$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: uidOEy4t2wa86PIUPtnDKNGCHoe56t0dR1RVtzmqKgs= Subject key identifier: E0:E1:15:AB:3B:81:9E:E5:36:E5:DB:44:F6:AD:C0:EB:06:A4:7F:27 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 0841 Signing time: Wed 20 May 2026 20:56:41 +0000 Manifest this update: Wed 20 May 2026 20:56:40 +0000 Manifest next update: Wed 27 May 2026 20:56:40 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: Oe3bxc5yn6FVOQHcdJawVsk8tRoiMjzPSlKxrf7dAXM=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: Ca1sU4x07vR9ic014MfkvHriHHtFXo0Z6p1sbkhlP4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: May 20 20:56:40 2026 GMT Not After : May 27 20:56:40 2026 GMT Subject: CN=6a0e2009-0cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:0e:4d:14:34:4d:5c:ec:4e:06:84:5d:90:dc: 2b:76:c3:c6:6c:d5:79:37:cf:6a:ed:47:57:05:61: 6d:3e:24:e1:73:9f:b2:a6:df:86:6f:0f:a8:83:f0: b4:47:c5:26:0c:43:11:e7:38:d4:96:6c:89:3e:a6: c3:e2:dc:94:a9:12:7a:a5:34:dd:22:58:c7:17:ea: 63:43:e6:e5:dc:17:1c:d3:5e:34:43:89:ea:08:3f: 01:3b:a8:13:0c:0c:6a:dc:e6:78:71:a2:75:cf:ce: 93:05:a7:95:3a:37:2e:98:19:f4:75:d0:79:1e:65: 28:9d:cb:a4:41:a4:90:11:7e:cd:e9:b7:fd:cb:bc: b8:b6:2c:32:29:4c:15:20:75:47:99:58:97:55:5c: 2e:57:75:a7:ee:e3:0f:32:13:7a:6c:87:59:6f:c5: 6f:1f:2e:c0:a5:04:fb:52:61:2f:8d:85:82:6a:19: 77:72:42:3f:59:11:78:df:b5:17:41:ae:7d:87:c4: 12:1e:82:a1:4f:8a:b7:fd:ca:bd:aa:c0:66:b7:b1: 79:8a:83:cb:f2:68:7f:8f:9a:87:e8:e2:b1:90:0a: db:6f:05:2e:00:55:ca:37:56:f7:4e:7d:6e:38:2e: c4:85:01:58:cd:0b:34:e1:ce:b2:1b:c4:80:30:dc: 21:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E1:15:AB:3B:81:9E:E5:36:E5:DB:44:F6:AD:C0:EB:06:A4:7F:27 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:fd:00:06:cd:68:b1:cd:cb:2f:a7:9d:6b:cc:3b:47:7f:97: dc:b7:35:fe:70:ef:c4:53:c6:29:de:da:e4:16:2d:36:86:c2: f6:55:86:e3:46:7d:a5:f3:46:ba:0d:90:79:87:6a:c3:bb:e0: df:16:a4:f4:59:4e:2e:00:43:df:dd:ea:b8:f2:de:14:2b:eb: 56:00:39:89:e8:0f:c4:41:12:fa:fb:7c:a8:c8:d5:58:9c:dd: 89:2d:29:68:4f:0a:0b:29:ed:6b:e1:08:c9:dc:de:e7:91:22: 75:22:f6:93:56:b6:22:cf:6d:74:f1:39:e7:ea:3d:20:31:90: c8:e6:25:5d:91:e8:35:de:fb:c7:77:13:cb:49:1c:26:93:84: c1:ba:0c:52:82:c3:7a:a3:25:30:75:7a:1e:d6:59:5b:14:da: 86:a4:3b:fe:ed:ab:86:53:bb:d1:93:9c:2d:e3:08:fa:65:56: 85:d4:7b:82:5a:12:15:ba:c3:00:f1:52:b1:15:6b:a4:36:90: fc:4b:d4:94:50:6f:d2:aa:b6:2f:a7:95:7e:f5:08:c3:7f:82: d3:66:0a:89:7b:e6:24:ad:e2:60:78:49:a1:b0:f3:cb:01:bc: f3:06:83:b8:37:31:df:af:74:48:fc:bd:40:4f:61:f5:de:e0: 40:f5:0b:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjYwNTIwMjA1NjQwWhcNMjYwNTI3MjA1NjQwWjAYMRYwFAYD VQQDEw02YTBlMjAwOS0wY2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiA5NFDRNXOxOBoRdkNwrdsPGbNV5N89q7UdXBWFtPiThc5+ypt+Gbw+og/C0 R8UmDEMR5zjUlmyJPqbD4tyUqRJ6pTTdIljHF+pjQ+bl3Bcc0140Q4nqCD8BO6gT DAxq3OZ4caJ1z86TBaeVOjcumBn0ddB5HmUoncukQaSQEX7N6bf9y7y4tiwyKUwV IHVHmViXVVwuV3Wn7uMPMhN6bIdZb8VvHy7ApQT7UmEvjYWCahl3ckI/WRF437UX Qa59h8QSHoKhT4q3/cq9qsBmt7F5ioPL8mh/j5qH6OKxkArbbwUuAFXKN1b3Tn1u OC7EhQFYzQs04c6yG8SAMNwhiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODhFas7 gZ7lNuXbRPatwOsGpH8nMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ/0ABs1osc3LL6eda8w7R3+X3Lc1/nDvxFPGKd7a5BYtNobC9lWG40Z9pfNG ug2QeYdqw7vg3xak9FlOLgBD393quPLeFCvrVgA5iegPxEES+vt8qMjVWJzdiS0p aE8KCynta+EIydze55EidSL2k1a2Is9tdPE55+o9IDGQyOYlXZHoNd77x3cTy0kc JpOEwboMUoLDeqMlMHV6HtZZWxTahqQ7/u2rhlO70ZOcLeMI+mVWhdR7gloSFbrD APFSsRVrpDaQ/EvUlFBv0qq2L6eVfvUIw3+C02YKiXvmJK3iYHhJobDzywG88waD uDcx3690SPy9QE9h9d7gQPULlQ== -----END CERTIFICATE-----Generated at Thu May 21 10:26:39 2026 by rpki-client