$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft File: cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft (raw, json) Hash identifier: m1rOD4Zr5dY1zoP9I2pEQzFhmq5FBhbuQh3q8TgItz4= Subject key identifier: A4:57:9A:7B:28:4C:31:A9:17:BC:34:16:EC:A1:E2:D4:D5:5F:6B:01 Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft Manifest number: CD Signing time: Mon 11 May 2026 06:55:07 +0000 Manifest this update: Mon 11 May 2026 06:55:06 +0000 Manifest next update: Mon 18 May 2026 06:55:06 +0000 Files and hashes: 1: cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl (hash: tQZy2RSdSlP7Fj+Zuu7oWbUczFCqlrSCLORxCNW43Ro=) 2: 42CFB44C141411F0BAD16274C4F9AE02.roa (hash: VS76jVfnUICZ9bJBzzkEK0ZrDmbbMRlLDj2ohqAMUKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: May 11 06:55:06 2026 GMT Not After : May 18 06:55:06 2026 GMT Subject: CN=6a017d4b-4080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:99:0d:2a:41:63:38:33:f8:5d:f2:c9:22:7e: 45:ae:b0:b0:44:81:3b:51:f5:f0:8f:ed:c6:23:bd: 0f:53:67:7e:fb:57:11:a8:7c:c6:c0:dc:cc:be:94: b8:1d:62:3f:4a:ee:16:dd:b7:03:5c:8f:a1:33:ad: fb:f8:91:06:b8:2b:c0:91:d9:2d:32:6f:43:a0:7b: fb:12:1d:8b:53:3c:8c:20:a7:15:89:46:97:68:d7: 2f:c3:36:26:7d:4d:f7:49:be:af:8c:48:d3:4a:c9: f2:fb:90:90:bc:1e:02:6f:24:25:cd:4b:61:fc:7b: 02:83:0f:b8:4c:34:2b:df:07:41:7b:b4:c2:87:04: ae:24:ff:58:ef:a0:05:b0:b8:e7:85:d8:3c:a0:9a: 4a:03:e6:06:17:bb:0d:9d:31:89:88:e9:51:21:d5: ee:62:d3:1d:60:03:a1:c8:6d:08:74:ff:b1:98:cf: 38:fc:12:e3:5b:26:42:7c:57:e2:33:61:52:90:41: 49:80:5f:5c:9c:20:c5:aa:42:9a:5a:eb:00:3d:83: a2:3c:8b:8e:99:13:cb:f4:af:c5:93:99:91:a2:59: 98:26:b9:f6:45:66:60:0b:75:89:11:3f:9f:a3:ec: f5:fe:39:91:bf:bd:05:43:c8:0f:94:94:fa:a6:18: e6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:57:9A:7B:28:4C:31:A9:17:BC:34:16:EC:A1:E2:D4:D5:5F:6B:01 X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d3:26:0c:52:65:88:5c:be:f4:01:48:ca:4e:76:39:64:f3: 8a:7a:e7:21:00:0e:bf:f0:4a:e6:83:5a:9c:cd:33:d2:0f:2d: af:45:56:fc:49:6d:75:7d:ea:3c:4a:7e:6c:b7:b2:20:2c:a5: 33:a2:f9:6d:f8:2a:ad:22:98:c7:ec:02:0a:ac:43:ad:b6:89: a8:b6:6f:43:bb:f1:1d:19:20:30:5e:a5:17:41:d4:f0:47:bb: 55:dc:b1:2c:7e:d8:96:48:a2:a8:30:96:01:5a:9b:fc:3a:ba: 15:bc:ad:42:f5:64:47:7e:ed:6d:1a:e5:98:84:45:00:66:58: 15:4d:37:ee:53:a0:48:81:81:ae:2f:11:a7:de:d1:d8:7e:73: 7a:ac:39:ea:81:d4:c2:82:82:9d:01:06:e2:de:49:f2:11:e5: 07:48:ea:14:40:d0:58:67:c5:42:49:ea:f6:1d:d8:3e:26:e5: f7:21:6e:c7:9d:1d:df:74:b8:b9:42:b1:c3:fe:26:98:41:02: f5:be:41:8f:35:5a:2a:0e:9b:54:cb:68:ab:fc:ee:d1:77:34: d1:7a:c0:34:49:b0:b5:e7:2b:d8:0b:d0:39:3e:32:cf:86:0e: fe:67:7b:27:a4:89:1a:b0:95:d0:62:74:ef:07:9b:87:2c:9f: f6:4b:d3:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGMjExMTAvBgNVBAUTKDcwRDI2MDFDQjBEMEZBNEY5QzVGMEUwMjg2RDhCNkFG RDkyMzVBMDYwHhcNMjYwNTExMDY1NTA2WhcNMjYwNTE4MDY1NTA2WjAYMRYwFAYD VQQDEw02YTAxN2Q0Yi00MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjJkNKkFjODP4XfLJIn5FrrCwRIE7UfXwj+3GI70PU2d++1cRqHzGwNzMvpS4 HWI/Su4W3bcDXI+hM637+JEGuCvAkdktMm9DoHv7Eh2LUzyMIKcViUaXaNcvwzYm fU33Sb6vjEjTSsny+5CQvB4CbyQlzUth/HsCgw+4TDQr3wdBe7TChwSuJP9Y76AF sLjnhdg8oJpKA+YGF7sNnTGJiOlRIdXuYtMdYAOhyG0IdP+xmM84/BLjWyZCfFfi M2FSkEFJgF9cnCDFqkKaWusAPYOiPIuOmRPL9K/Fk5mRolmYJrn2RWZgC3WJET+f o+z1/jmRv70FQ8gPlJT6phjmrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKRXmnso TDGpF7w0Fuyh4tTVX2sBMB8GA1UdIwQYMBaAFHDSYByw0PpPnF8OAobYtq/ZI1oG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEYyMS84NTE3RkIwODE0 MTMxMUYwOEYxQTFENzNDNEY5QUUwMi9jTkpnSExEUS1rLWNYdzRDaHRpMnI5a2pX Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOSmdITERRLWstY1h3NENodGkycjlraldnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEYyMS84NTE3RkIwODE0MTMxMUYwOEYxQTFENzNDNEY5QUUwMi9jTkpnSExEUS1r LWNYdzRDaHRpMnI5a2pXZ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb9MmDFJliFy+9AFIyk52OWTzinrnIQAOv/BK5oNanM0z0g8tr0VW/EltdX3q PEp+bLeyICylM6L5bfgqrSKYx+wCCqxDrbaJqLZvQ7vxHRkgMF6lF0HU8Ee7Vdyx LH7YlkiiqDCWAVqb/Dq6FbytQvVkR37tbRrlmIRFAGZYFU037lOgSIGBri8Rp97R 2H5zeqw56oHUwoKCnQEG4t5J8hHlB0jqFEDQWGfFQknq9h3YPibl9yFux50d33S4 uUKxw/4mmEEC9b5BjzVaKg6bVMtoq/zu0Xc00XrANEmwtecr2AvQOT4yz4YO/md7 J6SJGrCV0GJ07webhyyf9kvTlQ== -----END CERTIFICATE-----Generated at Wed May 13 09:10:58 2026 by rpki-client