$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: 5oBLLS0u2wbfCA6WKxxXoeruXBeDilsdPrzBC6ssCTM= Subject key identifier: 3D:64:7A:17:1A:27:45:83:2C:31:6D:97:D3:05:96:98:D9:48:AC:F9 Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 0287 Signing time: Wed 13 May 2026 02:00:48 +0000 Manifest this update: Wed 13 May 2026 02:00:47 +0000 Manifest next update: Wed 20 May 2026 02:00:47 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: IkAo+Vlz+7+Nc2/KgLJJJ0mYM8aw2c+/dhnLGHsssEA=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: ZBpZFHSjfj1bISXLZ4G9TvJh+gywnnw40Zr1cDFnGAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: May 13 02:00:47 2026 GMT Not After : May 20 02:00:47 2026 GMT Subject: CN=6a03db50-56c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ab:8f:cb:b3:58:05:7d:82:bd:18:76:6f:ef: 09:78:8b:e6:b3:0e:d7:5a:15:2e:fc:b1:eb:a1:1c: 0f:0e:22:6d:06:c6:87:95:17:58:82:08:e9:9b:00: 24:e0:67:96:cc:a0:cf:52:df:1f:a7:c8:33:03:b4: 27:28:fc:8c:ab:7c:df:71:e8:6c:26:48:9a:22:e8: 61:af:e6:ac:7c:36:25:c4:0d:e5:b3:83:0d:1a:18: f7:b0:2c:10:3a:e6:d1:cd:73:c7:ac:c9:fb:8c:b2: 28:93:bc:09:de:fe:c3:9b:c0:e6:58:c4:14:ff:7f: f1:02:b3:17:39:76:a5:1e:a9:ab:8f:01:b3:8f:13: 8c:4e:26:6b:a6:3c:b9:25:28:88:ee:4a:c6:04:d2: c5:3a:a7:42:f5:b3:02:f6:ea:ca:27:8a:1c:1f:86: 7e:d0:13:be:76:44:02:20:60:1b:d9:a4:b2:74:5a: 89:55:f3:7f:52:d0:93:b3:6c:f9:af:8e:4c:c6:be: 96:9b:43:3b:38:14:5c:6e:1a:e9:d4:2f:4c:cf:a8: 5c:85:2c:58:e6:c6:40:2c:45:8c:8f:8a:6f:60:68: e9:71:80:1e:d9:db:ec:d1:ad:90:69:ec:29:e3:3a: f5:30:89:a7:7b:96:32:3b:00:51:28:cc:0e:35:7d: f1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:64:7A:17:1A:27:45:83:2C:31:6D:97:D3:05:96:98:D9:48:AC:F9 X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:53:5e:a4:c1:0d:84:19:f4:95:bb:0c:39:21:41:05:25:89: 89:5d:04:e5:49:7b:e1:b5:75:bf:82:10:80:b4:df:9a:56:f5: 44:e8:76:21:91:7d:18:e6:a4:56:e1:fe:69:cc:3b:4f:cb:44: 74:14:99:cd:6d:cd:8b:85:3a:0c:c9:24:c3:53:93:20:c0:b5: 9b:02:07:37:c5:ec:57:f1:54:5c:fe:1e:14:0c:7a:80:79:66: 9d:af:06:5d:ba:52:78:a8:c0:9d:12:86:3f:ac:c3:3c:2a:6e: 82:11:02:c4:05:26:d0:9b:11:fb:89:03:21:44:55:84:09:69: 14:1a:31:64:b3:50:f1:66:39:6c:6d:cf:cb:d9:70:83:c2:2f: 1a:22:9d:a8:df:97:c1:f7:e8:52:06:47:65:23:af:af:20:d8: d8:81:c9:10:f2:a4:bc:6c:b2:d3:36:c4:4b:8b:d1:36:02:91: cd:e1:8b:aa:e6:d1:0a:40:e2:6b:ca:91:f1:28:77:7b:58:de: b2:29:f5:30:20:59:9a:4b:e7:4a:c7:2c:af:b2:4d:2b:b4:e0: 6b:11:f6:9d:91:3a:a7:74:1c:16:88:45:ae:d9:65:ae:52:a4: 85:10:62:4d:eb:43:18:df:9a:b9:f5:5a:0d:39:48:23:c6:4c: a7:2b:23:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjYwNTEzMDIwMDQ3WhcNMjYwNTIwMDIwMDQ3WjAYMRYwFAYD VQQDEw02YTAzZGI1MC01NmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76uPy7NYBX2CvRh2b+8JeIvmsw7XWhUu/LHroRwPDiJtBsaHlRdYggjpmwAk 4GeWzKDPUt8fp8gzA7QnKPyMq3zfcehsJkiaIuhhr+asfDYlxA3ls4MNGhj3sCwQ OubRzXPHrMn7jLIok7wJ3v7Dm8DmWMQU/3/xArMXOXalHqmrjwGzjxOMTiZrpjy5 JSiI7krGBNLFOqdC9bMC9urKJ4ocH4Z+0BO+dkQCIGAb2aSydFqJVfN/UtCTs2z5 r45Mxr6Wm0M7OBRcbhrp1C9Mz6hchSxY5sZALEWMj4pvYGjpcYAe2dvs0a2Qaewp 4zr1MImne5YyOwBRKMwONX3xCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD1kehca J0WDLDFtl9MFlpjZSKz5MB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApVNepMENhBn0lbsMOSFBBSWJiV0E5Ul74bV1v4IQgLTfmlb1ROh2IZF9GOak VuH+acw7T8tEdBSZzW3Ni4U6DMkkw1OTIMC1mwIHN8XsV/FUXP4eFAx6gHlmna8G XbpSeKjAnRKGP6zDPCpughECxAUm0JsR+4kDIURVhAlpFBoxZLNQ8WY5bG3Py9lw g8IvGiKdqN+XwffoUgZHZSOvryDY2IHJEPKkvGyy0zbES4vRNgKRzeGLqubRCkDi a8qR8Sh3e1jesin1MCBZmkvnSscsr7JNK7TgaxH2nZE6p3QcFohFrtllrlKkhRBi TetDGN+aufVaDTlII8ZMpysj6Q== -----END CERTIFICATE-----Generated at Wed May 13 10:37:52 2026 by rpki-client