$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft File: pfBl_MntoR3KTQ38bXyZB1KY1_8.mft (raw, json) Hash identifier: VbWEbGc0T4b7Ifla72IM8RJRtW2T8ewkaKv7C1WNqlk= Subject key identifier: AE:1B:81:1E:A2:D8:0A:2A:E1:3D:AA:40:70:22:81:5C:B5:60:15:15 Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF Certificate issuer: /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Certificate serial: 09DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft Manifest number: 09C2 Signing time: Wed 20 May 2026 19:56:58 +0000 Manifest this update: Wed 20 May 2026 19:56:58 +0000 Manifest next update: Wed 27 May 2026 19:56:58 +0000 Files and hashes: 1: pfBl_MntoR3KTQ38bXyZB1KY1_8.crl (hash: egXwq3Io5J8uTx2In9W3rckttjopBKISI5fhlGjwWDU=) 2: 8BBD25F4EAE311EF95C23D4DC4F9AE02.roa (hash: KwmNhu5rUPuchUZhsnJbF0ZKPoHrpjaspO6PL7DH0vg=) 3: 1B2BB85E3F1111F1B02AA5A9CD833773.roa (hash: Ty6kAwFYmOBnFBYpoJLfmsxaOgDw2oRipWgqmMo4aic=) 4: F663B6DE3F1011F1A8E91BA6CD833773.roa (hash: IZD04qWcSQMB/mUWA7EYMNUhoPSV5yvjCVWYX5OKWc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2526 (0x9de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174685, serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Validity Not Before: May 20 19:56:58 2026 GMT Not After : May 27 19:56:58 2026 GMT Subject: CN=6a0e120a-69f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ad:e0:2e:31:f5:7d:5a:56:e5:1b:64:81:0b: 7a:12:3c:36:dc:71:a2:b3:04:a2:3c:f8:99:5d:73: b9:5a:39:6f:6e:63:b5:ed:1e:b0:21:5c:24:b6:e7: 6e:65:06:86:39:64:c0:c4:f0:17:f4:eb:3a:fb:72: c7:6e:3f:87:30:23:78:2b:a1:43:b6:44:d3:43:29: c6:7c:fb:5a:5a:14:59:63:d7:ca:9a:03:0b:26:c8: df:e5:91:26:b8:10:cc:6a:47:e2:a1:dc:4f:00:e0: e2:12:60:ab:5c:0d:b0:21:ed:68:00:b2:29:f8:b2: 96:0c:f8:a5:d8:79:b0:e0:e4:b6:9e:12:87:8c:a6: 82:0d:92:d4:9a:39:3e:c7:cf:38:fd:b8:d2:97:72: 18:06:c6:4b:86:e4:91:f4:fe:b7:1a:3d:84:ae:b2: 2a:46:cb:4a:1b:f2:d0:44:52:a7:6b:1e:94:e5:72: fd:f1:d7:45:d7:59:b2:39:a1:18:97:03:35:ec:be: ef:d5:ca:bd:8c:ff:08:70:ab:9e:f7:b3:12:c0:27: bc:88:86:20:e5:87:22:68:7a:bc:e1:4a:de:0e:ef: b6:94:b8:8f:2b:99:16:fd:67:08:b7:2f:0b:b8:4d: 02:75:20:7e:43:c4:b5:1a:5e:5a:34:a0:e5:78:57: 69:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:1B:81:1E:A2:D8:0A:2A:E1:3D:AA:40:70:22:81:5C:B5:60:15:15 X509v3 Authority Key Identifier: keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ff:39:50:03:09:74:50:cb:90:2c:b7:97:d7:f2:0e:d4:7f: