$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: bkKiUvJEfNQcaGbb5Rtz/G3R3kKc6rUI1aFM+GK9+7E= Subject key identifier: 88:B5:81:1A:3E:FD:FF:13:EF:29:24:4F:CB:B1:B5:4A:D1:AC:32:E1 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 052D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 0522 Signing time: Tue 12 May 2026 23:40:58 +0000 Manifest this update: Tue 12 May 2026 23:40:58 +0000 Manifest next update: Tue 19 May 2026 23:40:58 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: ZBqV+7Yc+hIhrHSrqfcIdWHMDMPji54goYe7b5utNF4=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: d542I90WWDGGQbicaXbMdjG+yHM90agVdnOM5BcvIy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1325 (0x52d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: May 12 23:40:58 2026 GMT Not After : May 19 23:40:58 2026 GMT Subject: CN=6a03ba8a-3544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d6:73:0b:38:1b:0d:1a:05:6f:79:b1:25:7a: e1:39:d3:83:89:da:00:b9:69:3d:dd:47:43:50:59: ed:a3:5c:f7:e8:ce:c6:ad:41:d9:9f:c4:9c:f3:ac: 3e:ad:18:37:2b:67:01:48:19:fd:4a:51:3f:a4:81: 23:2e:2d:04:17:00:82:20:41:62:c8:2b:6c:91:9e: e4:f8:49:bb:02:92:db:70:d6:42:b3:e3:16:3f:1b: ef:0f:25:f7:b2:5c:c4:2b:5a:78:52:97:a9:46:7f: ac:24:bc:e7:ec:40:dd:1e:1d:c9:25:30:a5:4f:8d: 89:d0:69:24:e1:c9:61:9f:8a:a8:f7:b0:77:aa:e2: 88:27:3e:f2:64:92:18:2f:81:a9:c8:6e:85:6a:bb: de:6e:ad:3c:39:af:7b:7e:49:6e:e0:b5:cb:72:a6: ae:5d:86:27:9e:fc:c4:c2:af:7f:b7:a4:12:ec:cc: 4b:5c:e6:43:6c:82:b0:37:33:c2:22:7e:82:74:a2: b1:66:a6:d0:5b:fe:85:f4:d9:d9:cd:55:05:0e:c4: e2:d2:7a:f0:0c:b6:5f:53:ab:00:bb:93:64:98:aa: 8b:a2:cf:cc:c4:1b:7b:d2:9e:a1:2a:35:9a:f1:c0: 5f:78:c0:ad:e4:88:43:71:6d:50:84:e7:32:cd:1e: 6a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B5:81:1A:3E:FD:FF:13:EF:29:24:4F:CB:B1:B5:4A:D1:AC:32:E1 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:2b:b7:d7:34:45:cf:a2:3d:9f:2b:55:55:9a:86:ce:84:ac: 07:08:ee:58:da:d3:80:b8:dc:62:a7:94:db:d1:bf:b7:7a:b0: d4:bf:1d:9e:4e:b6:83:5d:43:58:09:be:3b:53:b1:6c:eb:5c: f2:f6:2f:a4:21:62:61:99:4d:4e:a4:2c:5a:8d:42:48:e2:f2: 40:a4:2e:21:91:59:60:c7:40:4f:b8:99:b7:01:9f:8d:5b:da: 74:d1:e6:a9:ca:88:d7:e9:e9:6b:37:f8:7e:a9:5b:0d:ea:35: 1a:17:aa:ee:fa:ea:8f:10:b5:88:00:d5:32:81:ba:ea:7a:48: 4d:42:e9:7f:8c:61:7f:bc:91:cc:23:47:ed:83:cf:56:02:61: b9:79:e6:03:56:f3:0e:e8:a6:59:1b:21:46:d5:88:f3:89:91: ea:b1:0e:17:50:dd:42:5e:8e:62:3e:13:d5:a1:de:30:31:b8: 76:f3:83:00:66:ec:03:33:4d:33:f2:ac:ae:2f:7f:78:47:b3: d6:8f:3e:31:a0:e2:7f:96:50:2f:8f:55:7e:8a:87:ae:3c:e9: cf:ec:c7:2c:a3:90:e8:ba:0f:b6:75:ed:96:79:9e:a9:dd:21: f7:75:f8:5f:7b:9b:ee:7f:dc:f3:fc:d5:8b:81:2a:24:c3:61: 22:c3:31:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjYwNTEyMjM0MDU4WhcNMjYwNTE5MjM0MDU4WjAYMRYwFAYD VQQDEw02YTAzYmE4YS0zNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tZzCzgbDRoFb3mxJXrhOdODidoAuWk93UdDUFnto1z36M7GrUHZn8Sc86w+ rRg3K2cBSBn9SlE/pIEjLi0EFwCCIEFiyCtskZ7k+Em7ApLbcNZCs+MWPxvvDyX3 slzEK1p4UpepRn+sJLzn7EDdHh3JJTClT42J0Gkk4clhn4qo97B3quKIJz7yZJIY L4GpyG6Farvebq08Oa97fklu4LXLcqauXYYnnvzEwq9/t6QS7MxLXOZDbIKwNzPC In6CdKKxZqbQW/6F9NnZzVUFDsTi0nrwDLZfU6sAu5NkmKqLos/MxBt70p6hKjWa 8cBfeMCt5IhDcW1QhOcyzR5qWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIi1gRo+ /f8T7ykkT8uxtUrRrDLhMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0iu31zRFz6I9nytVVZqGzoSsBwjuWNrTgLjcYqeU29G/t3qw1L8dnk62g11D WAm+O1OxbOtc8vYvpCFiYZlNTqQsWo1CSOLyQKQuIZFZYMdAT7iZtwGfjVvadNHm qcqI1+npazf4fqlbDeo1Gheq7vrqjxC1iADVMoG66npITULpf4xhf7yRzCNH7YPP VgJhuXnmA1bzDuimWRshRtWI84mR6rEOF1DdQl6OYj4T1aHeMDG4dvODAGbsAzNN M/Ksri9/eEez1o8+MaDif5ZQL49VfoqHrjzpz+zHLKOQ6LoPtnXtlnmeqd0h93X4 X3ub7n/c8/zVi4EqJMNhIsMxZQ== -----END CERTIFICATE-----Generated at Wed May 13 13:01:32 2026 by rpki-client