$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft File: pAislKDTNvRzJJBakYrySQLw3os.mft (raw, json) Hash identifier: WNE3pcnKqh896/RybrmE2gynb2/CmWTRKuycJCp0Mps= Subject key identifier: D4:A1:87:85:79:9B:11:0C:8C:D4:32:AA:C1:E1:CF:EF:0B:BB:54:AD Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft Manifest number: 01E1 Signing time: Thu 07 May 2026 03:30:36 +0000 Manifest this update: Thu 07 May 2026 03:30:36 +0000 Manifest next update: Thu 14 May 2026 03:30:36 +0000 Files and hashes: 1: pAislKDTNvRzJJBakYrySQLw3os.crl (hash: 5E7lU1xiS9ARrywt71gKZe0XHeCEjdQIlo4Hv7zZ4/s=) 2: 31A1996898F711EEB7B27877C4F9AE02.roa (hash: hHCyyzGsEC8V5KG9Wg3TJOVPDzSEhYHLIpTWQTIziHs=) 3: 62258D42C93A11EEA1A4CA4FC4F9AE02.roa (hash: NrIYNnpiRgoM0pEu2ChgWZkIBgkpnd90Qm1TMb1PFZI=) 4: 62C61398C93A11EEA1A4CA4FC4F9AE02.roa (hash: I40Mjxu1ZcWd2eWAmdNiVDMFDrp/6Wro4hhomYDrrYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620, serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: May 7 03:30:36 2026 GMT Not After : May 14 03:30:36 2026 GMT Subject: CN=69fc075c-7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:19:2d:95:06:f6:93:9d:ca:f3:ef:fb:0e:96: 1c:49:b2:12:0d:5a:21:71:fb:4b:7a:a8:cf:72:6f: d9:36:99:76:b9:a0:43:98:93:76:9f:d3:5a:f6:79: 0b:ec:03:db:a0:8d:b2:61:de:0b:de:59:fe:be:48: 05:3d:29:3c:a5:de:df:09:d3:eb:a8:07:31:0e:6f: 3c:19:51:ba:f8:89:3e:0e:07:95:0d:ee:af:7a:05: 67:47:7b:a0:55:ff:ee:ee:98:2e:c9:05:66:87:8a: ad:62:de:97:38:c9:9e:43:e8:ab:e5:04:d4:b7:77: a3:54:92:61:95:50:97:18:90:cd:d7:a8:47:3f:09: 46:f9:ea:fe:ed:52:83:97:12:43:5a:66:f9:83:29: 8c:34:f1:44:95:c5:8a:df:69:17:a6:46:83:4e:bd: a6:08:8a:e3:e2:c0:1f:98:c7:58:bc:7f:79:80:83: 0d:ac:a2:30:c7:50:5e:cc:aa:fb:2e:ae:2c:97:79: 2f:03:c5:58:1f:78:17:c8:0a:16:10:aa:d6:86:fd: ba:a9:f0:16:d1:3a:c5:d5:8a:3b:6d:55:bb:d4:65: 8f:6a:bf:7d:86:f1:72:fb:9d:9f:24:0a:d6:a8:b8: d4:93:05:6b:17:34:dc:c7:da:55:47:4c:bb:8b:3b: ef:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A1:87:85:79:9B:11:0C:8C:D4:32:AA:C1:E1:CF:EF:0B:BB:54:AD X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e9:1c:3c:97:c8:bb:c0:a2:16:26:8f:25:37:b1:49:39:10: 71:56:fa:95:93:5f:ec:df:2c:68:d4:f5:ef:19:34:c3:bc:22: a5:cf:cc:51:2b:8d:d8:4e:0d:7e:40:65:6a:60:c3:65:b8:b1: 2c:e9:ea:3c:59:c2:16:fc:5f:86:bd:11:42:d2:43:64:de:ba: d9:db:a9:c3:4f:2d:f1:98:a1:86:2a:b5:f4:f5:1e:28:f7:b4: da:a3:a2:9c:e9:4a:f3:93:a6:51:11:02:e7:e8:2b:b0:11:b0: 71:16:54:02:77:f2:3a:1a:9a:9c:cd:8d:ee:cd:01:5a:8a:07: e6:33:92:9b:e7:05:70:ea:62:ce:30:9f:8d:8e:a7:1c:87:f4: 92:01:86:0a:d8:c7:db:94:9f:29:56:f4:65:87:13:1a:61:c2: 97:f6:e6:90:fb:11:94:6c:3f:1b:94:71:cd:52:c8:07:80:12: 75:58:34:95:21:15:75:32:b4:22:5f:49:cb:d8:d0:9d:12:2d: 48:f4:6e:e0:8b:49:28:2f:98:1c:b2:82:0c:db:4a:97:fb:fb: 75:a9:7d:63:e5:fb:5e:00:9d:2d:fa:5b:1a:99:43:c3:33:8c: 59:62:bb:ab:77:64:e2:e3:2f:c5:c1:97:2c:99:9e:a8:4e:3b: 75:be:fb:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjYwNTA3MDMzMDM2WhcNMjYwNTE0MDMzMDM2WjAYMRYwFAYD VQQDEw02OWZjMDc1Yy03YWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBktlQb2k53K8+/7DpYcSbISDVohcftLeqjPcm/ZNpl2uaBDmJN2n9Na9nkL 7APboI2yYd4L3ln+vkgFPSk8pd7fCdPrqAcxDm88GVG6+Ik+DgeVDe6vegVnR3ug Vf/u7pguyQVmh4qtYt6XOMmeQ+ir5QTUt3ejVJJhlVCXGJDN16hHPwlG+er+7VKD lxJDWmb5gymMNPFElcWK32kXpkaDTr2mCIrj4sAfmMdYvH95gIMNrKIwx1BezKr7 Lq4sl3kvA8VYH3gXyAoWEKrWhv26qfAW0TrF1Yo7bVW71GWPar99hvFy+52fJArW qLjUkwVrFzTcx9pVR0y7izvv7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNShh4V5 mxEMjNQyqsHhz+8Lu1StMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52 UnpKSkJha1lyeVNRTHczb3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkukcPJfIu8CiFiaPJTexSTkQcVb6lZNf7N8saNT17xk0w7wipc/MUSuN2E4N fkBlamDDZbixLOnqPFnCFvxfhr0RQtJDZN662dupw08t8Zihhiq19PUeKPe02qOi nOlK85OmUREC5+grsBGwcRZUAnfyOhqanM2N7s0BWooH5jOSm+cFcOpizjCfjY6n HIf0kgGGCtjH25SfKVb0ZYcTGmHCl/bmkPsRlGw/G5RxzVLIB4ASdVg0lSEVdTK0 Il9Jy9jQnRItSPRu4ItJKC+YHLKCDNtKl/v7dal9Y+X7XgCdLfpbGplDwzOMWWK7 q3dk4uMvxcGXLJmeqE47db77pg== -----END CERTIFICATE-----Generated at Thu May 7 23:51:08 2026 by rpki-client