$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: 0WO7ATrKAdssUYizzi6U63WHKjIdMhVKwkkq6p3/k5Y= Subject key identifier: A8:6A:C3:CF:E4:BA:A8:6B:E9:60:0A:32:39:50:D2:F3:23:EC:60:AC Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0201 Signing time: Thu 21 May 2026 03:09:16 +0000 Manifest this update: Thu 21 May 2026 03:09:16 +0000 Manifest next update: Thu 28 May 2026 03:09:16 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: r0T3GNGpqABw7di5ZNstjq7/AEAJNQO73EiB2JRasDk=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: mj1933/3n6toouA33PYerjmiVEAl8MHe43vblZwNmME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: May 21 03:09:16 2026 GMT Not After : May 28 03:09:16 2026 GMT Subject: CN=6a0e775c-7888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f1:17:8e:93:27:ad:11:6c:d5:b1:92:04:e2: a0:83:0b:4d:e2:ce:2d:74:98:52:e6:2b:23:c5:7b: 3a:56:7b:23:89:9f:b4:be:0b:38:f2:18:9c:6f:d2: 3b:9c:2d:78:d3:73:85:0f:4c:46:9c:ad:e5:d7:61: e0:2d:24:2d:d6:df:3a:b3:76:d6:4b:80:24:38:12: 6d:ed:14:8b:45:d6:5f:67:6f:71:a8:25:2e:44:27: de:1c:c0:7e:fc:77:f8:58:76:8d:9e:a6:a5:df:03: cc:0b:92:3e:cb:63:4c:9c:0d:c9:34:61:75:8f:96: 58:03:99:94:1e:6b:84:00:57:51:42:bc:ee:4f:4e: 55:ea:ab:98:03:b7:f7:a3:d5:ad:86:1e:06:fe:d9: 58:cd:2b:2b:ee:65:cf:12:85:96:e0:81:8a:bc:b6: 23:7f:62:6f:38:c0:9a:28:e6:60:60:c5:d6:0e:9a: 15:15:05:2c:59:67:33:fe:85:12:ad:01:99:87:82: 8f:1a:7f:dd:36:41:84:1e:fd:d5:83:f4:76:9b:53: ae:72:96:3c:85:06:fb:79:1a:55:c9:1c:aa:4d:61: f7:7a:08:05:66:4b:92:df:70:d9:07:e4:03:1d:2e: 72:21:cd:96:2d:9a:39:ce:42:85:8e:33:bd:67:bb: ea:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6A:C3:CF:E4:BA:A8:6B:E9:60:0A:32:39:50:D2:F3:23:EC:60:AC X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ea:b6:f0:07:d6:06:a6:67:aa:ca:16:16:a6:f4:7b:ec:ee: 14:5f:d7:c4:a6:72:23:ce:60:57:ea:9d:7f:55:7e:be:37:a2: 09:05:f4:2f:80:4a:9e:21:0d:d9:5c:85:d3:cc:b6:cd:ad:81: ca:3d:57:1c:30:ea:4a:0f:10:eb:b3:e5:75:1a:08:e9:10:78: 80:91:59:04:5e:f4:79:95:db:43:bf:ed:95:4e:e8:ee:4a:20: 66:94:42:06:1b:24:29:58:a3:cd:7d:f6:ed:fc:db:27:33:1e: 2f:d3:35:c9:ab:69:57:0d:6e:e2:35:75:8b:00:99:af:97:f7: ca:b6:49:df:6e:d1:44:9f:11:e5:c8:be:78:3b:cf:df:e7:7c: 9a:9a:16:9e:c2:94:4e:ee:7d:54:5a:84:ba:24:4e:8c:6b:02: 6f:f6:64:b3:7a:f4:77:3d:3f:25:8f:e4:2b:24:3a:b1:8b:11: 06:61:4a:20:83:d9:81:3e:4a:5c:eb:d8:e3:e4:e8:0b:fb:9e: be:aa:5c:c3:b3:9a:dd:6f:b5:05:f8:39:1c:88:07:5c:d4:bd: 43:79:37:49:ba:33:3e:49:03:a8:93:96:c8:04:91:81:dc:02: 5c:9d:2d:db:80:03:db:23:6c:5a:63:92:ff:8b:e2:90:cd:c4: 3f:5b:f5:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjYwNTIxMDMwOTE2WhcNMjYwNTI4MDMwOTE2WjAYMRYwFAYD VQQDEw02YTBlNzc1Yy03ODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/EXjpMnrRFs1bGSBOKggwtN4s4tdJhS5isjxXs6VnsjiZ+0vgs48hicb9I7 nC1403OFD0xGnK3l12HgLSQt1t86s3bWS4AkOBJt7RSLRdZfZ29xqCUuRCfeHMB+ /Hf4WHaNnqal3wPMC5I+y2NMnA3JNGF1j5ZYA5mUHmuEAFdRQrzuT05V6quYA7f3 o9Wthh4G/tlYzSsr7mXPEoWW4IGKvLYjf2JvOMCaKOZgYMXWDpoVFQUsWWcz/oUS rQGZh4KPGn/dNkGEHv3Vg/R2m1OucpY8hQb7eRpVyRyqTWH3eggFZkuS33DZB+QD HS5yIc2WLZo5zkKFjjO9Z7vqDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKhqw8/k uqhr6WAKMjlQ0vMj7GCsMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT+q28AfWBqZnqsoWFqb0e+zuFF/XxKZyI85gV+qdf1V+vjeiCQX0L4BKniEN 2VyF08y2za2Byj1XHDDqSg8Q67PldRoI6RB4gJFZBF70eZXbQ7/tlU7o7kogZpRC BhskKVijzX327fzbJzMeL9M1yatpVw1u4jV1iwCZr5f3yrZJ327RRJ8R5ci+eDvP 3+d8mpoWnsKUTu59VFqEuiROjGsCb/Zks3r0dz0/JY/kKyQ6sYsRBmFKIIPZgT5K XOvY4+ToC/uevqpcw7Oa3W+1Bfg5HIgHXNS9Q3k3SbozPkkDqJOWyASRgdwCXJ0t 24AD2yNsWmOS/4vikM3EP1v1Ow== -----END CERTIFICATE-----Generated at Thu May 21 10:14:47 2026 by rpki-client