$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: DnyYanPqigcMMtQlwwo7TPU7FVnj51e6eBa1s6zUzhU= Subject key identifier: 7F:D0:C6:A9:F1:B7:D4:22:24:BC:4B:03:00:4C:75:E4:1C:95:D2:F8 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0295 Signing time: Thu 21 May 2026 01:52:59 +0000 Manifest this update: Thu 21 May 2026 01:52:59 +0000 Manifest next update: Thu 28 May 2026 01:52:59 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: rFDnSSu5jql7hRYWF/VBoIcy8ktR0ygURj+z6zQ/e28=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: May 21 01:52:59 2026 GMT Not After : May 28 01:52:59 2026 GMT Subject: CN=6a0e657b-90e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:94:10:2e:83:8f:82:1e:0e:8a:2a:bd:a0: e0:d7:d1:52:97:90:6c:95:d7:43:b2:9a:c3:ce:09: 99:fb:fb:80:80:45:ed:54:dd:36:de:6e:05:f5:17: 6a:53:14:6e:17:92:d3:09:ea:3c:0f:e2:d9:a7:03: 00:23:9f:88:6e:aa:8c:b6:d8:5b:78:f8:a9:1c:3b: 8d:b9:cf:1e:34:eb:2a:15:eb:2d:c4:98:b4:c3:00: aa:61:25:8c:7c:f0:d8:04:48:ec:a2:fa:7a:b6:8b: 83:fa:f1:89:4c:c4:b5:ce:e8:d0:a4:6f:50:9b:d1: b7:21:6e:ae:90:47:9c:8f:e1:33:7d:14:7a:7c:f9: 21:05:ea:5e:f2:c4:9f:37:56:e4:5e:f1:90:52:55: 49:9d:36:1e:f3:3c:33:30:54:25:e4:11:b3:01:64: 14:f3:c8:cf:7d:68:02:ea:fb:e0:9a:bf:66:30:c4: 74:ab:d3:14:49:f7:58:96:24:bb:54:89:14:81:08: 15:4a:f3:3b:2b:e2:37:a3:ab:e3:96:56:d3:16:a2: 0a:23:a4:af:8c:95:35:0a:51:43:c9:96:44:b9:8f: a5:25:a7:df:30:9d:b3:1b:38:40:c5:8f:51:5f:80: 0e:f9:90:d6:34:00:e0:26:88:bc:30:4e:eb:8f:df: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D0:C6:A9:F1:B7:D4:22:24:BC:4B:03:00:4C:75:E4:1C:95:D2:F8 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:86:78:6a:d7:89:ad:75:54:16:a1:25:0b:3a:32:8a:f5:92: bf:67:7c:54:84:2d:f7:68:f7:ef:02:df:03:d6:57:20:71:bd: a6:90:0b:01:90:fc:5c:bb:77:a2:af:7f:ee:20:d0:00:d3:5e: eb:21:5e:83:10:80:34:5f:77:43:43:1c:58:a5:40:86:ea:2c: 34:e2:e0:e7:65:a6:fe:dc:90:f6:67:bb:21:c3:7a:99:c9:82: c9:5b:c4:bc:72:ba:7f:16:8d:4c:4c:7e:e3:81:27:75:de:57: 49:7a:08:5f:48:60:a2:01:2e:b6:75:fd:3a:3d:d2:e1:37:83: 5b:a3:86:f2:da:f3:f0:8b:0d:3e:36:3c:91:2b:43:94:3a:f5: 96:4b:24:e7:b3:42:f0:aa:6f:30:31:12:19:94:84:a4:96:20: 1b:12:dc:d2:73:cf:4d:8a:b7:6d:55:be:e8:3a:3a:ee:c8:c8: be:a6:26:df:3f:0e:5c:83:8b:df:ae:8b:49:6d:79:24:da:2f: ef:c2:aa:9f:7f:32:a8:05:13:40:cd:e4:de:63:d7:f9:1f:9a: 89:f9:ab:6d:ad:9a:a0:80:95:e9:92:87:2f:4c:f8:8f:11:0d: c5:c1:9c:f8:6e:4a:95:e2:94:e7:58:78:28:36:15:76:e2:12: eb:13:c8:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwNTIxMDE1MjU5WhcNMjYwNTI4MDE1MjU5WjAYMRYwFAYD VQQDEw02YTBlNjU3Yi05MGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvGUEC6Dj4IeDooqvaDg19FSl5BslddDsprDzgmZ+/uAgEXtVN023m4F9Rdq UxRuF5LTCeo8D+LZpwMAI5+IbqqMtthbePipHDuNuc8eNOsqFestxJi0wwCqYSWM fPDYBEjsovp6touD+vGJTMS1zujQpG9Qm9G3IW6ukEecj+EzfRR6fPkhBepe8sSf N1bkXvGQUlVJnTYe8zwzMFQl5BGzAWQU88jPfWgC6vvgmr9mMMR0q9MUSfdYliS7 VIkUgQgVSvM7K+I3o6vjllbTFqIKI6SvjJU1ClFDyZZEuY+lJaffMJ2zGzhAxY9R X4AO+ZDWNADgJoi8ME7rj98W1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH/Qxqnx t9QiJLxLAwBMdeQcldL4MB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkIZ4ateJrXVUFqElCzoyivWSv2d8VIQt92j37wLfA9ZXIHG9ppALAZD8XLt3 oq9/7iDQANNe6yFegxCANF93Q0McWKVAhuosNOLg52Wm/tyQ9me7IcN6mcmCyVvE vHK6fxaNTEx+44Endd5XSXoIX0hgogEutnX9Oj3S4TeDW6OG8trz8IsNPjY8kStD lDr1lksk57NC8KpvMDESGZSEpJYgGxLc0nPPTYq3bVW+6Do67sjIvqYm3z8OXIOL 366LSW15JNov78Kqn38yqAUTQM3k3mPX+R+aifmrba2aoICV6ZKHL0z4jxENxcGc +G5KleKU51h4KDYVduIS6xPI3Q== -----END CERTIFICATE-----Generated at Thu May 21 09:35:58 2026 by rpki-client