$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: HGhBOQlfFuBtySJosNSqxM0OsGqP5kjE759PvovT3tw= Subject key identifier: 52:5D:AD:CB:CF:C2:62:22:6F:4B:3E:C9:7F:B8:8C:54:A9:E6:8C:62 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 14F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 14C5 Signing time: Mon 04 May 2026 16:50:36 +0000 Manifest this update: Mon 04 May 2026 16:50:36 +0000 Manifest next update: Mon 11 May 2026 16:50:36 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: TGVramFyA2FF5oW2fuWQS3LDH1SQeqe7jGe9eJXOIyc=) 2: 983A5536450611F093EC3A65C4F9AE02.roa (hash: ijwzgpsaKu/9677qc+bwpPEiLD74pnpjkFQugVrQBxM=) 3: A83ECFAE791B11F0B7D48969C4F9AE02.roa (hash: mUJCyq9Quz8XTmFeT3HrV8pJ/1hf+u+XYqhrbRQjU3c=) 4: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: Lqak49Os9Ya4UTOEGKBzKyCOhe/2umYec1RSzQZJSpk=) 5: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: /dfSFFokCqZHKPcfVIUa5saL4zfwsMCEJvMbseXpy4U=) 6: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: gIriR3eH5k3pAT0NnJ+OPQQKfKfiZEc9fhp0R9U18R0=) 7: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: UX+Z+m5y60d6ZGNGCzFSXggUSxqmAM8xUHETNR0GgzI=) 8: 97A9C872450611F093EC3A65C4F9AE02.roa (hash: MmIdcidip9wfZBZNyWLT9cL4eJ3yTZtCyba7+5jHe8E=) 9: 98A0F2BE450611F093EC3A65C4F9AE02.roa (hash: Wopqvhkb24wEJCTtlFgfkTquZwIEfGbCSBar+r2PsA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5362 (0x14f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: May 4 16:50:36 2026 GMT Not After : May 11 16:50:36 2026 GMT Subject: CN=69f8ce5c-393a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:22:cd:66:69:4c:86:93:f3:b0:fa:bc:3f:ce: 70:2f:87:70:1a:ce:96:ee:d1:6b:bb:d9:9c:9f:24: cd:5b:62:b7:91:b6:76:d8:02:7a:08:4d:1a:91:e0: 02:5c:53:67:7d:4d:d7:f3:b0:22:bd:62:e6:4b:2c: 72:8c:4c:e4:79:5e:77:ee:f4:8f:a0:95:90:41:4d: 13:8b:45:80:03:4e:24:e5:fd:07:db:b7:7b:44:2a: ac:6b:fa:af:bd:26:b0:55:d2:b1:3e:93:ee:14:58: 75:e1:be:08:b0:4e:30:35:bf:6a:5a:78:72:58:06: 94:75:3d:89:03:c0:6f:9b:84:34:1b:7c:b4:c7:94: c1:09:71:62:ce:72:5b:68:f4:84:2f:56:de:0c:5c: fb:e1:0a:b9:e8:73:5c:40:6d:d4:c6:4d:b1:3f:ff: 3a:30:24:a2:c1:4b:61:3e:ce:00:69:62:09:3c:ac: 0d:ff:98:34:95:20:3f:40:75:b1:68:ee:81:70:f2: ba:10:4c:e8:f0:82:fe:e2:2b:25:9a:40:e5:f3:32: 54:88:4c:e3:f7:89:b1:fb:14:e4:a7:d6:91:97:dd: 6a:d5:f9:1c:0e:5c:0d:de:f6:c9:8d:e7:be:53:e8: a6:d6:74:fe:46:f5:b8:23:8c:c1:40:36:ea:b6:81: 06:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5D:AD:CB:CF:C2:62:22:6F:4B:3E:C9:7F:B8:8C:54:A9:E6:8C:62 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:45:ac:bb:27:26:db:a8:0f:07:a2:71:e5:38:af:e0:a3:a7: 82:ac:74:a1:3d:fd:8c:0a:aa:38:dc:d0:27:60:84:d3:a4:e2: 00:39:05:58:38:66:48:1a:e0:8b:55:d7:e7:a6:99:37:99:a4: d5:c4:c7:a8:de:85:b0:f8:bc:bc:be:7f:9d:70:d0:86:41:f8: 47:3f:98:4d:a9:dc:b4:d8:38:6c:a4:ac:bf:9c:4b:d7:cd:2a: a1:54:0f:0f:f9:06:ab:dd:89:ca:cd:6a:c3:5e:e1:7e:c5:d1: 02:2d:61:ab:18:37:66:f2:d8:7a:52:b6:09:eb:3a:dc:50:b0: f7:66:12:16:fc:99:5b:54:4d:0d:54:7e:89:a6:69:80:b5:f0: 41:1e:bd:f8:b7:0a:ac:ca:f2:a0:52:53:68:40:30:a1:38:c6: 55:74:8c:c8:a5:5a:e0:02:1f:63:87:76:3c:c9:39:83:43:20: 88:8d:5e:b9:13:25:37:0f:58:f1:a5:1c:ba:e8:05:2f:53:ff: 11:7f:dd:21:44:ea:a6:1e:37:ce:ff:b9:80:d2:0c:47:af:72: 75:1d:2f:dd:74:8f:03:44:a9:dc:d2:03:48:7f:e0:26:f0:2f: 4a:1f:21:8b:40:f7:d2:06:1c:0d:60:da:e4:bb:0f:0f:93:93: b0:66:2f:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjYwNTA0MTY1MDM2WhcNMjYwNTExMTY1MDM2WjAYMRYwFAYD VQQDEw02OWY4Y2U1Yy0zOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCLNZmlMhpPzsPq8P85wL4dwGs6W7tFru9mcnyTNW2K3kbZ22AJ6CE0akeAC XFNnfU3X87AivWLmSyxyjEzkeV537vSPoJWQQU0Ti0WAA04k5f0H27d7RCqsa/qv vSawVdKxPpPuFFh14b4IsE4wNb9qWnhyWAaUdT2JA8Bvm4Q0G3y0x5TBCXFiznJb aPSEL1beDFz74Qq56HNcQG3Uxk2xP/86MCSiwUthPs4AaWIJPKwN/5g0lSA/QHWx aO6BcPK6EEzo8IL+4islmkDl8zJUiEzj94mx+xTkp9aRl91q1fkcDlwN3vbJjee+ U+im1nT+RvW4I4zBQDbqtoEG+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFJdrcvP wmIib0s+yX+4jFSp5oxiMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwkWsuycm26gPB6Jx5Tiv4KOngqx0oT39jAqqONzQJ2CE06TiADkFWDhmSBrg i1XX56aZN5mk1cTHqN6FsPi8vL5/nXDQhkH4Rz+YTanctNg4bKSsv5xL180qoVQP D/kGq92Jys1qw17hfsXRAi1hqxg3ZvLYelK2Ces63FCw92YSFvyZW1RNDVR+iaZp gLXwQR69+LcKrMryoFJTaEAwoTjGVXSMyKVa4AIfY4d2PMk5g0MgiI1euRMlNw9Y 8aUcuugFL1P/EX/dIUTqph43zv+5gNIMR69ydR0v3XSPA0Sp3NIDSH/gJvAvSh8h i0D30gYcDWDa5LsPD5OTsGYvxA== -----END CERTIFICATE-----Generated at Wed May 6 03:27:51 2026 by rpki-client