$ rpki-client -vvf rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft File: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft (raw, json) Hash identifier: ElnLT20Z8K7QC0JAaFEKzQoLqRUWVwcfnTaUaDIrokI= Subject key identifier: B9:ED:F4:B1:0D:89:3D:77:E5:E3:EE:25:8B:4A:CC:6D:A7:9F:0C:23 Authority key identifier: 0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 Certificate issuer: /CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Certificate serial: 02E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft Manifest number: 02E1 Signing time: Thu 21 May 2026 01:24:48 +0000 Manifest this update: Thu 21 May 2026 01:24:48 +0000 Manifest next update: Thu 28 May 2026 01:24:48 +0000 Files and hashes: 1: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl (hash: ArvzckK+t2vZ1frsLhOQo3dp7+NldQ9UwNP6VflgEGI=) 2: 88FCD2C62DBA11ED94AFED62C4F9AE02.roa (hash: YXWFFFPBzpkV2m2yoFC2Tf/XolI9oJsfQCRArQVbJbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157ADC, serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Validity Not Before: May 21 01:24:48 2026 GMT Not After : May 28 01:24:48 2026 GMT Subject: CN=6a0e5ee0-e6c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e0:88:4e:7c:9a:c1:e4:80:32:8b:c5:b6:1a: ce:b9:a3:37:3d:db:5c:92:c0:71:0b:e3:8a:95:27: 35:75:60:d0:0f:af:ec:26:8c:c1:86:13:c0:ad:df: f2:eb:34:39:b1:f4:a9:1f:4f:8f:f9:d3:a8:0f:fb: 27:48:c3:03:37:49:6b:c4:d0:cc:54:67:65:b7:c6: 9f:b5:10:ba:d2:ec:63:52:5c:33:ac:41:48:b1:01: 09:25:59:21:07:ca:88:af:1d:45:4d:d5:94:c9:f5: 06:62:8a:fa:01:67:dc:b0:11:38:a7:d4:01:66:ce: bd:ef:0c:72:0c:10:c1:48:df:72:c7:6e:6a:57:a9: b2:13:94:2f:25:32:b5:0e:b0:d1:ed:7d:69:c3:a7: a5:34:70:57:65:0a:81:9a:76:0f:fe:a4:48:f9:07: 51:9d:72:0e:51:44:b8:4f:40:b7:79:e6:98:c3:cf: 49:ad:66:00:4d:79:b1:8f:58:eb:11:68:2d:24:31: 59:64:c2:5e:03:4c:c5:aa:b0:50:95:68:b7:4c:5e: 62:8d:c5:a2:85:bc:eb:c0:9b:b3:9f:e1:2e:13:91: 4f:f0:b7:e1:9f:25:c9:d9:44:55:d4:f3:f0:61:11: 8a:d7:a3:df:b1:a2:f8:8b:e8:53:46:ee:9e:89:bc: e2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:ED:F4:B1:0D:89:3D:77:E5:E3:EE:25:8B:4A:CC:6D:A7:9F:0C:23 X509v3 Authority Key Identifier: keyid:0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:69:1f:a7:11:a8:8e:74:f5:68:e3:ea:de:fe:09:aa:4d:a5: d9:c3:f2:e4:2d:85:37:4a:21:e2:4f:d3:69:50:b9:e5:91:eb: df:39:76:6b:1b:f1:70:32:5d:ff:66:0b:45:c7:d4:80:5f:83: 6d:fd:f7:58:d3:f1:ce:11:4e:48:44:d8:f5:17:6e:c3:60:96: c0:37:8f:41:b8:7b:75:96:1f:41:9d:df:83:80:31:62:6e:75: ea:d9:19:63:cd:30:83:c9:23:6c:f4:0f:f1:21:25:d2:f0:53: 17:59:e1:93:d5:91:e8:87:03:51:d4:fb:1f:8b:c2:cb:65:6a: f6:04:62:68:3e:a5:d6:10:3c:27:89:04:79:55:19:ea:72:36: 22:75:dd:2b:cd:ae:dd:2c:d2:76:32:0f:20:a7:9f:55:28:fb: 23:df:8a:b7:3e:81:0d:ee:0b:a1:e3:81:d6:7a:cf:48:c5:cc: 13:47:d3:6e:58:c2:f4:cf:02:52:29:0c:72:d1:df:86:8b:e0: 4e:10:31:3e:46:1c:0d:fb:70:c8:78:35:8d:9c:ca:5d:e5:d8: 14:2f:b9:7d:6d:2c:b1:0b:e1:2c:6c:7f:09:ba:03:25:3a:57: 39:f0:e0:3e:1f:b4:00:bb:d8:d4:cb:87:a5:6f:e1:44:5a:75: a8:21:9f:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBREMxMTAvBgNVBAUTKDBDNEMxNzIyOUM2QUI2N0Y1NDNGRUM5QzREMDNFNUZF RTRFRDJGRjYwHhcNMjYwNTIxMDEyNDQ4WhcNMjYwNTI4MDEyNDQ4WjAYMRYwFAYD VQQDEw02YTBlNWVlMC1lNmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAieCITnyaweSAMovFthrOuaM3PdtcksBxC+OKlSc1dWDQD6/sJozBhhPArd/y 6zQ5sfSpH0+P+dOoD/snSMMDN0lrxNDMVGdlt8aftRC60uxjUlwzrEFIsQEJJVkh B8qIrx1FTdWUyfUGYor6AWfcsBE4p9QBZs697wxyDBDBSN9yx25qV6myE5QvJTK1 DrDR7X1pw6elNHBXZQqBmnYP/qRI+QdRnXIOUUS4T0C3eeaYw89JrWYATXmxj1jr EWgtJDFZZMJeA0zFqrBQlWi3TF5ijcWihbzrwJuzn+EuE5FP8LfhnyXJ2URV1PPw YRGK16PfsaL4i+hTRu6eibzi3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLnt9LEN iT135ePuJYtKzG2nnwwjMB8GA1UdIwQYMBaAFAxMFyKcarZ/VD/snE0D5f7k7S/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0FEQy9GNTc1ODlFMjJE QjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRuOVVQLXljVFFQbF91VHRM X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFd1hJcHhxdG45VVAteWNUUVBsX3VUdExfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0FEQy9GNTc1ODlFMjJEQjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRu OVVQLXljVFFQbF91VHRMX1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqmkfpxGojnT1aOPq3v4Jqk2l2cPy5C2FN0oh4k/TaVC55ZHr3zl2axvxcDJd /2YLRcfUgF+Dbf33WNPxzhFOSETY9Rduw2CWwDePQbh7dZYfQZ3fg4AxYm516tkZ Y80wg8kjbPQP8SEl0vBTF1nhk9WR6IcDUdT7H4vCy2Vq9gRiaD6l1hA8J4kEeVUZ 6nI2InXdK82u3SzSdjIPIKefVSj7I9+Ktz6BDe4LoeOB1nrPSMXME0fTbljC9M8C UikMctHfhovgThAxPkYcDftwyHg1jZzKXeXYFC+5fW0ssQvhLGx/CboDJTpXOfDg Ph+0ALvY1MuHpW/hRFp1qCGfWA== -----END CERTIFICATE-----Generated at Thu May 21 10:37:37 2026 by rpki-client