$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: pknY3k6QLiR2cCcLvWgFcf2LhEh6exRLMubrEbboc8w= Subject key identifier: 44:D0:03:17:0B:6E:BC:5D:56:07:1A:B3:7A:46:05:C1:4A:88:7B:9F Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 17FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 17E7 Signing time: Wed 20 May 2026 16:32:57 +0000 Manifest this update: Wed 20 May 2026 16:32:57 +0000 Manifest next update: Wed 27 May 2026 16:32:57 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: VN2ol/AEdo3J3RfDxuvFez/PhbzpZRM/7+TIFkSEN2Q=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: n9Ra6ZUeLorL3l67bNk1doH1FFp1jz1cR04L4Fo/Y0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6142 (0x17fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: May 20 16:32:57 2026 GMT Not After : May 27 16:32:57 2026 GMT Subject: CN=6a0de239-c1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3e:0e:0f:51:c9:2f:58:95:1e:0a:1c:1c:82: 83:77:87:cd:82:20:c6:c6:1b:90:6c:09:9e:3f:60: 2e:52:b2:53:57:51:35:0a:87:24:6d:84:90:96:10: e4:8c:68:9a:da:cd:b9:40:ff:f3:4b:7d:3c:a1:69: bf:f9:e1:67:86:c7:3b:c6:f0:db:d1:3a:11:9f:87: 32:d3:b6:af:f9:28:10:a4:5f:09:24:c3:9d:eb:cd: ff:60:80:0b:ea:bb:31:a6:3c:43:29:be:e6:29:ec: 75:14:31:f1:87:6f:2a:f1:c1:70:bc:a7:d8:d4:ee: 97:02:89:49:54:c3:b4:87:b2:fc:7b:ba:a4:8b:f1: 84:e2:5f:73:c8:19:0b:f2:83:db:e0:f5:de:94:86: d4:3b:9d:68:af:80:46:7c:7d:2e:61:51:16:83:b8: 54:02:da:eb:53:22:6c:3d:2c:fa:a4:f4:53:ba:6f: 44:53:22:a0:89:e5:6b:86:41:f5:ab:3f:c3:e7:5b: a7:ce:a9:10:38:0f:3b:9c:dc:4f:13:1b:b8:85:12: e9:f2:3d:cb:ec:e8:46:2b:45:55:39:ea:7e:22:34: da:e0:69:31:95:ac:d5:fb:f1:a9:fe:23:68:26:2c: 6d:ac:19:a6:8a:ca:cb:f6:6b:67:47:36:47:9a:56: 7c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D0:03:17:0B:6E:BC:5D:56:07:1A:B3:7A:46:05:C1:4A:88:7B:9F X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:45:a6:2c:1a:b0:ce:1a:82:da:07:3b:a9:ef:80:56:56:4e: c3:90:69:5f:5d:e3:90:ff:8d:41:d1:82:7c:c7:57:59:88:b1: 39:26:34:2a:59:71:46:f0:0a:57:b8:32:3d:aa:35:ee:60:53: 49:17:5c:58:2d:8c:cc:91:40:03:87:74:86:d4:ad:9c:d9:4c: 4e:10:4f:91:80:32:93:4e:98:82:79:8e:17:94:dd:b2:c6:fa: cd:00:7d:04:c7:cc:dd:50:06:70:63:91:87:0b:cd:ef:ea:48: c2:19:ff:bd:0d:eb:40:ce:79:e7:cb:e4:9a:36:bf:25:93:45: cf:37:67:38:2b:26:0c:f8:38:ca:ce:96:cd:20:a4:64:c4:3e: ce:42:04:a4:cc:63:fb:6f:7a:f7:b0:cb:2e:b9:2b:cd:c8:21: 55:ec:43:4c:69:b4:82:fc:5b:a5:8e:fa:93:42:6b:13:eb:73: ea:82:32:96:84:70:ae:6d:0c:55:d2:e9:cb:cc:af:e8:c0:81: d4:c2:83:79:1f:38:15:05:28:2f:8e:80:0d:03:28:48:fa:86: c6:5c:7d:84:21:d8:58:e3:bc:51:2f:8a:af:5b:b2:ae:3f:e9: 4b:50:69:f6:78:63:2d:07:41:cf:25:fc:9a:92:84:80:a1:a9: be:b1:bc:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjYwNTIwMTYzMjU3WhcNMjYwNTI3MTYzMjU3WjAYMRYwFAYD VQQDEw02YTBkZTIzOS1jMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxT4OD1HJL1iVHgocHIKDd4fNgiDGxhuQbAmeP2AuUrJTV1E1CockbYSQlhDk jGia2s25QP/zS308oWm/+eFnhsc7xvDb0ToRn4cy07av+SgQpF8JJMOd683/YIAL 6rsxpjxDKb7mKex1FDHxh28q8cFwvKfY1O6XAolJVMO0h7L8e7qki/GE4l9zyBkL 8oPb4PXelIbUO51or4BGfH0uYVEWg7hUAtrrUyJsPSz6pPRTum9EUyKgieVrhkH1 qz/D51unzqkQOA87nNxPExu4hRLp8j3L7OhGK0VVOep+IjTa4GkxlazV+/Gp/iNo JixtrBmmisrL9mtnRzZHmlZ8GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFETQAxcL brxdVgcas3pGBcFKiHufMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ0WmLBqwzhqC2gc7qe+AVlZOw5BpX13jkP+NQdGCfMdXWYixOSY0KllxRvAK V7gyPao17mBTSRdcWC2MzJFAA4d0htStnNlMThBPkYAyk06YgnmOF5Tdssb6zQB9 BMfM3VAGcGORhwvN7+pIwhn/vQ3rQM5558vkmja/JZNFzzdnOCsmDPg4ys6WzSCk ZMQ+zkIEpMxj+29697DLLrkrzcghVexDTGm0gvxbpY76k0JrE+tz6oIyloRwrm0M VdLpy8yv6MCB1MKDeR84FQUoL46ADQMoSPqGxlx9hCHYWOO8US+Kr1uyrj/pS1Bp 9nhjLQdBzyX8mpKEgKGpvrG8sA== -----END CERTIFICATE-----Generated at Thu May 21 10:27:45 2026 by rpki-client