$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft File: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft (raw, json) Hash identifier: ugLIFuH/dM4SPW7d0cmYKLnYoIlOxznjp8aL+N+2sRs= Subject key identifier: 5F:DD:36:8C:9E:94:29:4D:D0:72:F0:65:9A:5A:C8:84:75:39:2B:9C Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 Certificate issuer: /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Certificate serial: 086A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft Manifest number: 0851 Signing time: Wed 20 May 2026 20:55:34 +0000 Manifest this update: Wed 20 May 2026 20:55:34 +0000 Manifest next update: Wed 27 May 2026 20:55:34 +0000 Files and hashes: 1: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl (hash: MeKWOlJSFunH+CEc9uvZMQYq1cDn13DXzeboKVKfINk=) 2: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (hash: 1jBi7AFnVCtlT74K0SmC0UKxzEEwhVrbK9WIUjseLKs=) 3: B811CFA2BF7811EE80314533C4F9AE02.roa (hash: uB1ptL86TUYIpYIuNSpFFg8ZR5mh0LibkD3yr4cunXE=) 4: CD284E600CEE11EB88376B5BC4F9AE02.roa (hash: WVnMtC67sqQYeTgYbTZ4xUIDg4NnFA5/AGE6r2DSlK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EE77, serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Validity Not Before: May 20 20:55:34 2026 GMT Not After : May 27 20:55:34 2026 GMT Subject: CN=6a0e1fc6-c030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e3:2c:ab:a4:12:f5:6c:7b:c4:4a:81:d1:b6: b8:29:24:83:83:8b:bf:f0:c2:ec:8c:b1:dc:4e:cd: 6c:61:b5:78:de:9c:2c:dc:8d:36:7f:8c:72:5b:74: be:ca:a6:e1:4d:10:bf:e1:f2:ae:03:26:0f:07:1f: 6b:f6:11:5a:de:fb:80:c1:32:c2:0a:5d:38:c4:c2: 63:3d:c3:62:ad:ad:c4:39:c3:36:a5:3c:ef:49:d0: 0f:fb:29:84:6f:6e:71:7f:3b:06:58:06:0a:28:34: 8c:3a:d2:5f:11:9e:fc:65:1e:dc:68:87:b2:18:55: 87:f9:89:49:83:e8:80:9f:77:e9:ff:98:4e:0a:40: cb:cf:61:15:96:7e:45:1d:82:bb:5d:53:19:9a:9a: b9:17:33:59:14:2e:60:37:df:97:8b:0e:dd:2d:28: c1:ba:73:34:ef:2e:69:e9:24:82:15:64:eb:0b:08: 25:90:c2:b0:7c:9f:49:9b:04:71:60:13:7a:7d:3d: ca:9f:45:51:eb:d4:8f:a4:3e:42:96:1f:88:5f:40: bc:9d:24:da:52:99:a1:dd:d1:6c:95:7f:d0:67:60: 7b:75:74:88:1d:d8:fe:36:80:4c:87:d2:80:14:31: 3f:22:80:bf:43:b2:ec:1e:54:29:47:a2:25:45:02: 03:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DD:36:8C:9E:94:29:4D:D0:72:F0:65:9A:5A:C8:84:75:39:2B:9C X509v3 Authority Key Identifier: keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:62:e5:20:c0:e3:f8:03:4a:6e:63:54:7c:f1:6f:d6:fc:2a: f2:82:60:b6:f0:16:64:6e:02:e3:50:13:ee:c9:34:c3:93:61: 07:55:1c:d9:15:5d:2a:6d:a9:a1:0a:d5:3e:9f:55:b9:cf:29: 53:11:3d:98:e2:f7:a0:3d:6b:3c:19:54:91:bc:fd:d2:c3:b4: 46:f7:e0:56:02:1c:a3:f2:63:9e:9d:86:f1:19:7a:de:78:b0: d1:65:83:5e:d4:13:1c:b9:5d:ca:08:c0:f9:99:34:d5:f5:da: 3c:41:30:43:58:cf:78:24:9a:81:3b:fe:7e:30:7b:17:2a:dc: 1c:5d:83:22:5f:e2:60:7f:2c:c5:0e:c0:b7:46:ba:0b:2a:2e: d1:d4:03:de:9e:b3:d5:4c:41:db:0b:ae:bb:54:5b:86:4d:ac: f2:ad:22:3b:2a:d0:b7:32:8e:0e:6f:f5:78:6a:66:5d:f9:95: 3f:45:79:47:9b:7a:ac:85:dd:6d:eb:94:54:35:57:84:97:3c: 0e:30:22:47:bd:d8:b3:b7:d9:1f:78:b3:9e:4c:5b:b1:bb:5d: 32:66:f3:23:e3:14:26:23:0b:4a:10:e1:27:68:80:c5:9f:5a: ec:ff:b9:38:86:e9:a6:ca:af:50:d2:64:c0:c2:2d:a3:3d:ac: 54:47:e1:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVFNzcxMTAvBgNVBAUTKEI3ODFBMkU3RDkxRURDQThCMDMwREUzRUE4OUZBNEZB RjE3OTFGMjEwHhcNMjYwNTIwMjA1NTM0WhcNMjYwNTI3MjA1NTM0WjAYMRYwFAYD VQQDEw02YTBlMWZjNi1jMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOMsq6QS9Wx7xEqB0ba4KSSDg4u/8MLsjLHcTs1sYbV43pws3I02f4xyW3S+ yqbhTRC/4fKuAyYPBx9r9hFa3vuAwTLCCl04xMJjPcNira3EOcM2pTzvSdAP+ymE b25xfzsGWAYKKDSMOtJfEZ78ZR7caIeyGFWH+YlJg+iAn3fp/5hOCkDLz2EVln5F HYK7XVMZmpq5FzNZFC5gN9+Xiw7dLSjBunM07y5p6SSCFWTrCwglkMKwfJ9JmwRx YBN6fT3Kn0VR69SPpD5Clh+IX0C8nSTaUpmh3dFslX/QZ2B7dXSIHdj+NoBMh9KA FDE/IoC/Q7LsHlQpR6IlRQIDYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF/dNoye lClN0HLwZZpayIR1OSucMB8GA1UdIwQYMBaAFLeBoufZHtyosDDePqifpPrxeR8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUU3Ny9EOUJFMDdCQTBD RUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNLaXdNTjQtcUotay12RjVI eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q0R2k1OWtlM0tpd01ONC1xSi1rLXZGNUh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUU3Ny9EOUJFMDdCQTBDRUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNL aXdNTjQtcUotay12RjVIeUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApGLlIMDj+ANKbmNUfPFv1vwq8oJgtvAWZG4C41AT7sk0w5NhB1Uc2RVdKm2p oQrVPp9Vuc8pUxE9mOL3oD1rPBlUkbz90sO0RvfgVgIco/Jjnp2G8Rl63niw0WWD XtQTHLldygjA+Zk01fXaPEEwQ1jPeCSagTv+fjB7FyrcHF2DIl/iYH8sxQ7At0a6 Cyou0dQD3p6z1UxB2wuuu1Rbhk2s8q0iOyrQtzKODm/1eGpmXfmVP0V5R5t6rIXd beuUVDVXhJc8DjAiR73Ys7fZH3iznkxbsbtdMmbzI+MUJiMLShDhJ2iAxZ9a7P+5 OIbppsqvUNJkwMItoz2sVEfheA== -----END CERTIFICATE-----Generated at Thu May 21 10:17:55 2026 by rpki-client