$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft File: VFjEVinBBKqnpYcoaG-NHihyqSo.mft (raw, json) Hash identifier: WsAmf4IUhet1stKZdDpSKeSFgN4X2cDAxhxuHB1h4eA= Subject key identifier: 34:F2:08:5B:2E:89:B0:50:34:B6:CB:E4:86:6B:16:05:34:71:82:2E Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0D22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft Manifest number: 0D17 Signing time: Wed 20 May 2026 18:08:02 +0000 Manifest this update: Wed 20 May 2026 18:08:01 +0000 Manifest next update: Wed 27 May 2026 18:08:01 +0000 Files and hashes: 1: VFjEVinBBKqnpYcoaG-NHihyqSo.crl (hash: K3Ip4gREIO7g1R85n+AtgNCveasJXMnhrFlsXlJtbZY=) 2: DB020E9C010D11EAA82AD83CC4F9AE02.roa (hash: tCbmhz8Xdtfw+YZ6cKJPC3exzeqwAMNaQLxry2e2mdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3362 (0xd22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27, serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Validity Not Before: May 20 18:08:01 2026 GMT Not After : May 27 18:08:01 2026 GMT Subject: CN=6a0df882-7221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:40:9e:d9:27:4a:71:a1:b1:e3:ae:2d:4d:13: 7b:35:80:ba:de:61:e9:bf:60:71:49:b2:d3:26:ca: 63:b0:ee:7e:c7:ac:90:0a:39:d2:d4:d4:f3:39:0d: 55:f4:40:b1:42:4e:21:13:02:86:78:7f:dd:2d:5f: 05:01:1f:c2:60:79:ff:d9:e8:d3:fc:a3:c0:0c:bb: 7d:56:49:8e:8f:f7:1e:91:59:fa:e3:59:d6:ff:4a: 5f:c8:b9:71:02:54:1c:e1:e2:66:fa:23:d6:4a:2b: a6:f2:6e:93:b8:06:0d:c5:8f:e2:3a:0c:ee:b9:10: dc:07:4e:6c:18:5a:f8:80:30:71:eb:7f:6a:ad:e1: 82:35:46:c1:c5:74:59:2d:b7:96:b8:48:9a:dd:34: a6:6a:6b:89:13:b4:ba:df:5d:df:b9:9c:2b:a3:a8: 03:f6:4c:4a:41:31:8b:eb:c3:b5:ef:0b:c1:9d:73: aa:96:38:dd:2d:b8:b2:6e:41:25:8f:a4:ce:d5:bd: 35:0e:53:f1:9c:f1:f7:90:b8:21:88:a7:63:34:43: 4f:f8:1c:2d:ed:75:4e:dc:75:e2:f2:64:47:af:40: 23:8c:39:dd:97:7f:e1:46:c8:e1:d0:b7:b9:a3:8d: 7e:2c:de:c5:84:18:92:cc:83:d3:bd:ec:d8:39:bc: 44:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F2:08:5B:2E:89:B0:50:34:B6:CB:E4:86:6B:16:05:34:71:82:2E X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:ef:af:92:f0:9f:10:b4:81:1f:84:58:c2:a3:ed:a7:f7:a2: ac:ce:59:6b:02:95:29:90:9b:1f:76:99:52:3c:a7:b5:be:40: 65:c4:c3:30:e6:e4:9f:9a:db:31:b1:88:0d:4d:d8:90:a3:4a: c6:62:94:dc:95:bc:e4:4a:7b:93:07:b9:6b:b6:3b:e4:64:5e: e1:28:b5:d1:5f:0a:af:18:3c:eb:26:35:b2:eb:5b:33:92:8b: 9b:40:a7:9e:91:c8:70:8a:c0:ec:ca:7c:1f:16:7c:f8:fe:cf: 58:f7:db:b3:2a:b6:34:5a:4d:48:2c:35:63:d8:66:2b:ab:cd: de:76:e4:e0:f7:0d:9f:c0:2b:40:b4:c6:06:a7:de:a5:a6:9c: 9c:bd:a1:71:6c:17:2d:93:d9:c2:e6:dc:ee:4f:e4:fa:f0:54: 16:ea:a3:6c:c1:9b:bc:27:cb:2c:76:e2:98:f3:17:6e:21:36: 46:86:20:68:32:39:51:31:4e:9b:7a:ad:5c:60:3e:bb:7d:2f: a4:27:e4:58:61:7f:d1:ba:5a:06:ba:54:19:46:a0:80:0a:7a: d0:e5:bf:5b:15:d6:84:ee:8a:83:fa:d7:a5:56:78:16:3d:70: 19:d7:7d:e4:dd:a0:54:11:21:fd:d2:cd:a2:c4:0b:95:94:8f: 09:55:97:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjYwNTIwMTgwODAxWhcNMjYwNTI3MTgwODAxWjAYMRYwFAYD VQQDEw02YTBkZjg4Mi03MjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUCe2SdKcaGx464tTRN7NYC63mHpv2BxSbLTJspjsO5+x6yQCjnS1NTzOQ1V 9ECxQk4hEwKGeH/dLV8FAR/CYHn/2ejT/KPADLt9VkmOj/cekVn641nW/0pfyLlx AlQc4eJm+iPWSium8m6TuAYNxY/iOgzuuRDcB05sGFr4gDBx639qreGCNUbBxXRZ LbeWuEia3TSmamuJE7S6313fuZwro6gD9kxKQTGL68O17wvBnXOqljjdLbiybkEl j6TO1b01DlPxnPH3kLghiKdjNENP+Bwt7XVO3HXi8mRHr0AjjDndl3/hRsjh0Le5 o41+LN7FhBiSzIPTvezYObxEywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDTyCFsu ibBQNLbL5IZrFgU0cYIuMB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0MyNy82NUJCNDg5QzAwNEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJL cW5wWWNvYUctTkhpaHlxU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2++vkvCfELSBH4RYwqPtp/eirM5ZawKVKZCbH3aZUjyntb5AZcTDMObkn5rb MbGIDU3YkKNKxmKU3JW85Ep7kwe5a7Y75GRe4Si10V8Krxg86yY1sutbM5KLm0Cn npHIcIrA7Mp8HxZ8+P7PWPfbsyq2NFpNSCw1Y9hmK6vN3nbk4PcNn8ArQLTGBqfe paacnL2hcWwXLZPZwubc7k/k+vBUFuqjbMGbvCfLLHbimPMXbiE2RoYgaDI5UTFO m3qtXGA+u30vpCfkWGF/0bpaBrpUGUaggAp60OW/WxXWhO6Kg/rXpVZ4Fj1wGdd9 5N2gVBEh/dLNosQLlZSPCVWXIg== -----END CERTIFICATE-----Generated at Thu May 21 10:39:57 2026 by rpki-client