$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: 3pEfDn3fYzsWRQrh3xMJR93K9oLM02z7Tag1AJLSpYg= Subject key identifier: 49:D7:49:20:85:01:73:B1:B2:FD:F5:BE:F9:C0:6E:E0:F4:2D:9B:DF Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 1189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 1168 Signing time: Wed 20 May 2026 17:13:12 +0000 Manifest this update: Wed 20 May 2026 17:13:11 +0000 Manifest next update: Wed 27 May 2026 17:13:11 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: Y5317RXeFqUdbHKhianDb9bFFAv6SNJuvYoYGkpjT8A=) 2: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: FMzrYGVGOtWt5cmIpjK8kf84YehxjN48qZYSg0E+H9o=) 3: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: W4h7IWYUmM/hyejWwAL7UxMd6DDsYA0doq+8X7am/ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: May 20 17:13:11 2026 GMT Not After : May 27 17:13:11 2026 GMT Subject: CN=6a0deba7-90b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:48:0b:ae:3f:1c:64:77:35:51:10:54:78:ee: 72:37:a3:e5:57:98:cb:3c:b3:bb:6c:36:23:b8:8a: 61:6a:06:4e:40:dd:f7:4f:06:60:f1:f8:36:fc:82: 41:1e:0a:f2:a0:6d:e8:85:3e:26:81:2e:e2:fe:b0: e8:e9:3e:3b:4b:cc:50:a2:2a:a2:3d:48:d0:a9:e8: f8:77:cf:06:88:81:71:79:a9:a9:c6:59:b8:1e:aa: 51:07:c4:29:e2:e8:ed:f4:4c:5a:52:1f:42:fe:24: f2:c3:d7:66:21:b8:3b:02:48:3f:ea:e1:2e:d5:3c: d1:09:64:8b:3e:29:a5:46:0b:7e:c9:a3:2b:c2:0f: 21:dd:19:e0:ff:8a:e5:f2:68:6e:d4:e8:a7:f7:15: 1d:a4:52:57:19:9b:b5:e9:85:92:31:c5:43:79:d5: 69:89:99:a4:20:08:09:be:b2:fc:82:c1:d0:8d:6d: 51:9b:03:bd:f8:65:02:42:b9:f1:36:1a:49:4d:99: f6:78:88:fb:f1:b1:20:7a:f8:44:8a:18:4f:88:ba: 4b:41:fd:5d:03:f5:0c:d1:6c:1b:e2:01:fd:36:7c: 36:fb:33:e3:45:79:e6:34:34:19:67:f8:10:73:c0: e4:90:e2:9d:10:94:e9:99:3a:a7:f3:8c:16:11:08: dc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D7:49:20:85:01:73:B1:B2:FD:F5:BE:F9:C0:6E:E0:F4:2D:9B:DF X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:d7:e6:5a:35:38:89:e9:0d:9d:88:a9:75:b9:b0:29:3e:91: 12:44:30:02:e6:2c:cd:03:c5:0e:5c:03:da:77:c2:5d:5a:71: 9b:4e:c8:e6:1b:91:42:c8:8b:0b:66:28:2b:6c:e1:18:82:6b: 60:9e:08:63:b4:af:30:24:0b:ce:24:25:92:4c:bd:d6:54:f2: 70:00:6d:cd:dc:0b:2a:73:22:b9:bc:37:4b:29:31:c9:d9:9f: 7e:20:41:c5:bc:eb:f6:64:74:91:c9:44:21:53:15:5f:51:e0: 84:4c:8a:53:af:3f:cc:8e:54:d2:0f:37:f7:ed:26:e5:15:60: 2e:ea:49:c6:d6:27:68:2c:6e:4c:c9:d8:3f:6b:71:b7:d1:7e: 80:28:e0:cb:59:d3:2d:f5:49:ad:c6:e0:5e:81:1b:a9:2c:6f: 63:71:69:4f:df:5f:f3:9c:f8:83:79:72:91:6a:7e:a1:53:8a: 54:fc:34:4b:2f:23:07:7e:f1:05:f6:db:4f:16:45:3a:3c:cc: d4:0d:0a:b8:89:dc:1d:e7:81:7e:d2:d1:45:19:cd:5b:ca:99: 90:13:e6:cf:21:24:62:c2:5b:43:01:04:71:56:3f:30:b9:94: 75:62:26:6b:9f:23:28:7a:12:8c:7f:78:6c:56:72:43:9a:54: c0:de:b5:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjYwNTIwMTcxMzExWhcNMjYwNTI3MTcxMzExWjAYMRYwFAYD VQQDEw02YTBkZWJhNy05MGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUgLrj8cZHc1URBUeO5yN6PlV5jLPLO7bDYjuIphagZOQN33TwZg8fg2/IJB HgryoG3ohT4mgS7i/rDo6T47S8xQoiqiPUjQqej4d88GiIFxeampxlm4HqpRB8Qp 4ujt9ExaUh9C/iTyw9dmIbg7Akg/6uEu1TzRCWSLPimlRgt+yaMrwg8h3Rng/4rl 8mhu1Oin9xUdpFJXGZu16YWSMcVDedVpiZmkIAgJvrL8gsHQjW1RmwO9+GUCQrnx NhpJTZn2eIj78bEgevhEihhPiLpLQf1dA/UM0Wwb4gH9Nnw2+zPjRXnmNDQZZ/gQ c8DkkOKdEJTpmTqn84wWEQjcXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEnXSSCF AXOxsv31vvnAbuD0LZvfMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApNfmWjU4iekNnYipdbmwKT6REkQwAuYszQPFDlwD2nfCXVpxm07I5huRQsiL C2YoK2zhGIJrYJ4IY7SvMCQLziQlkky91lTycABtzdwLKnMiubw3SykxydmffiBB xbzr9mR0kclEIVMVX1HghEyKU68/zI5U0g839+0m5RVgLupJxtYnaCxuTMnYP2tx t9F+gCjgy1nTLfVJrcbgXoEbqSxvY3FpT99f85z4g3lykWp+oVOKVPw0Sy8jB37x BfbbTxZFOjzM1A0KuIncHeeBftLRRRnNW8qZkBPmzyEkYsJbQwEEcVY/MLmUdWIm a58jKHoSjH94bFZyQ5pUwN610g== -----END CERTIFICATE-----Generated at Thu May 21 13:24:33 2026 by rpki-client