$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: ikNVTny24HwJ+r+cxOr97iWxjQ1V3ejOccJP7yrVtgI= Subject key identifier: 32:87:E9:2A:B5:01:83:6A:BE:FD:88:9C:8C:6F:12:FB:1F:EA:C1:D7 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0DE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0DDA Signing time: Thu 28 May 2026 17:46:32 +0000 Manifest this update: Thu 28 May 2026 17:46:32 +0000 Manifest next update: Thu 04 Jun 2026 17:46:32 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: axqdP3xDwvmgT2GHNLqerBrkMd6FV7zi7xT03D29/hw=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: DwDMBzTdLVQ0ELyjY5S8is56cxQg9X2S+eZse3Y+xqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 17:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3558 (0xde6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: May 28 17:46:32 2026 GMT Not After : Jun 4 17:46:32 2026 GMT Subject: CN=6a187f78-b7fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:65:4e:51:d9:1f:08:3d:f0:41:ee:b8:fd:84: a6:c9:de:35:3b:f4:0c:02:f8:f7:d9:b8:e5:6c:28: f0:71:ea:55:77:ce:7c:6e:43:cf:f0:d4:d3:7c:63: a4:f3:ad:a2:54:ca:19:b6:ef:ef:1d:7f:6f:0e:53: 20:30:b8:b1:69:7c:94:b9:e6:16:74:9b:bb:3a:62: 19:93:e0:f5:4a:92:b5:fb:3f:26:ac:e1:9a:12:b7: 11:9f:dc:6b:b5:93:77:41:b3:b0:9f:d9:87:3c:8b: 21:bc:77:78:ec:bb:fb:01:60:20:46:a0:69:22:af: b0:28:79:8b:18:c2:df:cc:77:42:1b:ab:98:29:a1: 99:c7:d2:7a:79:dc:4f:10:47:07:ef:17:47:26:a2: 46:cd:a9:29:f7:f8:1f:48:05:06:29:51:12:31:fb: 34:18:59:6a:71:04:c6:cd:d7:e6:27:9b:cc:f1:26: c4:90:07:77:30:3e:a6:26:cb:90:9b:21:2f:d1:41: a0:26:cc:49:d0:da:47:ac:14:70:c1:e7:1e:17:4f: ce:73:89:fd:f4:2b:bf:42:a1:92:45:3a:2f:93:91: ff:00:9d:40:77:0c:65:08:dc:72:ba:dc:c4:39:04: 7b:2d:1e:1c:ad:17:0e:31:64:f6:41:6b:55:65:04: da:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:87:E9:2A:B5:01:83:6A:BE:FD:88:9C:8C:6F:12:FB:1F:EA:C1:D7 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:2c:ad:63:3c:e7:73:35:55:56:7f:c3:5b:37:5d:38:44:ae: a1:91:06:39:0b:ca:4d:d6:c3:6b:4c:77:09:c0:3f:20:9e:ac: bb:e4:c3:47:51:bd:b1:94:13:8a:3d:12:b8:bc:51:1a:60:49: 43:28:e8:99:53:75:54:69:73:3b:53:03:9c:27:a6:69:15:cb: 27:a3:84:62:2d:b2:b2:e3:19:f1:6e:5e:33:66:7d:1e:41:28: 8a:cc:26:cc:8e:5d:f6:84:61:5c:af:78:ef:9f:48:2c:42:17: ca:68:f8:f0:29:3b:9c:c8:b6:e5:6f:d1:3a:09:46:9a:3d:3c: 71:8b:c4:69:77:13:b3:d9:c5:bc:cb:3c:4d:d1:92:53:f0:47: 6a:c7:76:7b:a4:1a:e3:57:73:9c:a2:d0:44:6c:75:18:79:17: 98:24:88:1a:c1:5a:ae:fa:55:53:e4:f7:ab:55:17:24:e2:8b: 33:0a:e3:16:8a:ac:e3:71:0c:f7:85:8f:49:cc:93:1d:94:2b: c6:67:91:f7:f5:bb:c3:9c:fc:cd:fe:eb:e1:6c:c6:a1:3b:87: 5f:1f:d5:fd:2f:2c:28:bc:06:0e:84:32:0a:9a:e9:66:66:e2: 55:80:97:2a:21:af:99:49:0c:1b:5b:3b:1a:83:2a:04:f6:bf: 43:2c:b4:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjYwNTI4MTc0NjMyWhcNMjYwNjA0MTc0NjMyWjAYMRYwFAYD VQQDEw02YTE4N2Y3OC1iN2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2VOUdkfCD3wQe64/YSmyd41O/QMAvj32bjlbCjwcepVd858bkPP8NTTfGOk 862iVMoZtu/vHX9vDlMgMLixaXyUueYWdJu7OmIZk+D1SpK1+z8mrOGaErcRn9xr tZN3QbOwn9mHPIshvHd47Lv7AWAgRqBpIq+wKHmLGMLfzHdCG6uYKaGZx9J6edxP EEcH7xdHJqJGzakp9/gfSAUGKVESMfs0GFlqcQTGzdfmJ5vM8SbEkAd3MD6mJsuQ myEv0UGgJsxJ0NpHrBRwweceF0/Oc4n99Cu/QqGSRTovk5H/AJ1AdwxlCNxyutzE OQR7LR4crRcOMWT2QWtVZQTaUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDKH6Sq1 AYNqvv2InIxvEvsf6sHXMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlCytYzznczVVVn/DWzddOESuoZEGOQvKTdbDa0x3CcA/IJ6su+TDR1G9sZQT ij0SuLxRGmBJQyjomVN1VGlzO1MDnCemaRXLJ6OEYi2ysuMZ8W5eM2Z9HkEoiswm zI5d9oRhXK94759ILEIXymj48Ck7nMi25W/ROglGmj08cYvEaXcTs9nFvMs8TdGS U/BHasd2e6Qa41dznKLQRGx1GHkXmCSIGsFarvpVU+T3q1UXJOKLMwrjFoqs43EM 94WPScyTHZQrxmeR9/W7w5z8zf7r4WzGoTuHXx/V/S8sKLwGDoQyCprpZmbiVYCX KiGvmUkMG1s7GoMqBPa/Qyy0fw== -----END CERTIFICATE-----Generated at Sat May 30 02:24:10 2026 by rpki-client