbHFwQFdAhLx9KF1Pq4TSB09BBspwYjOqHsmaOp7XFjT9HMRr xsLf5M9bIAB773HruHgaqel373cOfA91WSTPQAEXkuRZvgJ5Hlaf+00j4WMGFhHh T5fIwd4jTASYiDF/NM/WnAHBSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGVIqwyR Lr2X7uADWg0+lmD19yFzMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACaqy0BpNB1WfIezzzO7W1zLN9D2OIXdEpGg/5AxOl8OI29EZbQkwfpSB1BG/ lFUDXPrNw+N71/umKAVG7ymd9GY0g6Q5y308tpYCPJrnZZr5Pk8E7Bc6HngNcfBD 2pTFPp/TlKkN7pm7SniaxyMi8hq4ZpkdTWEa8xQWEv7t6mCT5PcHArVJie9aSMTg EYyERcNdJiMmWom1bCrGsJEfryWcRqPPqASclqVuaMXW4vG9Eqb2m2CDCjnc1tQd +QFUyHlu378TG/Ou/ZL6Z9V6+hirFX8DhCyiy0jle/VpUUz05zSmsXbd/a+4xaxh vR3CeXGW4b6651Tjc948oy3o0w== -----END CERTIFICATE-----Generated at Thu May 21 11:59:14 2026 by rpki-client