f1:86:6d:ae:0d:37:e4:b3:d9:b5:3a:6e:59:16:87:a6:75:d0: 1d:5a:13:cb:8b:43:99:09:cf:2a:54:39:fc:c7:e9:c5:48:7e: f8:2f:e9:8a:b6:82:67:ee:5f:ca:8b:5d:05:87:8b:80:b5:e8: 1a:c9:1c:52:d3:52:5e:2e:eb:95:5c:0d:55:f9:fc:ac:1e:ec: 16:27:a5:c4:56:b2:aa:7b:74:67:f9:7a:02:3c:aa:a7:db:28: 41:14:1b:ae:1c:19:42:58:0b:02:09:05:38:61:0c:6a:31:ff: a8:3d:85:06:b6:fb:50:fe:a5:5e:bb:30:5e:76:9f:63:be:00: 94:4a:0c:41:d3:2c:97:12:6e:0c:8a:b6:38:52:5a:f5:48:4c: 1e:c4:65:29:52:d3:4a:90:9d:29:9c:62:91:21:35:89:60:06: 9f:82:cc:4f:b3:71:71:70:b6:16:ad:ba:2c:b2:2c:30:8a:79: cc:b6:c7:96:a2:45:96:f4:52:fb:6d:2b:e4:64:ba:f3:00:3b: 7d:97:ab:62:b7:99:e9:4c:2f:ba:71:ef:4c:80:08:37:94:6a: f2:3d:59:07:90:23:03:db:84:4b:d4:31:42:9d:14:d3:b7:1d: 03:51:2f:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ2ODUxMTAvBgNVBAUTKEE1RjA2NUZDQzlFREExMURDQTREMERGQzZEN0M5OTA3 NTI5OEQ3RkYwHhcNMjYwNTIwMTk1NjU4WhcNMjYwNTI3MTk1NjU4WjAYMRYwFAYD VQQDEw02YTBlMTIwYS02OWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArq3gLjH1fVpW5RtkgQt6Ejw23HGiswSiPPiZXXO5WjlvbmO17R6wIVwktudu ZQaGOWTAxPAX9Os6+3LHbj+HMCN4K6FDtkTTQynGfPtaWhRZY9fKmgMLJsjf5ZEm uBDMakfiodxPAODiEmCrXA2wIe1oALIp+LKWDPil2Hmw4OS2nhKHjKaCDZLUmjk+ x884/bjSl3IYBsZLhuSR9P63Gj2ErrIqRstKG/LQRFKnax6U5XL98ddF11myOaEY lwM17L7v1cq9jP8IcKue97MSwCe8iIYg5YciaHq84UreDu+2lLiPK5kW/WcIty8L uE0CdSB+Q8S1Gl5aNKDleFdpwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK4bgR6i 2Aoq4T2qQHAigVy1YBUVMB8GA1UdIwQYMBaAFKXwZfzJ7aEdyk0N/G18mQdSmNf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDY4NS8yRDE1OTE4MkE5 NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9SM0tUUTM4Ylh5WkIxS1kx XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmQmxfTW50b1IzS1RRMzhiWHlaQjFLWTFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDY4NS8yRDE1OTE4MkE5NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9S M0tUUTM4Ylh5WkIxS1kxXzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa/85UAMJdFDLkCy3l9fyDtR/8YZtrg035LPZtTpuWRaHpnXQHVoTy4tDmQnP KlQ5/MfpxUh++C/piraCZ+5fyotdBYeLgLXoGskcUtNSXi7rlVwNVfn8rB7sFiel xFayqnt0Z/l6Ajyqp9soQRQbrhwZQlgLAgkFOGEMajH/qD2FBrb7UP6lXrswXnaf Y74AlEoMQdMslxJuDIq2OFJa9UhMHsRlKVLTSpCdKZxikSE1iWAGn4LMT7NxcXC2 Fq26LLIsMIp5zLbHlqJFlvRS+20r5GS68wA7fZerYreZ6UwvunHvTIAIN5Rq8j1Z B5AjA9uES9QxQp0U07cdA1Ev3w== -----END CERTIFICATE-----Generated at Thu May 21 10:28:42 2026 by rpki-client