$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: f+2P3xLONGuoZ5U773vMvbXBE2/AC2rrusiWsu50p4c= Subject key identifier: 1A:B2:9C:4F:48:AB:3F:6C:44:2A:C5:A8:B0:4E:70:4A:E7:E1:58:9B Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0266 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0254 Signing time: Thu 21 May 2026 02:28:05 +0000 Manifest this update: Thu 21 May 2026 02:28:04 +0000 Manifest next update: Thu 28 May 2026 02:28:04 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: 01rm2fJvjR9Ke/p0KNpfeaHbph7+dAJYyAcwUOnZodU=) 2: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: txSvzTPr2599JY/devjyQjZpXUdF6ZNG1hcHHYqrLIA=) 3: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: z04Vftmrg2QbTvPdZ6E5RXhqc7guf0iEptckFIG+yc8=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: OGuYh+AxdFGbpXMOTasU8EIj52mT5htTsl1m4is8Y4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: May 21 02:28:04 2026 GMT Not After : May 28 02:28:04 2026 GMT Subject: CN=6a0e6db4-6263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:06:64:7b:f7:93:46:66:1a:4f:8c:33:92:95: 93:3e:5d:d2:8b:f8:d3:fe:33:52:b0:d2:78:4f:98: db:87:e3:a9:90:ae:e7:25:c6:be:fa:8b:eb:d2:9e: 8b:23:dc:5a:49:2d:20:0d:ba:6b:35:7d:f8:5e:ea: 64:af:1f:4c:ee:a5:1b:71:45:a3:04:2e:a9:23:25: a2:52:45:8a:5d:98:50:f8:c1:17:a6:fd:3d:33:27: 65:d4:81:6c:71:4f:99:96:4a:19:44:4e:a6:e1:c6: 68:9d:ff:e2:52:d5:36:90:b4:80:8e:42:3b:bf:b5: cc:f1:de:42:b9:18:e2:c5:d8:8e:ec:53:9a:fa:13: cf:bf:0f:08:31:a5:d8:4d:e1:8d:20:3e:02:73:da: 21:48:a8:7f:f4:62:6d:89:42:33:05:0c:5f:5c:3b: bf:b3:38:5b:1e:cb:d1:61:03:1f:40:df:26:9e:d8: fa:fb:1e:02:76:06:ea:f7:b2:dc:99:80:36:9d:c3: b7:0e:de:3b:ae:24:56:f0:da:04:09:71:45:bf:b6: 2d:16:9c:82:4a:89:5d:f6:e4:3b:09:cf:7a:de:aa: 18:47:fd:1e:dd:84:1c:7d:e6:9b:cc:f3:c7:8b:75: 45:1e:ed:bc:bb:34:07:72:f0:b9:ac:af:c6:3e:81: 9a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B2:9C:4F:48:AB:3F:6C:44:2A:C5:A8:B0:4E:70:4A:E7:E1:58:9B X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b1:18:62:67:b4:09:49:55:04:d9:85:77:12:f6:21:65:40: 1a:7a:36:0f:93:20:7b:e2:e1:3f:12:7b:00:64:af:54:af:d7: 2b:d7:90:20:58:03:7a:55:89:17:7c:12:a8:6d:e6:5a:4d:0f: 56:fc:21:0b:04:d4:79:50:4e:e7:93:9f:fa:6e:c2:22:1e:dd: e7:f4:29:d0:14:c8:e2:13:fb:bc:86:03:c0:a1:5f:48:70:12: f9:ad:58:ca:ef:f1:7c:1c:7d:dd:f6:f5:d3:52:94:8b:e9:b1: cf:76:dc:22:2a:ba:18:9e:3d:4e:56:d1:64:7f:3b:58:64:8e: 17:12:28:3f:b8:02:93:26:cb:b8:f7:9c:c3:b0:e1:31:85:d4: 6e:34:03:0f:69:66:37:19:8e:a6:46:63:19:17:35:9b:c9:d8: 91:bb:01:48:a4:56:1f:06:81:f1:25:31:3d:86:56:4b:ad:f7: b9:17:aa:3b:3b:7e:f7:7f:c0:ae:c8:4d:a4:48:1a:6c:8c:27: dc:c9:96:5b:1b:58:ad:1b:ad:da:21:97:0e:6e:5a:dc:1c:df: f5:ef:91:57:f9:95:c3:b1:97:f3:a5:c0:4b:cf:72:93:c4:c9: 0e:4f:43:90:43:08:3c:a5:38:44:c8:d0:8a:4a:4b:8c:f2:2e: 78:2e:8b:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjYwNTIxMDIyODA0WhcNMjYwNTI4MDIyODA0WjAYMRYwFAYD VQQDEw02YTBlNmRiNC02MjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwZke/eTRmYaT4wzkpWTPl3Si/jT/jNSsNJ4T5jbh+OpkK7nJca++ovr0p6L I9xaSS0gDbprNX34Xupkrx9M7qUbcUWjBC6pIyWiUkWKXZhQ+MEXpv09Mydl1IFs cU+ZlkoZRE6m4cZonf/iUtU2kLSAjkI7v7XM8d5CuRjixdiO7FOa+hPPvw8IMaXY TeGNID4Cc9ohSKh/9GJtiUIzBQxfXDu/szhbHsvRYQMfQN8mntj6+x4Cdgbq97Lc mYA2ncO3Dt47riRW8NoECXFFv7YtFpyCSold9uQ7Cc963qoYR/0e3YQcfeabzPPH i3VFHu28uzQHcvC5rK/GPoGahwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBqynE9I qz9sRCrFqLBOcErn4VibMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACrEYYme0CUlVBNmFdxL2IWVAGno2D5Mge+LhPxJ7AGSvVK/XK9eQIFgDelWJ F3wSqG3mWk0PVvwhCwTUeVBO55Of+m7CIh7d5/Qp0BTI4hP7vIYDwKFfSHAS+a1Y yu/xfBx93fb101KUi+mxz3bcIiq6GJ49TlbRZH87WGSOFxIoP7gCkybLuPecw7Dh MYXUbjQDD2lmNxmOpkZjGRc1m8nYkbsBSKRWHwaB8SUxPYZWS633uReqOzt+93/A rshNpEgabIwn3MmWWxtYrRut2iGXDm5a3Bzf9e+RV/mVw7GX86XAS89yk8TJDk9D kEMIPKU4RMjQikpLjPIueC6Luw== -----END CERTIFICATE-----Generated at Thu May 21 10:27:47 2026 by rpki-client