$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: NCpErtEXx82M7H/AOnmBo6DSggqHqVzDW0xnVRryk0Y= Subject key identifier: 4C:6D:46:9E:99:9B:E4:DE:75:25:A7:3F:DE:92:F6:2D:D8:03:5D:08 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 0232 Signing time: Mon 11 May 2026 00:23:06 +0000 Manifest this update: Mon 11 May 2026 00:23:05 +0000 Manifest next update: Mon 18 May 2026 00:23:05 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: Urw05/A96D7o52fgsNKu8Z+WM3ZHbSBg5VUfpD1Hg20=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: uapvI86Owy0hCkd8jvGFvt3U25CohwTWpZlwRgJoJH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 00:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: May 11 00:23:05 2026 GMT Not After : May 18 00:23:05 2026 GMT Subject: CN=6a01216a-612f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:31:95:10:b1:9e:97:79:aa:2d:8a:0f:00: d0:48:a7:5c:fb:b6:1c:66:25:fa:0a:29:e6:7a:ff: c7:12:04:b8:a9:cd:bf:3f:6d:1d:e4:2e:ab:83:d6: 33:8f:4e:15:a9:07:5b:0f:a4:c4:4a:e7:66:94:ba: ca:ea:c8:01:84:9d:3f:da:3a:65:8d:b1:42:fb:f8: 95:68:65:58:7a:58:8f:3c:68:2d:91:2a:19:b7:66: 52:12:0b:c0:9e:17:b1:ee:5b:f8:c6:20:5f:fd:3d: 1a:04:c4:49:bb:07:4a:42:d0:44:49:0d:79:d8:85: 1b:5f:de:76:5c:cf:dc:27:41:b0:fc:ea:26:43:66: e0:0d:74:7c:01:f6:0e:35:00:52:40:62:3e:24:4c: 8b:5c:bb:af:56:7c:69:b4:dd:05:2b:8d:f8:3a:73: b2:a7:41:dd:2c:b9:10:7a:99:64:71:9e:fa:7c:22: e7:3a:69:68:76:ee:aa:5e:3b:00:c6:d7:91:06:6b: 3a:12:4a:c1:de:b9:23:03:b2:0d:58:e5:c4:ba:4b: 00:a9:49:0d:71:10:a3:68:66:43:69:fd:c6:60:85: 5b:30:d8:3c:af:5b:d4:ee:b2:df:e1:3f:13:4f:a5: ac:5b:0f:d4:35:5a:60:85:75:a3:37:a3:bc:83:de: d2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6D:46:9E:99:9B:E4:DE:75:25:A7:3F:DE:92:F6:2D:D8:03:5D:08 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:15:a7:94:7c:16:7a:fd:fa:cf:86:8a:38:73:98:49:21:04: c0:53:b9:72:f7:89:91:0c:14:47:48:6c:e3:f4:df:4e:36:87: 2f:3c:00:f7:6a:18:b0:1e:31:ec:9b:1d:f3:54:f7:6e:d4:bf: 48:8a:e0:86:2c:ba:ea:59:db:df:4e:38:11:cb:20:bd:47:96: 20:c2:d5:d6:2f:61:cf:a1:c2:f3:ae:9f:85:78:e4:b2:33:e9: 4e:17:03:c4:c0:8f:1d:84:d8:e9:34:96:23:1b:d2:8d:98:78: 06:ef:d1:58:b5:2c:3a:0f:b1:68:84:2a:57:a6:c9:91:61:dd: e6:a5:d2:bb:c3:69:c7:9e:b4:c1:64:bf:fe:22:0a:e1:5e:0d: 57:ea:88:94:b2:1a:4a:28:9a:11:f6:f2:14:2d:0b:aa:ad:e0: fd:ad:c8:8c:29:51:7c:9d:b4:4e:11:47:62:d8:a5:1d:d5:ef: 80:26:91:11:a6:1b:b5:ef:31:e2:9c:5c:7c:9b:7e:1a:ec:8d: 71:96:b0:08:7d:c4:45:61:fb:db:2c:28:50:9c:e4:a9:36:8f: 07:27:b7:8f:f5:57:e0:54:a6:db:0a:0f:9e:c4:da:d2:68:a7: 62:74:72:11:41:62:3e:a3:31:07:0c:cb:01:d8:7a:45:ff:1a: 98:30:02:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwNTExMDAyMzA1WhcNMjYwNTE4MDAyMzA1WjAYMRYwFAYD VQQDEw02YTAxMjE2YS02MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvygxlRCxnpd5qi2KDwDQSKdc+7YcZiX6Cinmev/HEgS4qc2/P20d5C6rg9Yz j04VqQdbD6TESudmlLrK6sgBhJ0/2jpljbFC+/iVaGVYeliPPGgtkSoZt2ZSEgvA nhex7lv4xiBf/T0aBMRJuwdKQtBESQ152IUbX952XM/cJ0Gw/OomQ2bgDXR8AfYO NQBSQGI+JEyLXLuvVnxptN0FK434OnOyp0HdLLkQeplkcZ76fCLnOmlodu6qXjsA xteRBms6EkrB3rkjA7INWOXEuksAqUkNcRCjaGZDaf3GYIVbMNg8r1vU7rLf4T8T T6WsWw/UNVpghXWjN6O8g97S/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFExtRp6Z m+TedSWnP96S9i3YA10IMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACxWnlHwWev36z4aKOHOYSSEEwFO5cveJkQwUR0hs4/TfTjaHLzwA92oYsB4x 7Jsd81T3btS/SIrghiy66lnb3044EcsgvUeWIMLV1i9hz6HC866fhXjksjPpThcD xMCPHYTY6TSWIxvSjZh4Bu/RWLUsOg+xaIQqV6bJkWHd5qXSu8Npx560wWS//iIK 4V4NV+qIlLIaSiiaEfbyFC0Lqq3g/a3IjClRfJ20ThFHYtilHdXvgCaREaYbte8x 4pxcfJt+GuyNcZawCH3ERWH72ywoUJzkqTaPBye3j/VX4FSm2woPnsTa0minYnRy EUFiPqMxBwzLAdh6Rf8amDACZw== -----END CERTIFICATE-----Generated at Wed May 13 03:06:46 2026 by rpki-client