$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: BZ6xvrvZ7VSMssJaWOReAbOC3roJQ/qJaSlcimwQhF0= Subject key identifier: 0E:B7:A4:E7:9F:08:75:CC:D5:DF:4F:0E:D3:75:05:6E:90:C3:9A:2E Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 04AA Signing time: Wed 20 May 2026 23:59:58 +0000 Manifest this update: Wed 20 May 2026 23:59:58 +0000 Manifest next update: Wed 27 May 2026 23:59:58 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: Qd7JMkPYSdLeGNrAA05kvKUzmBjeT8W8rPOxfBXXwsA=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: 2rQJWPdUgZ0hNF0HMVFMTi4ImpvJKJ7bVW+COUiFLto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA, serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Validity Not Before: May 20 23:59:58 2026 GMT Not After : May 27 23:59:58 2026 GMT Subject: CN=6a0e4afe-a4a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:30:71:a3:db:93:24:4f:c4:d5:b4:bb:e9:2a: a0:e7:a0:28:72:09:3e:e1:4f:d8:45:ce:75:1d:98: b2:e4:71:60:91:a8:ab:34:e4:b6:8d:f3:7e:02:e1: 03:e1:f0:39:2e:d4:69:e6:27:5f:6a:27:f4:6c:4b: 5b:a1:8a:9c:78:76:f6:5a:8f:8f:31:9f:0a:4c:e3: cb:b0:e2:9b:89:fb:7e:cb:cc:63:06:f7:1e:ba:5c: c7:83:9e:39:32:a5:bf:89:a9:04:e8:18:90:3b:ed: 87:74:52:88:92:aa:25:f0:f1:b1:52:6b:9b:6f:f7: 1c:67:0e:af:42:45:d8:7c:72:4a:72:22:6d:4b:65: 61:98:c5:50:b7:ef:89:21:2a:2c:65:13:bb:56:21: 34:94:33:39:27:04:39:c1:ed:ca:cd:68:44:95:cb: 9d:ba:bf:f9:c3:f9:37:9e:ad:52:54:29:83:ba:86: 2b:c9:25:5b:bd:84:45:21:db:da:3a:c1:e1:08:3e: a3:7b:a7:e8:bf:0d:a8:87:24:f5:ca:9a:d2:8a:50: 9d:6f:4b:47:7e:08:91:ad:3a:0d:ea:16:e4:27:01: 4f:ad:b0:a6:77:2e:9f:d6:ba:46:fc:7a:2e:f2:a6: 3f:9e:4b:8e:f9:db:ce:43:b7:f6:08:3b:6a:42:d9: 66:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B7:A4:E7:9F:08:75:CC:D5:DF:4F:0E:D3:75:05:6E:90:C3:9A:2E X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:79:49:b5:d1:c3:c3:00:57:a5:e7:3b:f1:f6:d3:64:ae:e5: 86:cc:c4:f4:ea:fa:c0:c0:b8:61:a0:36:51:3b:f2:4a:52:c9: 01:c6:f2:91:de:43:0b:86:de:f9:27:2e:3c:c0:d6:fb:c1:d4: ec:21:75:64:74:e1:c9:ee:3a:ac:9e:5a:2e:ac:24:df:bb:a5: 95:cf:f2:1b:af:97:75:e5:76:d8:53:c9:2e:85:fa:83:ed:a5: 9a:e5:41:8b:4e:72:a7:8e:3d:fc:ba:a7:2b:f8:6c:9a:90:8b: cb:f9:39:18:4f:5a:53:0c:85:89:49:fd:a4:79:71:11:05:f5: cf:37:6b:1b:03:8c:95:cd:46:10:ee:11:7c:cf:31:24:22:ba: e2:e6:8e:43:92:95:7c:c6:22:9c:8f:87:6d:59:f2:57:d5:17: 5f:39:97:a3:07:fb:ce:d2:bf:78:75:64:39:3c:6a:fd:f1:ea: 1e:7f:e8:12:bd:60:63:0b:9d:ca:90:68:49:f9:85:60:be:c5: 61:f4:c9:75:fb:e6:87:bf:30:f2:3c:57:b5:37:55:91:fc:d4: 14:e7:79:87:8c:02:5e:b4:90:db:1a:b5:9a:c0:c1:b6:9f:19: 2d:9c:f9:f0:1e:c5:75:5e:ed:e1:6b:61:72:90:e5:e8:87:b8: 26:86:f1:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjYwNTIwMjM1OTU4WhcNMjYwNTI3MjM1OTU4WjAYMRYwFAYD VQQDEw02YTBlNGFmZS1hNGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszBxo9uTJE/E1bS76Sqg56Aocgk+4U/YRc51HZiy5HFgkairNOS2jfN+AuED 4fA5LtRp5idfaif0bEtboYqceHb2Wo+PMZ8KTOPLsOKbift+y8xjBvceulzHg545 MqW/iakE6BiQO+2HdFKIkqol8PGxUmubb/ccZw6vQkXYfHJKciJtS2VhmMVQt++J ISosZRO7ViE0lDM5JwQ5we3KzWhElcudur/5w/k3nq1SVCmDuoYrySVbvYRFIdva OsHhCD6je6fovw2ohyT1yprSilCdb0tHfgiRrToN6hbkJwFPrbCmdy6f1rpG/Hou 8qY/nkuO+dvOQ7f2CDtqQtlmbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA63pOef CHXM1d9PDtN1BW6Qw5ouMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvXlJtdHDwwBXpec78fbTZK7lhszE9Or6wMC4YaA2UTvySlLJAcbykd5DC4be +ScuPMDW+8HU7CF1ZHThye46rJ5aLqwk37ullc/yG6+XdeV22FPJLoX6g+2lmuVB i05yp449/LqnK/hsmpCLy/k5GE9aUwyFiUn9pHlxEQX1zzdrGwOMlc1GEO4RfM8x JCK64uaOQ5KVfMYinI+HbVnyV9UXXzmXowf7ztK/eHVkOTxq/fHqHn/oEr1gYwud ypBoSfmFYL7FYfTJdfvmh78w8jxXtTdVkfzUFOd5h4wCXrSQ2xq1msDBtp8ZLZz5 8B7FdV7t4WthcpDl6Ie4Jobx+g== -----END CERTIFICATE-----Generated at Thu May 21 10:29:04 2026 by rpki-client