$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: 599b0mlmnvSVsRtudi7dRqWa5TuzK8vIlA0NJuC6Hz8= Subject key identifier: 71:8A:84:1F:74:59:2B:4A:B2:FD:1B:0D:ED:29:CD:91:83:8F:33:9C Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 10C5 Signing time: Wed 20 May 2026 17:22:52 +0000 Manifest this update: Wed 20 May 2026 17:22:51 +0000 Manifest next update: Wed 27 May 2026 17:22:51 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: uJR0EvVTGZhP0RzMwgFDk4ZcrM6CSNsq0s+P1ngnTxg=) 2: 2E680D2AC99911F0BDA2F55CC4F9AE02.roa (hash: Nvtm5zPUTLfKMfwQNw1RkItbZZ/wblgNOEK3hvT7oKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4359 (0x1107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: May 20 17:22:51 2026 GMT Not After : May 27 17:22:51 2026 GMT Subject: CN=6a0dedeb-4b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:02:46:56:9e:ce:1d:46:c5:5b:0d:0e:c6: 0c:a6:96:4b:6d:c7:82:ff:62:3a:eb:86:8a:2d:d2: 50:d2:ea:dc:ad:f4:0f:3e:e2:04:a9:5d:8c:c3:6b: 8d:c8:fd:01:ed:ce:31:14:e2:59:a7:ec:98:df:07: 3f:49:fd:89:2e:51:97:f7:05:07:27:29:55:cd:c2: 3d:6f:dc:84:ef:65:84:ff:78:1a:2a:63:e9:fd:93: 05:7f:02:ff:ca:d5:82:27:ef:a8:1d:24:08:7e:c1: 88:17:68:5e:3e:15:4d:88:79:fd:0d:0f:ca:0f:a0: 03:f4:91:9f:05:72:4a:34:cd:20:75:f6:49:ee:47: 6e:d5:48:fd:5f:a2:1b:ae:5f:56:e5:b9:c9:32:51: ad:17:bd:37:a3:05:b0:38:e2:90:b9:35:0a:06:78: 46:b5:ee:96:ad:3b:56:68:a2:df:94:8f:db:e6:d4: 29:f2:4b:87:e3:83:60:06:45:be:de:d4:75:5c:22: c0:39:af:dc:df:d5:b4:f5:c4:7f:29:d9:f5:ed:a0: d4:cc:bf:e7:c7:2a:8c:4b:c6:9b:4e:98:54:fd:47: 0b:fb:ff:73:2c:81:a0:98:5f:27:c6:93:73:0f:4c: 8d:11:c0:36:6e:d5:2c:d9:2b:23:bd:1e:6e:70:d0: 5d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8A:84:1F:74:59:2B:4A:B2:FD:1B:0D:ED:29:CD:91:83:8F:33:9C X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b9:ac:d2:fd:75:26:28:96:c7:ef:18:e0:c5:c6:61:90:30: 6e:50:51:19:32:4a:74:70:3a:ff:6e:8d:7a:07:b7:f1:bb:ad: 6b:30:c0:76:04:5c:44:69:2b:5c:6e:a2:a4:ce:5d:aa:f8:66: 6f:4f:58:26:3a:f0:39:0d:97:70:3a:95:80:b5:aa:7a:a8:26: 65:9c:37:2d:ae:82:a2:87:68:7c:77:84:b4:02:6c:80:ec:b7: b5:ee:33:34:4a:55:b6:99:e3:4d:cd:e5:1e:15:eb:f5:50:c2: c4:2e:3e:19:3c:ff:1f:13:dc:7b:69:ab:5e:97:5b:13:f3:2b: 22:00:c3:ea:0f:4e:74:5a:c1:4b:83:5b:d5:91:43:2f:6f:1b: 61:ac:c6:78:1b:03:29:83:5c:f7:d1:df:a2:f4:d3:9d:63:bf: ff:15:92:45:a2:17:f6:65:73:49:33:2e:85:79:99:c5:bf:b4: 87:33:04:2a:5a:7a:01:99:62:65:ca:e7:18:68:d5:9b:bd:6d: 98:7c:a0:79:a3:01:5b:91:fb:f9:72:6c:4d:f2:87:ca:03:61: 69:30:c2:db:58:1f:36:0a:d9:b6:32:08:23:9a:dc:17:6a:6b: f8:e1:cb:98:14:0f:e3:e7:87:3c:7e:30:4e:2c:27:72:18:34: a0:f8:bf:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjYwNTIwMTcyMjUxWhcNMjYwNTI3MTcyMjUxWjAYMRYwFAYD VQQDEw02YTBkZWRlYi00Yjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqICRlaezh1GxVsNDsYMppZLbceC/2I664aKLdJQ0urcrfQPPuIEqV2Mw2uN yP0B7c4xFOJZp+yY3wc/Sf2JLlGX9wUHJylVzcI9b9yE72WE/3gaKmPp/ZMFfwL/ ytWCJ++oHSQIfsGIF2hePhVNiHn9DQ/KD6AD9JGfBXJKNM0gdfZJ7kdu1Uj9X6Ib rl9W5bnJMlGtF703owWwOOKQuTUKBnhGte6WrTtWaKLflI/b5tQp8kuH44NgBkW+ 3tR1XCLAOa/c39W09cR/Kdn17aDUzL/nxyqMS8abTphU/UcL+/9zLIGgmF8nxpNz D0yNEcA2btUs2SsjvR5ucNBdoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHGKhB90 WStKsv0bDe0pzZGDjzOcMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOLms0v11JiiWx+8Y4MXGYZAwblBRGTJKdHA6/26Nege38butazDAdgRcRGkr XG6ipM5dqvhmb09YJjrwOQ2XcDqVgLWqeqgmZZw3La6CoodofHeEtAJsgOy3te4z NEpVtpnjTc3lHhXr9VDCxC4+GTz/HxPce2mrXpdbE/MrIgDD6g9OdFrBS4Nb1ZFD L28bYazGeBsDKYNc99HfovTTnWO//xWSRaIX9mVzSTMuhXmZxb+0hzMEKlp6AZli ZcrnGGjVm71tmHygeaMBW5H7+XJsTfKHygNhaTDC21gfNgrZtjIII5rcF2pr+OHL mBQP4+eHPH4wTiwnchg0oPi/9g== -----END CERTIFICATE-----Generated at Thu May 21 09:38:03 2026 by rpki-client