$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: oZKw9+r2WcM9vqyH3mLoftvpDQ+tw23h5CwQU7GUsoA= Subject key identifier: ED:0E:AA:5E:05:4C:69:91:53:F9:23:9A:50:09:B4:F4:E7:FF:B7:11 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 02F3 Signing time: Thu 21 May 2026 01:22:09 +0000 Manifest this update: Thu 21 May 2026 01:22:08 +0000 Manifest next update: Thu 28 May 2026 01:22:08 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: xI/od1kta6aLm9CPZ75EbHOMFyVyaO2emaC9Xdci05Q=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: +F1FZtsTrw14W4WmmJaPNvqLxkx0Lf//1RCLaJV77j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: May 21 01:22:08 2026 GMT Not After : May 28 01:22:08 2026 GMT Subject: CN=6a0e5e41-d625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5e:b2:45:9c:44:74:ee:06:6d:27:b7:69:15: 67:fa:5d:54:87:04:77:8b:b5:60:63:1c:89:07:37: 30:aa:be:e6:95:18:27:b7:cc:89:d2:e4:c8:de:8e: c5:4b:c8:fe:a6:3b:2d:e4:88:b6:8b:f1:5d:17:52: b2:e1:62:b4:bc:7e:d8:18:00:9e:d5:eb:f0:66:86: 92:d1:b4:00:41:68:46:c2:3d:75:ec:31:df:ba:3f: 9e:4f:f2:63:5b:4d:46:f4:8c:ca:6e:2a:fa:0e:50: 05:c8:3b:ef:d7:04:73:8f:82:50:1c:71:c7:4c:d8: 76:50:8d:63:02:7b:e8:68:d6:a0:9d:34:e1:ee:5c: 5c:f5:d3:84:62:b1:99:b2:47:e4:0a:b5:4a:c3:2e: 6b:85:f5:7a:5b:f4:61:76:5d:b5:46:a5:9d:c8:59: 8e:a9:c4:e7:01:19:2b:93:55:e2:3c:d5:eb:e2:19: e3:68:e2:89:6b:ca:5e:52:e3:17:61:c7:e8:28:cc: b7:12:c1:18:b2:d6:7c:8f:29:4c:23:c2:7d:73:42: fe:58:f9:0f:4f:45:4a:62:cb:a1:78:7f:4c:a4:7b: 99:ed:b3:af:aa:51:36:cb:b7:fd:17:a2:90:1b:6c: 6f:36:c9:a4:34:0f:be:01:5a:5f:2f:41:8e:09:34: 9c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:0E:AA:5E:05:4C:69:91:53:F9:23:9A:50:09:B4:F4:E7:FF:B7:11 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:30:cb:6b:48:26:06:7a:d6:55:77:d0:c5:18:20:a6:f7:93: 1c:3b:69:8b:11:e5:5d:12:f3:bd:a6:ba:9a:d3:61:48:00:2e: 91:79:64:1d:91:7a:aa:90:29:df:8f:96:5b:f1:87:36:27:1a: 70:f8:26:f1:dd:39:c4:fc:81:11:3e:8f:67:d5:c7:8a:0b:45: c0:5b:72:03:b9:ba:83:79:19:a0:90:a2:f0:cd:07:42:05:e8: e8:cc:08:c4:b5:c8:68:70:31:da:30:84:b3:1d:ac:93:1e:6f: 88:f8:97:90:89:03:5d:ce:eb:89:9a:51:76:3e:70:b7:ac:ca: 15:9f:75:07:ba:97:e3:ca:d9:ec:ae:f7:42:80:14:7d:cd:13: 61:d3:b8:97:4b:a1:80:96:f4:a8:d1:46:2d:20:6e:66:69:af: b7:3b:dd:ce:f2:42:df:f7:38:88:2e:c2:32:5d:5f:c5:8a:f7: b0:b2:6b:ca:f4:ec:28:43:e5:9e:43:e2:a4:a1:e1:b7:98:16: a8:db:9f:56:33:01:f6:26:f6:92:f8:39:b2:55:6c:51:ce:dc: b9:3e:28:78:79:13:c9:d0:60:88:6c:12:99:a4:44:89:b4:84: eb:97:19:13:0e:84:9d:7f:be:1c:5e:29:65:f0:cb:3f:12:5e: 99:a8:09:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjYwNTIxMDEyMjA4WhcNMjYwNTI4MDEyMjA4WjAYMRYwFAYD VQQDEw02YTBlNWU0MS1kNjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyF6yRZxEdO4GbSe3aRVn+l1UhwR3i7VgYxyJBzcwqr7mlRgnt8yJ0uTI3o7F S8j+pjst5Ii2i/FdF1Ky4WK0vH7YGACe1evwZoaS0bQAQWhGwj117DHfuj+eT/Jj W01G9IzKbir6DlAFyDvv1wRzj4JQHHHHTNh2UI1jAnvoaNagnTTh7lxc9dOEYrGZ skfkCrVKwy5rhfV6W/Rhdl21RqWdyFmOqcTnARkrk1XiPNXr4hnjaOKJa8peUuMX YcfoKMy3EsEYstZ8jylMI8J9c0L+WPkPT0VKYsuheH9MpHuZ7bOvqlE2y7f9F6KQ G2xvNsmkNA++AVpfL0GOCTSccwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO0Oql4F TGmRU/kjmlAJtPTn/7cRMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFDDLa0gmBnrWVXfQxRggpveTHDtpixHlXRLzvaa6mtNhSAAukXlkHZF6qpAp 34+WW/GHNicacPgm8d05xPyBET6PZ9XHigtFwFtyA7m6g3kZoJCi8M0HQgXo6MwI xLXIaHAx2jCEsx2skx5viPiXkIkDXc7riZpRdj5wt6zKFZ91B7qX48rZ7K73QoAU fc0TYdO4l0uhgJb0qNFGLSBuZmmvtzvdzvJC3/c4iC7CMl1fxYr3sLJryvTsKEPl nkPipKHht5gWqNufVjMB9ib2kvg5slVsUc7cuT4oeHkTydBgiGwSmaREibSE65cZ Ew6EnX++HF4pZfDLPxJemagJjw== -----END CERTIFICATE-----Generated at Thu May 21 10:28:48 2026 by rpki-client