$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: oTjVV5hnv4zn/RVJKZ4SBrYpDpP/9C+fXikl/eAqBoY= Subject key identifier: EE:63:2C:74:B7:7E:55:2C:C3:23:ED:73:88:5C:02:7A:9D:6B:DE:B5 Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0C70 Signing time: Wed 20 May 2026 18:40:14 +0000 Manifest this update: Wed 20 May 2026 18:40:14 +0000 Manifest next update: Wed 27 May 2026 18:40:14 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: 5P8gqRwj2BFLWWJAGXSauvs/2VRUCI76dQAQnkw5moE=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: MhK6fjpCgRPkr/iKRfOswI8Vu+Z6RpVv9J3L3B3Ndho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: May 20 18:40:14 2026 GMT Not After : May 27 18:40:14 2026 GMT Subject: CN=6a0e000e-f139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ca:87:46:10:8c:b2:b9:33:ca:d4:13:bb:ba: 40:76:c0:7e:1d:b6:03:c5:0f:4b:29:92:86:9d:1c: 33:62:45:ac:6a:2a:98:f3:09:dc:90:f3:42:0a:17: 84:28:d2:9a:1e:7c:89:dc:65:f4:96:e3:2e:37:41: aa:9a:da:72:db:56:cd:b3:0a:c9:8b:a5:3d:6e:eb: 20:6e:ef:97:33:7a:15:0b:f3:cf:45:9f:c5:a2:ca: 4e:9a:93:d1:6e:e4:ac:a4:61:0f:3c:83:34:ba:71: ef:f0:fd:8f:75:19:de:c0:54:90:65:cd:c9:f0:3d: 5d:8a:f4:e1:09:f8:bb:1f:0b:5c:95:1d:11:af:fd: d6:14:8f:38:9a:f1:20:9a:32:94:c6:f7:20:91:42: de:13:a7:97:09:b1:ba:3f:ea:18:c3:f0:d0:d2:4d: 5d:bb:19:7f:94:d8:e0:48:22:86:11:b4:ea:a9:e7: d6:59:d3:88:f8:63:85:59:c8:a2:39:af:0f:de:2f: 9e:c7:7a:7a:3b:3f:55:83:05:fe:db:da:90:cd:d4: 9f:56:e9:06:4f:4a:5b:c9:db:61:98:a3:a8:f8:e3: 8f:ba:e2:1b:b1:74:f3:28:d1:be:eb:42:86:34:13: e5:5b:a5:39:4c:16:58:8d:be:8c:7e:17:53:45:4b: aa:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:63:2C:74:B7:7E:55:2C:C3:23:ED:73:88:5C:02:7A:9D:6B:DE:B5 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:df:d5:c0:25:de:e8:eb:ea:8f:a3:62:74:59:60:58:d4:75: 71:71:d2:67:ca:29:10:9c:76:83:23:12:ba:96:de:42:66:a4: db:05:dd:e1:7e:ea:5a:2f:04:74:fe:17:31:ea:35:de:92:ed: ba:af:e2:a3:6f:08:d5:a1:3a:97:8d:28:60:be:06:17:10:ea: 7b:b9:53:5e:5f:95:23:d0:e9:76:38:49:86:5e:22:cf:3e:bd: 10:46:84:6b:83:57:ae:00:d5:e0:5c:ff:2b:7b:72:67:58:e4: b8:4a:a7:e0:d2:a0:31:dd:70:f6:e5:7d:55:62:f7:76:c8:92: 72:a3:30:4d:33:86:dc:98:8d:7d:51:05:1c:bc:58:96:f3:9c: b0:92:77:4f:7f:47:98:68:24:44:42:55:53:1a:37:77:3c:14: 20:20:82:35:a9:0a:28:1d:3f:5c:12:43:3e:b7:65:43:6d:0d: a9:ae:2a:bf:8a:19:73:55:01:29:ba:59:2d:84:ba:a0:41:ac: a5:f1:a0:d5:5d:0d:af:a0:92:00:3e:14:6a:75:57:fb:ce:27: 61:17:ab:7a:fa:83:b8:e4:6b:6c:47:d4:d5:eb:5a:01:54:5a: 6c:5f:18:81:6d:d8:da:5f:6f:7e:31:54:2e:a8:69:d1:f6:30: 3a:d9:67:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjYwNTIwMTg0MDE0WhcNMjYwNTI3MTg0MDE0WjAYMRYwFAYD VQQDEw02YTBlMDAwZS1mMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cqHRhCMsrkzytQTu7pAdsB+HbYDxQ9LKZKGnRwzYkWsaiqY8wnckPNCCheE KNKaHnyJ3GX0luMuN0Gqmtpy21bNswrJi6U9busgbu+XM3oVC/PPRZ/FospOmpPR buSspGEPPIM0unHv8P2PdRnewFSQZc3J8D1divThCfi7HwtclR0Rr/3WFI84mvEg mjKUxvcgkULeE6eXCbG6P+oYw/DQ0k1duxl/lNjgSCKGEbTqqefWWdOI+GOFWcii Oa8P3i+ex3p6Oz9VgwX+29qQzdSfVukGT0pbydthmKOo+OOPuuIbsXTzKNG+60KG NBPlW6U5TBZYjb6MfhdTRUuqVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO5jLHS3 flUswyPtc4hcAnqda961MB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALt/VwCXe6Ovqj6NidFlgWNR1cXHSZ8opEJx2gyMSupbeQmak2wXd4X7qWi8E dP4XMeo13pLtuq/io28I1aE6l40oYL4GFxDqe7lTXl+VI9DpdjhJhl4izz69EEaE a4NXrgDV4Fz/K3tyZ1jkuEqn4NKgMd1w9uV9VWL3dsiScqMwTTOG3JiNfVEFHLxY lvOcsJJ3T39HmGgkREJVUxo3dzwUICCCNakKKB0/XBJDPrdlQ20Nqa4qv4oZc1UB KbpZLYS6oEGspfGg1V0Nr6CSAD4UanVX+84nYRerevqDuORrbEfU1etaAVRabF8Y gW3Y2l9vfjFULqhp0fYwOtlnVQ== -----END CERTIFICATE-----Generated at Thu May 21 09:39:08 2026 by rpki-client