$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: JhQPdCIAVRbg7wRjbZ8mql/Tq4CF+h9qsANsUypeKvs= Subject key identifier: 4C:BF:70:D6:13:CE:15:A0:25:93:9B:B5:2F:53:84:71:C0:C3:55:A7 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2E77 Signing time: Wed 20 May 2026 15:41:10 +0000 Manifest this update: Wed 20 May 2026 15:41:09 +0000 Manifest next update: Wed 27 May 2026 15:41:09 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: cCCx5vST7JcB1HPnVMqTsKhCT0RJpG31V/1ii6rF2ao=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: 1/JNtgxrsCQgMCZg/xoCtiLGpLNRukBhGSMeMiBFJLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: May 20 15:41:09 2026 GMT Not After : May 27 15:41:09 2026 GMT Subject: CN=6a0dd616-674f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:82:d2:41:c2:38:44:c3:a3:54:cc:47:6c:2d: 59:89:0d:db:06:d6:71:29:c5:e7:7d:aa:b3:18:21: 3a:9d:94:f0:ce:01:d8:3e:7e:ca:9f:fa:f5:00:16: bd:8d:a5:54:5f:83:34:32:a6:63:cf:f9:22:53:06: 9f:84:da:5e:76:f1:37:93:20:92:5b:62:51:9f:72: 37:1d:2d:a1:72:58:ed:f5:2a:19:50:d5:a4:1e:14: 6c:4b:f5:4e:73:90:31:90:54:b7:50:bb:10:b8:26: b9:3a:36:d9:d4:90:a7:85:c6:c0:8c:15:c6:86:0f: 50:c1:6a:1a:50:62:02:ad:b1:5c:8b:95:18:f6:74: 4f:2c:cd:1b:c9:ac:77:4e:a4:48:f1:34:3a:e1:c3: 6a:31:28:23:a4:2b:69:15:70:03:74:b7:71:07:1f: 17:af:a8:4d:e7:e7:d5:53:8f:c2:cd:64:c1:b4:bd: 64:03:ab:dc:7b:18:87:55:d1:40:58:25:c1:4b:3d: 67:c8:ab:ec:fd:36:02:37:5e:0e:1b:a4:70:95:f0: b0:04:17:11:1a:de:98:be:58:82:25:c1:de:c9:56: 0a:e9:6b:b7:09:21:85:2f:77:1e:06:db:13:71:4b: 7b:ea:30:45:aa:7b:1c:48:eb:73:21:d8:77:6a:fe: d4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:BF:70:D6:13:CE:15:A0:25:93:9B:B5:2F:53:84:71:C0:C3:55:A7 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:84:3d:fc:60:d4:98:a5:59:fb:5d:46:d6:cf:10:1c:b6:2b: 3e:e7:ea:31:d7:2d:0e:84:d6:55:61:ec:24:3e:a1:17:86:29: 7e:59:c4:fc:58:fb:f6:41:7c:a6:d3:42:39:8e:c7:84:4e:1f: 8a:8c:18:df:15:92:5f:55:39:1e:d8:80:a3:19:d5:5e:f9:fd: a4:30:c3:de:3c:2d:c5:1a:7a:f3:77:b4:31:8d:e9:2c:a4:6b: 6f:01:14:cc:8f:28:8f:0e:b1:08:b7:ed:28:bb:7e:d3:1e:3b: c6:8c:56:46:c3:e1:0c:ca:a5:dc:c2:cf:e4:3f:3f:d7:67:ca: 6e:4c:b0:ce:2e:51:55:7c:11:ae:0f:ce:03:f3:6c:7a:de:41: 69:bd:63:e2:9d:56:28:ca:06:e0:f3:9f:53:9d:6d:29:d1:b9: a2:3a:08:57:03:85:ea:9e:1c:f4:2c:90:cc:c1:55:fe:e3:00: 68:67:e9:cb:dc:9f:ee:24:46:40:b9:88:ec:e2:eb:37:0b:5f: db:45:36:f5:8b:63:53:50:13:3c:d9:75:ce:71:ca:02:fe:68: 8c:63:69:12:fd:8c:5f:d8:2c:fe:f4:d7:e6:8c:ed:0f:9c:69: 14:a0:d1:f1:3c:e0:cb:ce:62:1b:bf:19:17:f3:04:01:30:1b: 17:b3:56:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjYwNTIwMTU0MTA5WhcNMjYwNTI3MTU0MTA5WjAYMRYwFAYD VQQDEw02YTBkZDYxNi02NzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYLSQcI4RMOjVMxHbC1ZiQ3bBtZxKcXnfaqzGCE6nZTwzgHYPn7Kn/r1ABa9 jaVUX4M0MqZjz/kiUwafhNpedvE3kyCSW2JRn3I3HS2hcljt9SoZUNWkHhRsS/VO c5AxkFS3ULsQuCa5OjbZ1JCnhcbAjBXGhg9QwWoaUGICrbFci5UY9nRPLM0byax3 TqRI8TQ64cNqMSgjpCtpFXADdLdxBx8Xr6hN5+fVU4/CzWTBtL1kA6vcexiHVdFA WCXBSz1nyKvs/TYCN14OG6RwlfCwBBcRGt6YvliCJcHeyVYK6Wu3CSGFL3ceBtsT cUt76jBFqnscSOtzIdh3av7USwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEy/cNYT zhWgJZObtS9ThHHAw1WnMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiYQ9/GDUmKVZ+11G1s8QHLYrPufqMdctDoTWVWHsJD6hF4YpflnE/Fj79kF8 ptNCOY7HhE4fiowY3xWSX1U5HtiAoxnVXvn9pDDD3jwtxRp683e0MY3pLKRrbwEU zI8ojw6xCLftKLt+0x47xoxWRsPhDMql3MLP5D8/12fKbkywzi5RVXwRrg/OA/Ns et5Bab1j4p1WKMoG4POfU51tKdG5ojoIVwOF6p4c9CyQzMFV/uMAaGfpy9yf7iRG QLmI7OLrNwtf20U29YtjU1ATPNl1znHKAv5ojGNpEv2MX9gs/vTX5oztD5xpFKDR 8Tzgy85iG78ZF/MEATAbF7NW1Q== -----END CERTIFICATE-----Generated at Thu May 21 10:24:03 2026 by rpki-client