$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: cQ9iaHeMBddzAJpzKpn8P8b6PCKMUqgbSLJjPmqsKQo= Subject key identifier: F9:82:62:73:EF:85:95:2B:C4:6C:2A:1A:D3:22:4A:FB:92:A2:73:FA Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 13C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 13B4 Signing time: Wed 20 May 2026 16:57:54 +0000 Manifest this update: Wed 20 May 2026 16:57:53 +0000 Manifest next update: Wed 27 May 2026 16:57:53 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: d9DrWfdWvFkMoI20ire6Zae/019it+SIDNmVNQ4SWU4=) 2: F5B633B2283411F1B1D7DF7FCA833773.roa (hash: phJRFQUQr06dG7WdiHLLqzvwwFNfxlyvNnaDszHIaEE=) 3: AE7603724F8711F1ACC1478F91833773.roa (hash: m3sG9C0voTAzwCTrnGEExTYMamH/vClHoEE2jHx5FJc=) 4: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: jPVq1FqdO/7Sa1Zo63l4DDlY46514aXTAgnERyot6WE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5065 (0x13c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: May 20 16:57:53 2026 GMT Not After : May 27 16:57:53 2026 GMT Subject: CN=6a0de811-c592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f6:7c:fa:67:2e:a5:3f:f5:ae:e4:2e:2a:8a: fe:01:08:10:c5:db:f7:a2:b8:d7:fe:fe:0f:92:70: 06:0e:b4:72:c4:e2:64:e4:e9:08:6f:ed:5d:95:df: bd:4c:c5:07:32:d7:ee:97:b2:49:59:dc:c5:64:32: 57:aa:e4:45:fa:cb:1b:7a:ed:97:5b:21:32:b9:54: 3d:a4:bd:e7:1c:2b:cc:aa:51:64:29:0c:87:2a:fb: 83:4d:bb:ee:ee:7b:ae:66:c5:2b:50:6d:89:42:8f: c3:c6:be:0f:b0:91:89:19:13:ac:c5:1d:52:39:41: 2f:4f:fb:ec:49:c4:cd:e8:aa:d5:cc:cc:9e:c9:8c: a2:5f:03:86:71:64:1c:00:45:97:10:8a:b9:ee:9d: 66:bb:39:c5:64:df:0c:0b:43:f8:d6:f0:59:ff:cb: 27:e1:1a:06:91:b0:5c:87:1a:81:e5:1d:ea:4d:bf: f3:ee:d9:ef:1b:15:ce:78:aa:ad:90:9e:7f:54:12: 20:28:0d:a2:9f:85:1c:62:a9:3c:74:d4:fd:9a:25: 23:cd:0d:dc:54:32:ba:f8:3e:d4:e3:53:0d:c5:05: 42:fc:65:7a:0c:7f:6d:e2:51:a8:d3:98:f4:d9:14: e3:94:27:9d:5a:d2:d3:cd:6e:17:f3:11:e5:80:c3: 2d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:82:62:73:EF:85:95:2B:C4:6C:2A:1A:D3:22:4A:FB:92:A2:73:FA X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:4a:cf:6d:3a:a2:33:35:a5:4d:da:ef:e5:c8:7d:e7:05:8f: 94:e2:d1:d8:4d:56:f9:85:34:ab:7f:c1:c6:49:9a:3c:97:b5: 26:01:db:2f:ca:b7:a3:af:8c:2e:b3:c5:6a:91:71:d7:90:09: 90:5b:fa:7a:b8:a0:47:5e:9f:99:dc:c7:39:81:41:9b:bb:25: fd:c5:21:b7:1c:38:e5:7c:64:f3:d8:ff:9a:c5:e4:9e:03:95: 3a:26:94:ab:32:e3:a6:2c:e7:86:54:7e:67:88:ab:22:08:c9: 8e:98:b8:a4:9e:01:07:41:12:4b:0d:d0:e7:38:77:20:b8:f4: e9:6c:9b:22:d5:24:34:42:d1:2f:4d:c8:fa:40:8f:76:bb:64: c7:2d:e0:66:eb:21:1e:19:05:32:eb:37:51:c0:14:d4:37:6b: e7:37:54:50:b4:4b:9c:8c:73:f2:bc:fb:da:da:f0:5c:33:2a: d9:b4:91:4c:5a:e9:7e:d9:0b:96:dc:a0:83:59:c7:04:6a:f3: 4b:68:0c:45:0e:8d:fb:fd:a8:de:a4:d9:e7:62:83:59:c5:a2: f6:38:a0:eb:8f:e5:c6:16:37:71:c9:f2:0f:9b:3c:ec:49:35: 80:0a:8a:b1:65:55:23:1f:99:53:4c:a5:d8:d3:07:bd:33:3f: e0:ce:a4:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjYwNTIwMTY1NzUzWhcNMjYwNTI3MTY1NzUzWjAYMRYwFAYD VQQDEw02YTBkZTgxMS1jNTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPZ8+mcupT/1ruQuKor+AQgQxdv3orjX/v4PknAGDrRyxOJk5OkIb+1dld+9 TMUHMtful7JJWdzFZDJXquRF+ssbeu2XWyEyuVQ9pL3nHCvMqlFkKQyHKvuDTbvu 7nuuZsUrUG2JQo/Dxr4PsJGJGROsxR1SOUEvT/vsScTN6KrVzMyeyYyiXwOGcWQc AEWXEIq57p1muznFZN8MC0P41vBZ/8sn4RoGkbBchxqB5R3qTb/z7tnvGxXOeKqt kJ5/VBIgKA2in4UcYqk8dNT9miUjzQ3cVDK6+D7U41MNxQVC/GV6DH9t4lGo05j0 2RTjlCedWtLTzW4X8xHlgMMtawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPmCYnPv hZUrxGwqGtMiSvuSonP6MB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGkrPbTqiMzWlTdrv5ch95wWPlOLR2E1W+YU0q3/BxkmaPJe1JgHbL8q3o6+M LrPFapFx15AJkFv6erigR16fmdzHOYFBm7sl/cUhtxw45Xxk89j/msXkngOVOiaU qzLjpiznhlR+Z4irIgjJjpi4pJ4BB0ESSw3Q5zh3ILj06WybItUkNELRL03I+kCP drtkxy3gZushHhkFMus3UcAU1Ddr5zdUULRLnIxz8rz72trwXDMq2bSRTFrpftkL ltygg1nHBGrzS2gMRQ6N+/2o3qTZ52KDWcWi9jig64/lxhY3ccnyD5s87Ek1gAqK sWVVIx+ZU0yl2NMHvTM/4M6kbg== -----END CERTIFICATE-----Generated at Thu May 21 10:17:56 2026 by rpki-client