$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: NEOdLpod5pSfVA0R3TAPbeiTox8a8jsAm21x9U6vjIg= Subject key identifier: 78:AF:BB:B9:BC:03:FF:FB:3B:33:76:7F:5F:AC:77:57:9D:0F:46:E6 Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 0290 Signing time: Thu 21 May 2026 01:49:41 +0000 Manifest this update: Thu 21 May 2026 01:49:40 +0000 Manifest next update: Thu 28 May 2026 01:49:40 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: gWD5WTJpL8TFjf9QiyRiTPopN5KvNyuLSC1ES25na9k=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: 9EODo3VTRqYwzjAsn5kOJ1RRcS5qGi8SpwuOaYpySHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F, serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: May 21 01:49:40 2026 GMT Not After : May 28 01:49:40 2026 GMT Subject: CN=6a0e64b5-3639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:42:eb:2c:bc:77:74:fa:a5:3a:10:b9:eb:03: 42:8a:7e:86:8e:bd:c0:e1:4b:31:67:ae:b4:ef:41: 65:a4:89:a9:c5:0b:6a:01:de:18:47:f2:87:7a:ae: 8a:f0:61:9a:67:63:92:88:47:98:f0:61:4a:5d:40: af:c8:11:bb:26:7b:fc:d7:8d:ad:b4:bd:36:c1:d0: 85:9f:42:b8:25:b4:1e:b9:9a:24:f6:f5:d9:e7:80: 69:dc:e6:88:23:1b:54:1b:81:65:33:d2:09:0a:6d: 9c:28:16:46:eb:6e:e8:84:1a:32:c0:85:63:c1:56: ed:31:7d:96:c3:bf:5d:cd:b5:21:35:21:9e:f9:e4: b6:4c:1f:9f:21:71:f3:b9:f8:0e:2d:9e:ee:ef:a3: 00:02:83:d8:95:6a:f1:73:de:3f:42:12:12:0b:fd: 1c:3a:7c:33:72:76:f8:33:68:18:8a:07:be:41:d0: 03:2b:6e:a7:94:04:ac:fb:4b:6f:b8:2e:fe:c5:3d: 0c:83:ee:08:c7:c1:9c:30:e9:6a:5d:5c:57:31:be: fd:74:0f:09:d3:33:eb:5c:12:48:f5:c4:0c:b8:de: c8:44:4b:8a:ef:2e:f8:f7:76:95:af:aa:3a:34:5b: 8e:30:8e:f8:87:53:49:56:b2:0f:87:96:3f:f1:85: 48:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AF:BB:B9:BC:03:FF:FB:3B:33:76:7F:5F:AC:77:57:9D:0F:46:E6 X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ba:43:e7:ec:8c:bc:c2:b6:12:f5:aa:b1:95:91:8c:05:70: f9:dc:15:65:52:e9:76:2d:32:39:c2:33:80:1e:c3:24:15:64: c0:4f:af:d3:6b:f1:80:b3:04:c7:77:08:da:20:a7:ea:18:52: 8a:52:ea:12:c4:c5:cd:59:66:aa:78:43:ea:64:40:db:5a:4a: bd:f0:57:50:15:07:f6:fd:f3:23:3e:d2:ff:fa:4e:f6:5c:2c: 72:c9:73:a7:15:5a:f5:63:03:06:ec:98:92:e9:68:0d:c0:d3: dc:51:fc:24:cc:90:dd:18:97:e5:bf:10:de:d1:53:be:00:d8: b7:e2:89:a9:c4:f2:e8:93:d2:62:ec:54:8e:e9:e0:10:fc:e9: 40:72:ba:cf:c3:cc:19:3c:2b:9f:bc:98:63:02:3f:30:9e:76: 2c:78:b1:98:60:8f:24:d5:e5:30:19:a5:5a:34:1d:9f:f9:12: ae:8a:e5:18:07:8a:bd:89:97:a4:f5:d6:60:e8:ee:e8:aa:c3: d9:0b:c9:6f:a7:db:69:70:17:7f:8d:1d:20:dd:8d:aa:63:44: de:b7:9a:bd:dc:93:28:31:f4:8b:5a:f1:43:34:14:25:4f:e2: ef:b3:2d:57:68:71:8b:e0:f6:99:a3:ca:da:64:fa:b7:74:b7: 5e:a9:a8:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjYwNTIxMDE0OTQwWhcNMjYwNTI4MDE0OTQwWjAYMRYwFAYD VQQDEw02YTBlNjRiNS0zNjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskLrLLx3dPqlOhC56wNCin6Gjr3A4UsxZ66070FlpImpxQtqAd4YR/KHeq6K 8GGaZ2OSiEeY8GFKXUCvyBG7Jnv8142ttL02wdCFn0K4JbQeuZok9vXZ54Bp3OaI IxtUG4FlM9IJCm2cKBZG627ohBoywIVjwVbtMX2Ww79dzbUhNSGe+eS2TB+fIXHz ufgOLZ7u76MAAoPYlWrxc94/QhISC/0cOnwzcnb4M2gYige+QdADK26nlASs+0tv uC7+xT0Mg+4Ix8GcMOlqXVxXMb79dA8J0zPrXBJI9cQMuN7IREuK7y7493aVr6o6 NFuOMI74h1NJVrIPh5Y/8YVIewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHivu7m8 A//7OzN2f1+sd1edD0bmMB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAibpD5+yMvMK2EvWqsZWRjAVw+dwVZVLpdi0yOcIzgB7DJBVkwE+v02vxgLME x3cI2iCn6hhSilLqEsTFzVlmqnhD6mRA21pKvfBXUBUH9v3zIz7S//pO9lwscslz pxVa9WMDBuyYkuloDcDT3FH8JMyQ3RiX5b8Q3tFTvgDYt+KJqcTy6JPSYuxUjung EPzpQHK6z8PMGTwrn7yYYwI/MJ52LHixmGCPJNXlMBmlWjQdn/kSrorlGAeKvYmX pPXWYOju6KrD2QvJb6fbaXAXf40dIN2NqmNE3reavdyTKDH0i1rxQzQUJU/i77Mt V2hxi+D2maPK2mT6t3S3XqmojQ== -----END CERTIFICATE-----Generated at Thu May 21 10:16:21 2026 by rpki-client