$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: iwP4y5QHu/bPItQGJpKBKlUDqZ1m/LRyxhY0Z7Pqwag= Subject key identifier: 66:8E:3C:E8:E0:96:DA:EF:06:8D:48:AC:04:65:B7:60:21:00:83:07 Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2E2B Signing time: Wed 20 May 2026 15:30:04 +0000 Manifest this update: Wed 20 May 2026 15:30:03 +0000 Manifest next update: Wed 27 May 2026 15:30:03 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: g0o8Sr1jfNhdZ0YEBl3PqOjauVAv4Ww3owTBpdBes7s=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: /EIrPIM51/gSZuhZi7PXLaV6H0Mn6QzhbGDSyj34JEc=) 3: 0F6B8D969A6B11F08E49AE43C4F9AE02.roa (hash: VFEJ2pC2bmVwEIh9Ul33fbeRMTH5fCAYFl8iU/+lajY=) 4: F2AE85D6128E11F1BA652BAD3A3D8C67.roa (hash: N17i/Vo6qq4GynkhbHnkWbsIC9qgwD2VSBbjxJt5D3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11856 (0x2e50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: May 20 15:30:03 2026 GMT Not After : May 27 15:30:03 2026 GMT Subject: CN=6a0dd37c-b555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:b8:2b:a8:f2:46:89:c0:da:09:4d:0a:d0: b3:5e:f4:71:ae:ce:22:83:dc:ba:3c:ce:83:90:38: 5c:bb:a1:28:69:12:36:09:34:b9:fc:95:3f:b5:9f: 48:3b:7f:e4:93:29:19:64:04:19:c2:79:16:b7:45: 38:fd:d2:d7:d9:55:e4:d5:a0:f8:09:18:c7:eb:ea: b8:01:5a:a8:7c:49:84:e4:e0:5b:2d:61:fe:ed:c8: dc:4c:c6:c1:33:f2:1a:19:e9:db:2e:f8:55:7f:29: c8:b1:12:96:0f:52:a8:d5:1c:d4:75:e1:fa:3e:73: 05:87:72:88:70:b0:0d:f5:89:30:95:34:98:86:94: 25:e8:88:ea:88:45:ff:8d:e7:64:6c:1f:8d:76:2f: 30:fb:95:f2:d9:f8:fd:13:a9:cb:30:2b:5d:3e:73: 29:42:60:e2:14:1a:0f:a6:9b:8c:ec:c9:50:ea:93: f8:80:44:b2:72:cd:88:ea:02:76:9c:18:1b:1d:24: 29:be:f6:02:a2:30:b0:7d:36:27:79:61:16:89:81: f7:e1:97:c5:a4:86:2d:8d:25:ff:83:39:8e:07:51: fc:4b:70:c3:e7:b5:26:bc:0f:1f:12:25:ef:82:11: 93:25:ae:d1:d9:99:79:62:30:9e:db:7f:22:5c:69: e4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:8E:3C:E8:E0:96:DA:EF:06:8D:48:AC:04:65:B7:60:21:00:83:07 X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:24:9c:3c:dd:a0:f3:c8:4f:8b:bf:ab:88:43:89:72:08:ee: b7:ad:cb:85:57:8c:d1:34:ef:ac:e3:42:66:c2:ac:27:ac:cd: 18:5d:b9:44:74:4b:03:d9:ef:2b:87:3e:8e:ea:2a:68:7d:61: f7:7b:ef:c3:63:1c:35:c1:fc:87:40:81:c2:70:45:12:e3:6e: a0:b7:44:92:cb:de:60:a6:9e:6d:30:5a:d0:9f:6d:4b:07:da: 0c:7a:95:49:94:cc:b1:b8:77:d5:58:0d:2d:2b:e0:72:8a:18: fb:4f:44:62:44:04:6b:7d:3f:71:d8:0d:17:1b:dc:4d:92:ed: a8:9d:b9:a0:a3:db:7d:19:38:a0:0f:f6:4c:64:8d:7c:ea:00: 81:0b:0e:cb:86:68:0a:d7:89:0e:bb:86:5d:41:cf:fb:2b:2a: 34:fe:f3:40:97:de:49:0d:a5:c2:ed:f3:7f:c1:c5:42:44:9a: e6:07:a2:fe:97:5b:24:ef:5e:9e:4e:3c:60:25:4f:48:d1:fd: 85:46:9f:39:74:aa:a5:dc:d4:0c:8a:a0:85:64:46:14:56:5a: 3a:3f:64:cf:b6:f0:69:24:5d:cb:36:f2:48:0b:95:f2:2a:05: 5a:f7:90:da:f3:73:9f:e3:36:83:45:0d:54:cb:2d:c6:58:25: e9:77:8c:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjYwNTIwMTUzMDAzWhcNMjYwNTI3MTUzMDAzWjAYMRYwFAYD VQQDEw02YTBkZDM3Yy1iNTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwK4K6jyRonA2glNCtCzXvRxrs4ig9y6PM6DkDhcu6EoaRI2CTS5/JU/tZ9I O3/kkykZZAQZwnkWt0U4/dLX2VXk1aD4CRjH6+q4AVqofEmE5OBbLWH+7cjcTMbB M/IaGenbLvhVfynIsRKWD1Ko1RzUdeH6PnMFh3KIcLAN9YkwlTSYhpQl6IjqiEX/ jedkbB+Ndi8w+5Xy2fj9E6nLMCtdPnMpQmDiFBoPppuM7MlQ6pP4gESycs2I6gJ2 nBgbHSQpvvYCojCwfTYneWEWiYH34ZfFpIYtjSX/gzmOB1H8S3DD57UmvA8fEiXv ghGTJa7R2Zl5YjCe238iXGnkuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGaOPOjg ltrvBo1IrARlt2AhAIMHMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIyScPN2g88hPi7+riEOJcgjut63LhVeM0TTvrONCZsKsJ6zNGF25RHRLA9nv K4c+juoqaH1h93vvw2McNcH8h0CBwnBFEuNuoLdEksveYKaebTBa0J9tSwfaDHqV SZTMsbh31VgNLSvgcooY+09EYkQEa30/cdgNFxvcTZLtqJ25oKPbfRk4oA/2TGSN fOoAgQsOy4ZoCteJDruGXUHP+ysqNP7zQJfeSQ2lwu3zf8HFQkSa5gei/pdbJO9e nk48YCVPSNH9hUafOXSqpdzUDIqghWRGFFZaOj9kz7bwaSRdyzbySAuV8ioFWveQ 2vNzn+M2g0UNVMstxlgl6XeM6A== -----END CERTIFICATE-----Generated at Thu May 21 10:54:33 2026 by rpki-client