$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: qZjhn9SpiIliO8+QxxkzXr0+Sz6maVIMNQnqFr4JS64= Subject key identifier: 29:71:D5:85:79:73:01:D1:F4:78:57:88:41:34:16:82:12:34:71:C9 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0171 Signing time: Thu 21 May 2026 04:49:37 +0000 Manifest this update: Thu 21 May 2026 04:49:36 +0000 Manifest next update: Thu 28 May 2026 04:49:36 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: A8EOmNKrzUOM9tg4pGwVBjn1gkZMk1BAPrQdBvRjkic=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: b75sAYMEIXYdDT25gmVHvykzgLoZpS+x22joZCKSsl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: May 21 04:49:36 2026 GMT Not After : May 28 04:49:36 2026 GMT Subject: CN=6a0e8ee1-5693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a4:78:d0:f5:ad:22:26:67:ad:e1:f1:4a:24: 1c:54:4a:71:77:7b:3b:4d:99:0f:ab:21:13:4e:e8: bb:22:0f:7c:6c:1d:ef:c4:1a:b5:44:65:e7:ca:a6: d7:54:c1:cd:dc:40:e8:2b:6f:73:25:c4:ff:37:c0: dc:61:23:45:8e:2e:34:04:57:2d:52:9c:e1:4a:6c: 29:aa:a6:fc:2c:f0:fe:db:b1:c9:30:b9:bb:49:34: 9a:6b:20:d2:13:58:58:79:87:cf:a8:98:5f:a3:9a: 7f:03:48:0b:09:69:d0:77:bd:db:3a:fa:0a:3b:77: 4b:f1:97:b1:38:46:78:a4:c7:89:cd:80:f5:f9:84: f7:dd:bd:bc:5f:84:76:60:7d:42:0f:7d:24:fd:18: 4c:b1:b3:a7:d9:78:12:12:02:45:77:29:5b:5b:8b: 68:d3:28:42:fe:83:74:ad:4d:19:05:27:56:f2:60: 86:3a:e4:b3:b2:d3:53:6c:93:01:bc:e8:2d:40:55: ae:a4:22:3e:2e:86:95:a3:ed:93:7c:c6:74:ea:7a: 2d:64:ba:a4:f0:cb:66:45:1b:f4:79:a7:16:91:ae: 4b:15:9b:19:a6:02:35:bc:ac:ed:5e:6d:91:f5:25: 76:5b:ab:5b:24:84:4b:a6:75:58:26:50:01:10:90: 72:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:71:D5:85:79:73:01:D1:F4:78:57:88:41:34:16:82:12:34:71:C9 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:7d:b5:eb:ea:0d:44:5d:84:c2:6f:1c:64:59:52:0f:de:86: 81:3a:e7:36:11:4b:72:fe:83:70:d3:fe:02:8a:25:85:c5:67: 4e:ed:1b:a2:0c:e5:80:c9:bb:16:b8:df:b7:c2:ef:61:93:f0: a3:64:d7:3f:1b:92:41:2c:71:68:2b:f1:16:58:6a:e8:1e:15: e2:54:69:d3:34:af:a6:5c:b4:b3:84:26:58:f4:ca:98:b5:89: 8e:8e:ff:4d:e6:80:55:f4:d8:c5:4c:e6:03:3a:25:73:ae:25: 3a:e8:f7:51:1d:cf:e0:1d:fc:9a:14:ac:fc:38:f9:83:0c:1a: 3c:2f:3e:c1:12:3c:e9:e4:1a:c2:f0:14:aa:a1:85:50:95:46: 5a:fb:54:6a:56:da:5a:a7:f8:1d:0f:b7:26:22:92:85:3b:24: 9f:f0:f2:d5:96:b8:64:4c:ca:55:54:91:c1:9d:8d:da:b6:fd: 50:ef:7a:8b:56:4e:e8:db:1c:04:12:47:5f:92:da:a2:b7:1e: 78:d1:d5:4a:78:8c:67:f0:d6:f7:8c:f3:a6:ec:15:dd:79:1c: e3:44:67:28:0a:7a:59:77:31:47:2e:85:96:f7:8e:23:83:8c: f0:61:08:b3:87:83:fd:89:0d:57:da:e1:56:1a:99:9e:bf:87: b5:ac:39:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjYwNTIxMDQ0OTM2WhcNMjYwNTI4MDQ0OTM2WjAYMRYwFAYD VQQDEw02YTBlOGVlMS01NjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKR40PWtIiZnreHxSiQcVEpxd3s7TZkPqyETTui7Ig98bB3vxBq1RGXnyqbX VMHN3EDoK29zJcT/N8DcYSNFji40BFctUpzhSmwpqqb8LPD+27HJMLm7STSaayDS E1hYeYfPqJhfo5p/A0gLCWnQd73bOvoKO3dL8ZexOEZ4pMeJzYD1+YT33b28X4R2 YH1CD30k/RhMsbOn2XgSEgJFdylbW4to0yhC/oN0rU0ZBSdW8mCGOuSzstNTbJMB vOgtQFWupCI+LoaVo+2TfMZ06notZLqk8MtmRRv0eacWka5LFZsZpgI1vKztXm2R 9SV2W6tbJIRLpnVYJlABEJByOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFClx1YV5 cwHR9HhXiEE0FoISNHHJMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGn216+oNRF2Ewm8cZFlSD96GgTrnNhFLcv6DcNP+AoolhcVnTu0bogzlgMm7 Frjft8LvYZPwo2TXPxuSQSxxaCvxFlhq6B4V4lRp0zSvply0s4QmWPTKmLWJjo7/ TeaAVfTYxUzmAzolc64lOuj3UR3P4B38mhSs/Dj5gwwaPC8+wRI86eQawvAUqqGF UJVGWvtUalbaWqf4HQ+3JiKShTskn/Dy1Za4ZEzKVVSRwZ2N2rb9UO96i1ZO6Nsc BBJHX5LaorceeNHVSniMZ/DW94zzpuwV3Xkc40RnKAp6WXcxRy6FlveOI4OM8GEI s4eD/YkNV9rhVhqZnr+Htaw5ow== -----END CERTIFICATE-----Generated at Thu May 21 10:15:59 2026 by rpki-client