$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: HiCFhNN3RfM2ezrXaJFfcweYhwjG+LRimoWsw9+ICkc= Subject key identifier: ED:47:22:B7:59:F9:3F:1B:34:67:C7:4F:D0:04:B5:52:59:D1:E4:DD Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0AEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0ADE Signing time: Tue 12 May 2026 20:23:58 +0000 Manifest this update: Tue 12 May 2026 20:23:58 +0000 Manifest next update: Tue 19 May 2026 20:23:58 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: JJqE/jTFYul2DMqZGWERhFRpufMEhAqvKFvlx8QJfbo=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: wf2N7y2gm+HMhGLmDepSkmqtdRiwq+CjqsQ72qN8FGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2795 (0xaeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: May 12 20:23:58 2026 GMT Not After : May 19 20:23:58 2026 GMT Subject: CN=6a038c5e-4bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1d:18:fd:e4:8c:69:96:77:30:b0:42:6e:a8: 7a:08:c7:ef:21:c0:75:d1:d1:90:a8:cb:1b:bb:3e: 37:5b:80:b7:dd:e2:0d:3e:c2:7c:e1:65:41:20:69: 36:3f:0c:47:a6:42:18:4d:9c:74:95:04:4b:f0:c7: 50:36:31:64:71:f2:51:a5:e9:13:62:7c:22:c5:ad: 67:ed:2c:fc:35:af:ce:a6:7b:b5:d8:6e:e6:ad:ef: ca:55:1a:6f:27:61:b8:1b:fe:0f:27:e9:9a:3a:77: 1e:48:68:e4:31:2e:e7:f4:21:3b:c2:de:d3:1d:6a: a0:6c:9e:52:d1:fc:cd:d5:98:56:c3:78:88:14:27: c7:4a:8e:e5:77:64:82:e5:34:db:a6:26:59:3f:2c: 2d:d8:df:cc:ea:b8:b8:e3:fb:47:cb:03:de:99:ff: 19:22:0b:b1:fe:bc:a0:2c:dc:f8:ad:5a:2b:6c:ac: 09:42:86:b2:a2:83:2c:93:70:e3:85:a8:a1:4a:e4: aa:ad:86:07:5e:e2:66:47:7c:36:a2:71:da:46:09: f6:cf:3e:f3:f7:23:33:0d:8d:a1:e3:50:ff:46:3e: b3:5b:cb:94:e5:5b:49:5f:4f:6f:50:fa:dc:d6:17: fd:e4:9f:2e:97:4a:bd:db:e3:a9:1f:69:00:5b:a1: ef:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:47:22:B7:59:F9:3F:1B:34:67:C7:4F:D0:04:B5:52:59:D1:E4:DD X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:24:3a:68:9b:b1:f0:0b:22:3a:ac:68:0e:1f:69:b9:ec:13: a9:ac:67:b1:ae:cc:34:e4:60:80:55:13:c0:14:30:fb:4a:a1: fc:a9:3b:b0:c7:49:f9:00:5f:8f:1d:21:78:ef:7e:0b:07:0b: 8b:99:7d:95:ef:2e:2d:fe:be:fe:39:06:eb:c8:a1:52:fa:5e: fd:f0:ce:1d:6a:e6:95:87:22:08:23:7b:18:ce:15:2d:b6:3f: 3b:16:96:d8:10:db:94:25:b4:3f:ec:82:b5:f0:72:18:f2:5c: e5:66:4a:d6:d1:8d:82:ac:da:70:92:c7:a1:64:80:c3:64:c4: 66:53:3b:b2:8a:15:6d:da:eb:ae:3b:c9:69:02:be:98:72:6b: ce:7f:40:f6:ce:57:cf:78:e7:10:28:7a:19:4f:3f:78:3e:ec: 5e:4f:94:70:07:38:dd:f6:2d:e8:fd:a4:96:d5:bf:fc:19:f9: ff:98:a0:9c:17:5c:60:70:0f:a4:e4:92:29:25:a1:e2:57:8c: a9:01:65:9b:85:8c:85:a6:8a:50:b2:e2:12:79:9c:1b:e4:37: 3c:fc:26:a8:ba:80:b2:a8:da:29:2f:f6:65:0d:72:5b:ba:d9: a6:88:39:37:28:d7:f4:f7:d7:f1:d1:c4:33:40:9c:bd:f6:79: 76:ba:1b:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjYwNTEyMjAyMzU4WhcNMjYwNTE5MjAyMzU4WjAYMRYwFAYD VQQDEw02YTAzOGM1ZS00YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0B0Y/eSMaZZ3MLBCbqh6CMfvIcB10dGQqMsbuz43W4C33eINPsJ84WVBIGk2 PwxHpkIYTZx0lQRL8MdQNjFkcfJRpekTYnwixa1n7Sz8Na/Opnu12G7mre/KVRpv J2G4G/4PJ+maOnceSGjkMS7n9CE7wt7THWqgbJ5S0fzN1ZhWw3iIFCfHSo7ld2SC 5TTbpiZZPywt2N/M6ri44/tHywPemf8ZIgux/rygLNz4rVorbKwJQoayooMsk3Dj haihSuSqrYYHXuJmR3w2onHaRgn2zz7z9yMzDY2h41D/Rj6zW8uU5VtJX09vUPrc 1hf95J8ul0q92+OpH2kAW6Hv+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO1HIrdZ +T8bNGfHT9AEtVJZ0eTdMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAyQ6aJux8AsiOqxoDh9puewTqaxnsa7MNORggFUTwBQw+0qh/Kk7sMdJ+QBf jx0heO9+CwcLi5l9le8uLf6+/jkG68ihUvpe/fDOHWrmlYciCCN7GM4VLbY/OxaW 2BDblCW0P+yCtfByGPJc5WZK1tGNgqzacJLHoWSAw2TEZlM7sooVbdrrrjvJaQK+ mHJrzn9A9s5Xz3jnECh6GU8/eD7sXk+UcAc43fYt6P2kltW//Bn5/5ignBdcYHAP pOSSKSWh4leMqQFlm4WMhaaKULLiEnmcG+Q3PPwmqLqAsqjaKS/2ZQ1yW7rZpog5 NyjX9PfX8dHEM0CcvfZ5drob5g== -----END CERTIFICATE-----Generated at Wed May 13 11:44:50 2026 by rpki-client