$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: OJPooJZtHZe0ROFoV9GvA1sC3I1HlSZ/lCHSDOCm7nw= Subject key identifier: F9:5A:A8:D2:55:3F:23:FE:99:38:AF:C6:88:7F:9A:6D:9B:12:74:33 Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 0668 Signing time: Wed 20 May 2026 22:39:08 +0000 Manifest this update: Wed 20 May 2026 22:39:07 +0000 Manifest next update: Wed 27 May 2026 22:39:07 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: SYu+HQ7KfJIaSf38YIDASE/VKnShxF8M8peowHbU7vA=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: XRS9X+c5H6+PF5E3AA5+5JCGv1T1c0IZvsE7D/UMy8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: May 20 22:39:07 2026 GMT Not After : May 27 22:39:07 2026 GMT Subject: CN=6a0e380c-030b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:94:57:1b:3a:90:65:5a:7c:ad:9d:2f:56:d9: 63:50:b9:1b:cc:0c:29:3b:d6:88:bf:38:bd:55:6f: f3:e1:fa:9e:cd:21:be:d5:9e:57:44:a9:b0:73:85: 06:71:60:f1:15:6d:df:2b:50:57:6f:b9:83:31:2f: 20:6f:5b:eb:d5:32:54:79:8f:1c:10:62:81:ac:4a: f0:6f:99:b8:21:0c:19:f7:cb:ff:10:bd:db:57:46: 1c:4e:83:dc:2d:2c:32:e5:bd:06:5d:87:e8:fa:43: 1c:53:25:c5:82:da:77:25:4b:a6:08:b6:85:4e:2d: 5c:1d:2c:fd:30:bf:bd:0e:ff:ba:0e:2f:68:66:67: fa:65:3e:d0:61:b7:e0:9d:51:36:2a:be:cd:b2:43: 36:56:6d:53:6d:68:ee:6a:29:dd:6b:7c:6a:cf:08: a2:54:4c:48:a4:85:f2:bb:b4:f4:e1:5e:b8:58:0c: 19:19:81:c0:cf:3e:a9:a1:bb:99:08:85:e8:d0:d2: 7d:07:ae:1e:19:d8:f7:1c:3b:ef:4d:eb:36:a1:29: 09:80:a1:2a:53:29:12:db:4e:88:75:95:7e:29:93: 1e:74:3e:c1:b6:66:53:61:f7:95:0d:75:ea:07:8f: eb:cc:c4:e8:dc:67:24:1e:6e:d3:5f:48:92:be:6a: ff:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:5A:A8:D2:55:3F:23:FE:99:38:AF:C6:88:7F:9A:6D:9B:12:74:33 X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:d7:ed:ea:f2:8b:6b:b8:25:b0:eb:07:6e:1f:b8:85:e3:7f: 6c:e8:80:cd:46:99:cc:59:dd:b7:b6:62:5f:09:fb:0f:39:e5: 30:f3:1c:b2:1d:9d:30:57:20:0f:aa:1a:41:d0:38:cc:fb:b7: ed:d8:e3:3e:a8:bd:bc:bc:76:29:6e:e2:a2:bc:98:cc:bb:9e: 33:3b:d8:58:6d:21:c1:5e:aa:cb:bd:81:c4:00:7d:3d:62:39: e7:e2:c4:df:89:34:8d:8e:5d:38:22:d4:35:14:25:0c:ed:1d: 65:ec:08:39:66:4f:f7:69:ee:cc:85:a9:a8:d7:d3:aa:59:0f: bc:f9:9c:75:0e:12:f6:9a:38:a3:57:67:b8:26:1c:b5:47:b7: a6:51:9f:90:34:da:89:45:68:ec:b1:63:ed:cb:59:a2:3c:dc: a0:86:b3:ac:79:06:00:81:16:a8:7d:c2:12:14:ad:41:09:b7: 36:e6:bd:23:3b:e3:c3:68:12:ca:52:89:97:e6:ca:ba:bc:ae: 72:25:e5:bf:7f:a8:fc:c9:29:2c:6a:69:e7:48:d1:b4:58:75: 2b:2c:a2:21:89:cf:9d:ba:ba:1f:89:ac:d5:77:d6:d4:dc:20: b5:03:a7:85:de:4e:05:3d:24:6d:80:97:35:6a:22:b8:dc:19: ee:3a:e8:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjYwNTIwMjIzOTA3WhcNMjYwNTI3MjIzOTA3WjAYMRYwFAYD VQQDEw02YTBlMzgwYy0wMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5RXGzqQZVp8rZ0vVtljULkbzAwpO9aIvzi9VW/z4fqezSG+1Z5XRKmwc4UG cWDxFW3fK1BXb7mDMS8gb1vr1TJUeY8cEGKBrErwb5m4IQwZ98v/EL3bV0YcToPc LSwy5b0GXYfo+kMcUyXFgtp3JUumCLaFTi1cHSz9ML+9Dv+6Di9oZmf6ZT7QYbfg nVE2Kr7NskM2Vm1TbWjuainda3xqzwiiVExIpIXyu7T04V64WAwZGYHAzz6pobuZ CIXo0NJ9B64eGdj3HDvvTes2oSkJgKEqUykS206IdZV+KZMedD7BtmZTYfeVDXXq B4/rzMTo3GckHm7TX0iSvmr/ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPlaqNJV PyP+mTivxoh/mm2bEnQzMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq9ft6vKLa7glsOsHbh+4heN/bOiAzUaZzFndt7ZiXwn7DznlMPMcsh2dMFcg D6oaQdA4zPu37djjPqi9vLx2KW7ioryYzLueMzvYWG0hwV6qy72BxAB9PWI55+LE 34k0jY5dOCLUNRQlDO0dZewIOWZP92nuzIWpqNfTqlkPvPmcdQ4S9po4o1dnuCYc tUe3plGfkDTaiUVo7LFj7ctZojzcoIazrHkGAIEWqH3CEhStQQm3Nua9Izvjw2gS ylKJl+bKuryuciXlv3+o/MkpLGpp50jRtFh1KyyiIYnPnbq6H4ms1XfW1NwgtQOn hd5OBT0kbYCXNWoiuNwZ7jrocA== -----END CERTIFICATE-----Generated at Thu May 21 09:35:54 2026 by rpki-client