$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: pWlLPuunWtsSwvkvykB0SpAW+2eu+DVTFF8RSJhnXgI= Subject key identifier: 45:43:11:D0:78:77:B5:FC:6A:D0:E3:C3:E7:2C:59:21:1B:E1:D8:68 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0398 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 037F Signing time: Thu 21 May 2026 00:57:08 +0000 Manifest this update: Thu 21 May 2026 00:57:07 +0000 Manifest next update: Thu 28 May 2026 00:57:07 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: ZzjyfscScgRa+hdCAyM85q4+iiApukzSnPaQO4TWP6Y=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: fkyJKn8Oh+03JayycchiXNnOyFPcVFyNkr5e5TiQlCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: May 21 00:57:07 2026 GMT Not After : May 28 00:57:07 2026 GMT Subject: CN=6a0e5864-86ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ea:66:ee:5d:42:29:2c:d2:80:51:74:cf:c3: a2:14:b3:81:97:74:5b:01:22:a5:29:2f:59:65:44: a2:7a:2b:f2:35:54:32:97:71:d6:5d:16:98:cc:51: 5f:11:ab:c3:2c:19:23:9c:7e:69:31:24:aa:aa:48: a5:ef:dd:2c:e6:1f:22:a9:25:c4:8e:29:8a:43:9b: 13:6d:a0:75:8f:cf:a1:97:c8:6a:43:7e:97:97:b4: e6:c8:34:80:92:b5:13:03:b2:4f:24:6e:ee:49:5f: 46:49:17:3b:f8:0e:75:0a:1d:85:31:71:51:2e:7f: d5:be:da:63:72:c9:e6:a2:98:00:25:b0:f0:0b:0c: 66:67:24:20:91:20:c0:05:3b:f2:77:e8:dc:8b:72: 6e:77:c4:c2:80:b4:f9:74:f7:c5:a1:22:f2:c9:47: eb:c7:4d:bb:3b:66:34:25:3e:eb:a0:31:8b:2d:39: b3:5f:6c:19:bd:9b:83:0a:c8:81:5e:40:c1:93:ee: f0:9d:19:65:22:53:e7:37:8e:09:5d:2f:3e:28:d7: b9:28:6d:d7:33:4b:80:c3:ef:94:0d:76:65:23:fd: e2:cb:f3:3b:e8:21:1b:3e:60:34:1e:74:5a:77:29: 1f:ce:9a:2e:d1:09:17:56:82:cc:8d:47:26:6d:d5: 10:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:43:11:D0:78:77:B5:FC:6A:D0:E3:C3:E7:2C:59:21:1B:E1:D8:68 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:87:ce:d2:76:2b:00:cb:23:d5:d4:71:6b:e5:17:f2:5e:e1: ef:80:14:71:08:cc:8f:4f:6e:1e:4c:44:c3:84:e5:06:6d:c6: c0:ed:f2:7d:2a:4c:5c:ed:18:5d:f7:aa:c6:23:da:e5:44:2f: b6:f4:a7:9d:4f:e6:3d:05:1d:c6:2a:0e:65:71:79:a9:07:5f: 7f:11:63:da:9f:e7:0b:98:3e:5c:e1:fd:66:95:b5:27:52:b6: 5d:85:05:3f:4c:51:bd:37:40:fa:35:d9:5c:b1:e1:05:4a:59: 8e:d8:ee:8d:02:d1:12:79:68:2a:bf:1e:5b:e9:2c:86:53:bd: 91:88:e4:7b:10:25:a9:e3:26:a8:81:d4:a7:2c:36:a0:19:47: 1f:60:2d:3d:9d:a2:5e:34:4d:35:50:6b:10:c9:08:1f:36:25: 31:63:3b:43:f2:66:98:d6:8d:95:07:09:7b:ef:2c:39:a0:cf: 86:d4:2e:6f:99:68:99:ac:58:e0:1a:35:23:09:b4:ee:c4:2b: 36:93:d7:3e:ef:c0:ab:b6:12:74:80:73:d8:16:9f:e8:34:ab: e4:62:b9:dc:ce:3d:6e:42:4f:f8:e6:07:22:9d:03:41:81:9b: f6:e9:ec:d7:47:c1:20:75:8b:8a:59:71:74:c0:9e:83:3a:16: bf:bd:8d:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjYwNTIxMDA1NzA3WhcNMjYwNTI4MDA1NzA3WjAYMRYwFAYD VQQDEw02YTBlNTg2NC04NmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOpm7l1CKSzSgFF0z8OiFLOBl3RbASKlKS9ZZUSieivyNVQyl3HWXRaYzFFf EavDLBkjnH5pMSSqqkil790s5h8iqSXEjimKQ5sTbaB1j8+hl8hqQ36Xl7TmyDSA krUTA7JPJG7uSV9GSRc7+A51Ch2FMXFRLn/VvtpjcsnmopgAJbDwCwxmZyQgkSDA BTvyd+jci3Jud8TCgLT5dPfFoSLyyUfrx027O2Y0JT7roDGLLTmzX2wZvZuDCsiB XkDBk+7wnRllIlPnN44JXS8+KNe5KG3XM0uAw++UDXZlI/3iy/M76CEbPmA0HnRa dykfzpou0QkXVoLMjUcmbdUQKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEVDEdB4 d7X8atDjw+csWSEb4dhoMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwIfO0nYrAMsj1dRxa+UX8l7h74AUcQjMj09uHkxEw4TlBm3GwO3yfSpMXO0Y XfeqxiPa5UQvtvSnnU/mPQUdxioOZXF5qQdffxFj2p/nC5g+XOH9ZpW1J1K2XYUF P0xRvTdA+jXZXLHhBUpZjtjujQLREnloKr8eW+kshlO9kYjkexAlqeMmqIHUpyw2 oBlHH2AtPZ2iXjRNNVBrEMkIHzYlMWM7Q/JmmNaNlQcJe+8sOaDPhtQub5lomaxY 4Bo1Iwm07sQrNpPXPu/Aq7YSdIBz2Baf6DSr5GK53M49bkJP+OYHIp0DQYGb9uns 10fBIHWLillxdMCegzoWv72NvQ== -----END CERTIFICATE-----Generated at Thu May 21 16:27:35 2026 by rpki-client