$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: zmEZpFerLzgFeYO+RS4HnlYbsM17x2YVWVWYi5ZNU24= Subject key identifier: A3:9B:38:88:B6:6C:F2:CB:6E:4B:EB:2F:DE:E2:3D:88:A4:FB:DE:75 Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: C1 Signing time: Mon 01 Jun 2026 07:42:03 +0000 Manifest this update: Mon 01 Jun 2026 07:42:03 +0000 Manifest next update: Mon 08 Jun 2026 07:42:03 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: mtsZNhxaVT6lQSGG9qo8+1nGUtyXyOBf6MCCRgJyZXc=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: j7nDmBZXblO/tpvpaih+MGRhVNByB2VTssko4z3YvKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 07:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Jun 1 07:42:03 2026 GMT Not After : Jun 8 07:42:03 2026 GMT Subject: CN=6a1d37cb-1b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b9:f8:2a:7d:42:7c:ba:47:a0:06:45:c3:b4: 9f:c3:9e:5c:45:da:ed:bb:0f:ca:7a:14:c6:5f:57: 56:6f:96:a5:02:e5:2f:d5:c0:9f:86:6a:ff:00:63: db:fe:35:01:10:3b:ae:05:66:8f:d5:ac:8c:88:e6: 76:41:28:ce:43:bb:71:a1:3e:63:fc:b5:c2:27:b6: 1a:6b:ee:c3:2e:cc:34:26:a5:91:dc:3d:2e:e6:b9: 7c:ee:37:c9:ae:50:1b:be:8d:ce:9f:47:f1:d9:18: 65:df:d8:e1:35:63:52:6e:2e:2e:22:da:58:b7:ec: cf:c6:e1:fb:3c:ae:b4:93:9a:33:6d:45:6b:8b:20: a6:71:5d:64:a3:a5:23:00:4a:5b:db:20:f3:8f:71: b7:fa:2b:cc:c0:0e:c5:4a:69:e3:94:0c:03:63:5b: 9a:78:f1:9a:f6:01:db:ca:b7:62:14:16:22:95:94: ea:a1:f4:d3:04:2d:a7:27:43:d9:69:09:d0:50:64: 8b:93:4d:38:ca:04:95:61:a7:5a:36:f5:29:3a:6a: 2d:89:76:94:41:da:05:bc:c7:d9:8f:60:e9:74:47: 3f:34:2e:8c:90:0a:ed:9b:85:36:a3:9f:ca:48:cf: 89:e0:81:15:4f:f3:93:d4:7b:03:cd:f6:c5:e9:26: 35:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9B:38:88:B6:6C:F2:CB:6E:4B:EB:2F:DE:E2:3D:88:A4:FB:DE:75 X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d4:9b:22:4e:05:c2:67:6e:2f:30:af:1b:1e:c9:1c:f3:56: fe:8a:0c:ee:28:0c:f6:75:9f:1d:7e:fc:e7:3c:06:1f:bf:9b: f1:38:fd:b7:9e:18:16:b2:71:51:13:5c:0f:91:0c:e5:ec:61: fb:9e:0e:fe:89:32:f6:de:01:89:a4:ed:a9:f9:77:c0:6b:5c: 74:da:0e:11:3f:d5:05:84:d8:45:65:d1:f1:f8:ff:8d:21:d9: 1a:55:9e:6e:54:63:0c:4f:73:60:a2:e3:75:12:2c:30:e8:89: a8:5d:e1:d0:39:f8:94:4c:37:6c:75:fa:ee:44:31:b3:75:b8: 54:51:8d:07:00:7c:a1:2a:fa:11:cb:7e:12:6f:4a:76:7d:db: 64:35:62:e7:3f:59:e9:5f:e7:03:5f:1a:fe:33:bf:52:e9:f1: 64:35:e0:fd:c2:82:db:5c:b5:5f:08:d8:4b:22:a5:ad:29:93: 2a:53:4d:1e:8f:8d:8d:ea:b5:82:39:ea:0e:c7:90:a3:3d:5a: 90:df:1b:39:0a:b6:50:c5:0a:af:09:b3:43:49:f6:7b:3c:c2: ef:f7:e4:f1:49:3b:16:8c:22:ed:5f:ad:5c:8c:2a:47:b4:b7: 40:ae:8d:94:d5:59:6c:d1:06:c1:37:6d:a7:39:82:5d:5f:90: f9:36:f4:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNzQxMTAvBgNVBAUTKEUyQ0I5NkYzQjA1QTYzRTlFNTQ3OTY1MjZFQ0NFOTRB MzU5MUU1RkMwHhcNMjYwNjAxMDc0MjAzWhcNMjYwNjA4MDc0MjAzWjAYMRYwFAYD VQQDEw02YTFkMzdjYi0xYjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7n4Kn1CfLpHoAZFw7Sfw55cRdrtuw/KehTGX1dWb5alAuUv1cCfhmr/AGPb /jUBEDuuBWaP1ayMiOZ2QSjOQ7txoT5j/LXCJ7Yaa+7DLsw0JqWR3D0u5rl87jfJ rlAbvo3On0fx2Rhl39jhNWNSbi4uItpYt+zPxuH7PK60k5ozbUVriyCmcV1ko6Uj AEpb2yDzj3G3+ivMwA7FSmnjlAwDY1uaePGa9gHbyrdiFBYilZTqofTTBC2nJ0PZ aQnQUGSLk004ygSVYadaNvUpOmotiXaUQdoFvMfZj2DpdEc/NC6MkArtm4U2o5/K SM+J4IEVT/OT1HsDzfbF6SY13wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKObOIi2 bPLLbkvrL97iPYik+951MB8GA1UdIwQYMBaAFOLLlvOwWmPp5UeWUm7M6Uo1keX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3NC9BRjY0RTUxMDNC QUExMUYwOTY0MjgyMUNDNEY5QUUwMi80c3VXODdCYVktbmxSNVpTYnN6cFNqV1I1 ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3NC9BRjY0RTUxMDNCQUExMUYwOTY0MjgyMUNDNEY5QUUwMi80c3VXODdCYVkt bmxSNVpTYnN6cFNqV1I1ZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp9SbIk4FwmduLzCvGx7JHPNW/ooM7igM9nWfHX785zwGH7+b8Tj9t54YFrJx URNcD5EM5exh+54O/oky9t4BiaTtqfl3wGtcdNoOET/VBYTYRWXR8fj/jSHZGlWe blRjDE9zYKLjdRIsMOiJqF3h0Dn4lEw3bHX67kQxs3W4VFGNBwB8oSr6Ect+Em9K dn3bZDVi5z9Z6V/nA18a/jO/UunxZDXg/cKC21y1XwjYSyKlrSmTKlNNHo+Njeq1 gjnqDseQoz1akN8bOQq2UMUKrwmzQ0n2ezzC7/fk8Uk7Fowi7V+tXIwqR7S3QK6N lNVZbNEGwTdtpzmCXV+Q+Tb0XA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:45 2026 by rpki-client