$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: f/k6++F1JM2MUPXrD5Yg0o6bzvsaFqWywZr0TaD5NW8= Subject key identifier: 9F:6B:2F:20:6F:1A:A2:1E:49:10:98:C0:A6:C9:BB:78:91:7B:3F:09 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0227 Signing time: Thu 21 May 2026 02:46:19 +0000 Manifest this update: Thu 21 May 2026 02:46:18 +0000 Manifest next update: Thu 28 May 2026 02:46:18 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: /kOb26jZ8y2agkwb8Tex4QKXyx0Ww4DBnHEML3AHtIk=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: wcyOVBW/tGd3skqw30jqZPA6tqviwDkxNlXM49SoLAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: May 21 02:46:18 2026 GMT Not After : May 28 02:46:18 2026 GMT Subject: CN=6a0e71fb-8d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:3e:ad:4d:6a:6c:3c:4f:08:fd:52:2c:24: cc:b9:21:72:30:06:8a:91:98:60:5f:42:12:7f:0b: 03:18:5c:cc:84:05:67:84:7b:3f:a8:82:13:79:c1: 66:3e:2d:cb:06:2d:51:81:e2:c3:75:e1:8a:d3:7c: 3b:3a:8b:ea:30:b5:78:0c:56:5f:78:06:42:0f:48: 2d:de:dd:53:92:d5:89:c0:8d:21:5d:44:3b:99:9e: 6a:77:94:37:92:98:26:55:f8:1b:52:9b:ee:ab:40: 67:a1:56:c4:35:47:47:e7:e2:bd:6e:ca:72:26:c7: 2e:80:6c:fe:94:88:9f:90:99:1e:7b:78:ac:4d:cb: 23:22:57:45:39:f1:e3:ab:4a:b6:e7:20:0c:16:c2: 02:74:06:81:86:35:c9:76:cc:c2:bf:fa:f5:a0:99: 90:c9:77:2c:fb:b0:64:2d:23:5f:96:3f:ad:be:73: 38:2f:f0:f2:a7:2b:7e:10:a3:04:6e:fe:87:78:e8: e7:2a:4f:1f:b0:73:12:67:0a:02:2d:81:bf:f8:be: 84:43:8f:8c:c6:70:dc:ae:65:89:25:a7:8f:3c:58: 46:8c:17:ee:b0:a4:c3:8f:68:6e:3c:83:db:f6:d0: 83:33:b2:11:ff:a3:57:73:50:a7:a6:79:b2:f7:e1: 6f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6B:2F:20:6F:1A:A2:1E:49:10:98:C0:A6:C9:BB:78:91:7B:3F:09 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:d8:18:c4:89:ca:a3:ae:56:bc:bd:d3:ac:91:b8:54:e6:49: fe:2d:60:3f:30:3e:f3:a4:1f:ab:ff:01:f1:03:33:ad:f6:b9: c4:2f:e5:68:ac:81:66:03:f6:fb:40:26:16:19:0d:4d:3d:05: 9f:d3:80:d1:97:6f:a0:20:69:e9:74:b6:29:f5:37:10:51:f3: c6:89:fd:93:f1:82:86:39:3d:1a:90:b4:ce:d6:64:18:d9:14: 42:5f:56:3b:35:33:71:3b:b9:c8:f4:fa:af:60:ff:59:4f:d0: 1a:0a:51:4b:5d:a1:47:d1:bd:38:59:57:8b:a1:5d:ec:fd:17: bb:d7:7f:cf:67:3a:aa:0b:fe:d6:23:8a:78:6a:32:1b:ca:c7: 95:c8:7a:46:67:76:7e:4a:f7:32:35:bb:b9:72:71:b4:96:2e: 6d:26:34:0b:b8:9e:3c:73:2f:7f:e7:fb:2a:34:97:e2:1e:c0: ad:6a:1f:48:c3:dd:cf:0d:c7:fd:40:8c:40:8c:1b:6d:7c:e7: f8:64:7f:72:20:4d:6e:b9:05:6c:9e:b0:27:94:b7:c6:2b:ab: 3a:68:76:2d:39:72:4c:3e:49:e9:fe:01:5a:b7:bb:40:55:2c: 36:6f:e4:9c:3c:49:51:04:88:8c:f5:0a:0c:11:cc:be:0b:29: f9:f3:0a:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjYwNTIxMDI0NjE4WhcNMjYwNTI4MDI0NjE4WjAYMRYwFAYD VQQDEw02YTBlNzFmYi04ZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvX4+rU1qbDxPCP1SLCTMuSFyMAaKkZhgX0ISfwsDGFzMhAVnhHs/qIITecFm Pi3LBi1RgeLDdeGK03w7OovqMLV4DFZfeAZCD0gt3t1TktWJwI0hXUQ7mZ5qd5Q3 kpgmVfgbUpvuq0BnoVbENUdH5+K9bspyJscugGz+lIifkJkee3isTcsjIldFOfHj q0q25yAMFsICdAaBhjXJdszCv/r1oJmQyXcs+7BkLSNflj+tvnM4L/Dypyt+EKME bv6HeOjnKk8fsHMSZwoCLYG/+L6EQ4+MxnDcrmWJJaePPFhGjBfusKTDj2huPIPb 9tCDM7IR/6NXc1Cnpnmy9+FvfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ9rLyBv GqIeSRCYwKbJu3iRez8JMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABdgYxInKo65WvL3TrJG4VOZJ/i1gPzA+86Qfq/8B8QMzrfa5xC/laKyBZgP2 +0AmFhkNTT0Fn9OA0ZdvoCBp6XS2KfU3EFHzxon9k/GChjk9GpC0ztZkGNkUQl9W OzUzcTu5yPT6r2D/WU/QGgpRS12hR9G9OFlXi6Fd7P0Xu9d/z2c6qgv+1iOKeGoy G8rHlch6Rmd2fkr3MjW7uXJxtJYubSY0C7iePHMvf+f7KjSX4h7ArWofSMPdzw3H /UCMQIwbbXzn+GR/ciBNbrkFbJ6wJ5S3xiurOmh2LTlyTD5J6f4BWre7QFUsNm/k nDxJUQSIjPUKDBHMvgsp+fMKUQ== -----END CERTIFICATE-----Generated at Thu May 21 10:15:35 2026 by rpki-client