$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: WGPjPqL1mYws99cUxkRdsB9NwoVkhHeMQakv/BkogDI= Subject key identifier: 95:12:7A:81:50:C0:42:5A:32:73:E8:B5:99:3F:50:CA:A9:8E:13:E8 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 011D Signing time: Thu 21 May 2026 05:53:59 +0000 Manifest this update: Thu 21 May 2026 05:53:58 +0000 Manifest next update: Thu 28 May 2026 05:53:58 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: SbvFEh52ev3x2Tj0i665z8ayAgJyO43Q41L3fzDpv2Y=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: Mbaq1JxQwVcFP87z4eBI+1tbhFSk65AD4tx8mWL3NcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: May 21 05:53:58 2026 GMT Not After : May 28 05:53:58 2026 GMT Subject: CN=6a0e9df6-5c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:ad:c1:53:65:e2:08:b8:f7:ba:c8:cb:ab: 77:42:ed:b7:eb:23:05:b2:88:9c:9e:cc:c8:76:72: e6:bd:07:49:b9:d5:0c:2c:5f:50:ad:5c:08:dd:9b: 1c:6e:de:74:09:0a:92:99:97:c6:f0:99:a1:e8:f3: 8a:cf:5d:46:d1:82:75:35:37:8c:89:58:ab:55:72: 75:a1:e8:2a:76:88:7c:05:bd:98:ed:8c:15:f7:ff: c5:ad:2d:89:bf:0e:71:59:ea:ec:79:e9:fe:ed:6a: 0f:2a:50:e7:b7:67:b6:84:c5:4b:b5:04:c4:32:4f: dc:74:6f:1d:dd:ef:26:28:01:80:7b:19:88:ed:8a: 40:52:17:eb:78:54:cc:61:b8:f0:99:f3:86:ef:5f: 3e:7a:12:ed:f2:3a:b9:69:c9:10:49:3f:63:fc:99: 1c:f9:c3:f4:58:de:bb:1b:29:2f:63:8a:fc:2d:d4: 52:b2:d2:b7:05:6b:85:15:04:0d:70:60:a2:60:ac: e6:3e:8a:fb:da:16:8c:74:b1:7c:5a:fd:f3:b4:44: 1a:58:6f:e2:44:43:d4:9d:4d:f1:26:59:56:4e:7c: 7c:b4:e9:db:b3:ca:6b:67:12:5b:92:fe:b1:55:36: 3f:a1:0e:01:8c:0c:2c:cc:f0:81:8e:32:86:7e:4d: cc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:7A:81:50:C0:42:5A:32:73:E8:B5:99:3F:50:CA:A9:8E:13:E8 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:39:c7:69:b5:a1:77:72:14:70:5e:03:56:d5:fe:86:7a:d5: 87:bd:44:27:42:5d:7b:02:97:26:d2:8f:5d:cd:62:a7:c4:51: 2f:94:e0:24:21:0b:b5:8a:3b:e1:52:df:9b:3a:19:72:63:22: 65:de:24:b0:8a:0c:bf:87:ed:f2:38:93:02:91:c6:67:a7:d6: 78:72:3d:a1:f0:db:95:46:6f:22:a9:ff:5e:3a:28:64:92:56: 86:48:34:46:a8:73:90:56:8b:30:45:68:56:78:1e:e6:19:6b: f4:c6:30:75:96:1f:1e:c5:04:3b:03:bc:00:e3:52:52:a0:f4: a3:7d:58:57:86:13:c1:e3:fa:f3:0a:26:8f:ab:59:b5:83:3b: ef:02:ee:f9:22:4e:ff:2f:06:cb:21:53:57:bd:38:f8:b0:86: 32:24:68:4f:e8:eb:72:7a:f7:94:8d:a7:d5:bc:2f:b5:83:80: a7:44:79:63:9d:69:20:cf:71:f4:92:ec:fc:09:b6:9b:b6:5e: e2:5c:7c:27:ba:f8:e9:d0:ae:7f:fa:ce:f6:92:6f:84:97:47: 7c:95:f4:15:0f:71:43:9d:22:a6:3d:55:e6:4d:5e:49:7e:90: 90:3d:4a:b9:33:e1:f7:5e:52:e1:96:c2:f8:d9:53:cb:48:57: 48:be:86:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjYwNTIxMDU1MzU4WhcNMjYwNTI4MDU1MzU4WjAYMRYwFAYD VQQDEw02YTBlOWRmNi01YzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoKtwVNl4gi497rIy6t3Qu236yMFsoicnszIdnLmvQdJudUMLF9QrVwI3Zsc bt50CQqSmZfG8Jmh6POKz11G0YJ1NTeMiVirVXJ1oegqdoh8Bb2Y7YwV9//FrS2J vw5xWerseen+7WoPKlDnt2e2hMVLtQTEMk/cdG8d3e8mKAGAexmI7YpAUhfreFTM YbjwmfOG718+ehLt8jq5ackQST9j/Jkc+cP0WN67GykvY4r8LdRSstK3BWuFFQQN cGCiYKzmPor72haMdLF8Wv3ztEQaWG/iREPUnU3xJllWTnx8tOnbs8prZxJbkv6x VTY/oQ4BjAwszPCBjjKGfk3M3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUSeoFQ wEJaMnPotZk/UMqpjhPoMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC9BNzhGMUIxMkE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1 MDZyeFhlcnVhV1VqUjBhaWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOTnHabWhd3IUcF4DVtX+hnrVh71EJ0JdewKXJtKPXc1ip8RRL5TgJCELtYo7 4VLfmzoZcmMiZd4ksIoMv4ft8jiTApHGZ6fWeHI9ofDblUZvIqn/XjooZJJWhkg0 RqhzkFaLMEVoVnge5hlr9MYwdZYfHsUEOwO8AONSUqD0o31YV4YTweP68womj6tZ tYM77wLu+SJO/y8GyyFTV704+LCGMiRoT+jrcnr3lI2n1bwvtYOAp0R5Y51pIM9x 9JLs/Am2m7Ze4lx8J7r46dCuf/rO9pJvhJdHfJX0FQ9xQ50ipj1V5k1eSX6QkD1K uTPh915S4ZbC+NlTy0hXSL6G0w== -----END CERTIFICATE-----Generated at Thu May 21 11:05:15 2026 by rpki-client