$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: OYD6YXpKkGDoxOqwrqB+woWyj9e0GKBKw2lK2a7rqbw= Subject key identifier: 5A:E3:B1:9A:87:5D:4C:2E:AB:D7:20:25:0C:8F:25:43:9D:A4:E3:2C Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: EA Signing time: Thu 21 May 2026 06:32:29 +0000 Manifest this update: Thu 21 May 2026 06:32:29 +0000 Manifest next update: Thu 28 May 2026 06:32:29 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: SjR9VrV4uto7u+IFNvhx6YQqmoemzZCkXnv9pGMpQcY=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: LdoES6KZxqxOMlXy5GpD4F8aTeCZCb2DpDN7emPVRUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: May 21 06:32:29 2026 GMT Not After : May 28 06:32:29 2026 GMT Subject: CN=6a0ea6fd-deca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:56:3d:87:61:28:7e:d2:46:27:ac:fa:62: 23:64:55:3f:d2:9e:28:f7:0d:a5:48:f4:99:8f:4b: cb:b8:2b:f3:ae:8b:fb:ab:c1:2c:48:f7:7d:d2:da: 49:0a:d6:33:cb:65:b5:6a:26:c5:a3:1f:15:59:f0: 0a:7c:0e:85:19:d2:4e:fd:39:37:87:39:f5:6e:01: 2e:2f:a0:4b:23:d3:ec:99:ea:b3:ce:65:df:c3:f6: 97:94:4c:72:b4:ed:65:73:a3:f3:11:88:46:59:7d: 17:6c:ef:8a:6f:f1:a2:55:45:6f:39:a8:57:98:26: 67:96:53:a0:61:ef:be:66:8c:1f:7d:d3:fe:9b:4d: c9:6e:ef:21:d0:6c:c6:18:c6:f5:dc:32:cf:59:04: 6a:e5:7f:97:fa:25:a2:89:ef:66:93:f6:c8:a6:66: f8:fe:19:71:0b:5d:e8:2e:35:c1:96:c0:f2:7b:e0: 1a:ce:b9:38:89:5d:33:88:f6:96:c6:f0:8c:8e:a4: 91:36:1b:b4:bd:2b:7a:f3:2e:be:b3:6d:30:25:99: dc:00:ac:39:68:ab:a4:8b:61:d9:b8:4a:47:af:ac: a2:ff:b6:58:bf:4a:20:0b:cf:70:92:ad:83:b6:71: 37:04:55:be:0d:1c:e3:57:6b:42:14:8a:27:63:f1: 0a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E3:B1:9A:87:5D:4C:2E:AB:D7:20:25:0C:8F:25:43:9D:A4:E3:2C X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:bd:82:bc:ee:aa:bd:08:70:b0:ab:c7:17:08:12:a5:5c:fe: ac:e3:46:19:7c:23:27:a8:e0:70:9a:09:da:e0:de:d6:3c:f3: 39:c4:e3:ac:07:fd:5b:10:16:07:6a:b3:d7:8b:f5:c1:4c:37: 45:40:8f:45:c2:a1:e7:58:c6:24:0b:02:15:1a:c4:c6:d9:ed: 28:27:42:65:6a:d3:9a:87:e3:df:c0:5d:b1:62:7f:6c:2c:95: fe:38:68:ee:be:02:d1:62:ea:48:c6:a8:1f:fa:e3:44:a3:94: 8b:73:9a:2f:20:ac:b4:32:42:74:df:fc:5e:82:f3:e1:4d:c1: a2:cf:0a:f6:b2:4e:b2:32:32:32:01:48:f4:c0:92:f7:54:be: 4f:e4:7b:e3:db:b5:4e:bf:d1:ef:60:2a:48:78:c7:17:a4:2e: fa:99:e1:15:44:0f:7e:64:1d:52:66:23:80:cb:9c:ce:4d:29: 09:7b:c7:54:ed:5d:1c:26:ae:52:e8:de:bb:2b:9c:28:b4:8e: 37:d7:ea:98:65:de:66:ea:03:4e:79:94:37:3a:33:1d:0a:78: 7f:d6:c7:77:cd:4a:9d:f5:09:d9:15:fa:80:69:4d:b3:f8:79: ec:cb:a1:52:21:b7:d6:c8:db:93:59:1e:cb:95:08:60:26:9b: 24:c9:ff:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE0NzcxMTAvBgNVBAUTKDcyNDFFOEYwMzhCOUYyNTJGQjYxQ0E0MUI2QTRGQzE2 N0I3NzU1MjYwHhcNMjYwNTIxMDYzMjI5WhcNMjYwNTI4MDYzMjI5WjAYMRYwFAYD VQQDEw02YTBlYTZmZC1kZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYVWPYdhKH7SRies+mIjZFU/0p4o9w2lSPSZj0vLuCvzrov7q8EsSPd90tpJ CtYzy2W1aibFox8VWfAKfA6FGdJO/Tk3hzn1bgEuL6BLI9PsmeqzzmXfw/aXlExy tO1lc6PzEYhGWX0XbO+Kb/GiVUVvOahXmCZnllOgYe++ZowffdP+m03Jbu8h0GzG GMb13DLPWQRq5X+X+iWiie9mk/bIpmb4/hlxC13oLjXBlsDye+Aazrk4iV0ziPaW xvCMjqSRNhu0vSt68y6+s20wJZncAKw5aKuki2HZuEpHr6yi/7ZYv0ogC89wkq2D tnE3BFW+DRzjV2tCFIonY/EKLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFrjsZqH XUwuq9cgJQyPJUOdpOMsMB8GA1UdIwQYMBaAFHJB6PA4ufJS+2HKQbak/BZ7d1Um MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTQ3Ny82QjcwMzVGOEYz RkMxMUVGOTlENTM3MzBDNEY5QUUwMi9ja0hvOERpNThsTDdZY3BCdHFUOEZudDNW U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTQ3Ny82QjcwMzVGOEYzRkMxMUVGOTlENTM3MzBDNEY5QUUwMi9ja0hvOERpNThs TDdZY3BCdHFUOEZudDNWU1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl72CvO6qvQhwsKvHFwgSpVz+rONGGXwjJ6jgcJoJ2uDe1jzzOcTjrAf9WxAW B2qz14v1wUw3RUCPRcKh51jGJAsCFRrExtntKCdCZWrTmofj38BdsWJ/bCyV/jho 7r4C0WLqSMaoH/rjRKOUi3OaLyCstDJCdN/8XoLz4U3Bos8K9rJOsjIyMgFI9MCS 91S+T+R749u1Tr/R72AqSHjHF6Qu+pnhFUQPfmQdUmYjgMuczk0pCXvHVO1dHCau UujeuyucKLSON9fqmGXeZuoDTnmUNzozHQp4f9bHd81KnfUJ2RX6gGlNs/h57Muh UiG31sjbk1key5UIYCabJMn/ww== -----END CERTIFICATE-----Generated at Thu May 21 10:58:30 2026 by rpki-client