$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: pB5JK6NVCvxvg3G+gpRy1a0lYN4L4S1E1P4QLHs4nkU= Subject key identifier: 71:72:40:79:E2:3E:58:73:8B:70:24:4A:35:A3:65:4E:AD:F0:AB:7E Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 02BD Signing time: Thu 21 May 2026 01:29:39 +0000 Manifest this update: Thu 21 May 2026 01:29:39 +0000 Manifest next update: Thu 28 May 2026 01:29:39 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: h34FQKChmqzdzjLDxQEdCaOmyio5M2h4pDhX9MQ+giM=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: akPAZSOa93x2Wngs9MzKkfgLP+esBNNQavCi79ZhFO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: May 21 01:29:39 2026 GMT Not After : May 28 01:29:39 2026 GMT Subject: CN=6a0e6003-8402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c9:a4:78:cd:a6:23:78:95:8f:8f:7a:86:71: 66:2f:5f:f4:01:e3:f4:54:1e:d1:95:20:be:d9:59: 67:01:95:28:1b:f0:92:74:9e:fe:f5:00:5f:22:e1: d4:e1:7d:3a:da:9a:f4:ce:e1:53:e9:b1:dc:4c:23: 2b:c3:34:66:f3:f0:eb:05:a2:ae:cd:ff:bb:ab:b1: d7:85:37:5f:b1:52:33:4c:4a:63:a2:0f:36:df:77: c2:57:df:f4:70:0f:8b:38:19:1e:b1:76:b5:23:99: 91:a1:45:6b:d5:04:30:65:c5:e9:93:fd:db:a0:99: 73:6c:16:56:8b:3b:da:f2:11:07:42:5d:4a:2e:82: 92:59:8e:1e:f9:09:f6:da:0a:77:68:96:7d:c4:7a: f9:b2:7e:4d:97:a1:5b:c9:e4:81:57:41:b8:ee:17: 4a:17:5f:8f:53:b7:ec:aa:e0:84:12:34:d0:58:b4: 26:04:99:ef:07:8d:18:6b:5a:37:5b:06:5d:a4:8b: a7:48:99:a4:d7:1e:2a:a6:6e:39:2f:47:0a:85:b4: 7e:72:c7:9a:98:7c:cb:1f:91:d3:26:a1:c2:06:e1: 8a:6e:b4:f2:60:b7:75:65:06:02:01:ff:2c:9f:6c: b5:62:b5:c1:ff:dd:47:64:b0:c3:db:b6:53:fe:11: 5e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:72:40:79:E2:3E:58:73:8B:70:24:4A:35:A3:65:4E:AD:F0:AB:7E X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f2:5e:13:0d:02:90:37:15:7a:0d:a2:c1:ac:02:fc:e2:72: 67:7e:5c:c4:06:23:2d:9d:e5:a3:cb:11:64:67:e1:e5:4b:d2: 2c:b0:01:5a:92:54:95:0c:b8:a3:34:55:d5:6d:36:95:a7:e0: 9a:5e:e9:49:ac:6f:fb:9b:cc:9d:20:9c:4f:38:2d:de:f7:0d: 52:c7:41:a1:93:46:01:6d:67:3c:27:11:b4:97:ed:4d:a5:62: 9b:76:c3:59:42:9a:c8:2c:08:d5:ef:39:4d:8a:75:ee:1d:97: 8d:46:4b:10:43:35:52:05:f2:52:3f:f3:6c:ab:95:ce:37:85: 32:5e:a2:fc:9b:86:32:fa:0e:63:99:75:c6:df:d8:d6:5c:22: 5d:60:ce:79:0e:5e:7d:85:d3:3a:04:fe:2a:89:79:21:9e:c3: 81:3f:c6:e4:61:cd:87:1d:43:cc:60:f3:56:a0:4c:f3:3a:20: b0:0d:a2:96:97:ad:fe:6f:00:0f:90:7b:2f:42:46:ae:d6:43: 67:d8:a9:fa:c9:81:65:26:c0:57:ac:4f:7b:ba:57:f1:f8:af: 0e:26:1b:95:a2:09:10:ab:aa:54:58:f4:d9:e1:dd:a8:9a:c2: aa:0d:f8:8f:04:8c:ab:d3:c1:6e:e1:8b:8f:86:72:af:9b:1c: 68:ac:cb:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjYwNTIxMDEyOTM5WhcNMjYwNTI4MDEyOTM5WjAYMRYwFAYD VQQDEw02YTBlNjAwMy04NDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28mkeM2mI3iVj496hnFmL1/0AeP0VB7RlSC+2VlnAZUoG/CSdJ7+9QBfIuHU 4X062pr0zuFT6bHcTCMrwzRm8/DrBaKuzf+7q7HXhTdfsVIzTEpjog8233fCV9/0 cA+LOBkesXa1I5mRoUVr1QQwZcXpk/3boJlzbBZWizva8hEHQl1KLoKSWY4e+Qn2 2gp3aJZ9xHr5sn5Nl6FbyeSBV0G47hdKF1+PU7fsquCEEjTQWLQmBJnvB40Ya1o3 WwZdpIunSJmk1x4qpm45L0cKhbR+cseamHzLH5HTJqHCBuGKbrTyYLd1ZQYCAf8s n2y1YrXB/91HZLDD27ZT/hFeBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFyQHni Plhzi3AkSjWjZU6t8Kt+MB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAPJeEw0CkDcVeg2iwawC/OJyZ35cxAYjLZ3lo8sRZGfh5UvSLLABWpJUlQy4 ozRV1W02lafgml7pSaxv+5vMnSCcTzgt3vcNUsdBoZNGAW1nPCcRtJftTaVim3bD WUKayCwI1e85TYp17h2XjUZLEEM1UgXyUj/zbKuVzjeFMl6i/JuGMvoOY5l1xt/Y 1lwiXWDOeQ5efYXTOgT+Kol5IZ7DgT/G5GHNhx1DzGDzVqBM8zogsA2ilpet/m8A D5B7L0JGrtZDZ9ip+smBZSbAV6xPe7pX8fivDiYblaIJEKuqVFj02eHdqJrCqg34 jwSMq9PBbuGLj4Zyr5scaKzLIw== -----END CERTIFICATE-----Generated at Thu May 21 10:38:30 2026 by rpki-client