$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: +9TG5zDZWO4nAIlle9ixuGtYBEX2hjrY24adG7mx8P4= Subject key identifier: 44:F1:86:D7:AD:AD:BD:4A:30:42:B2:C4:EE:39:00:AF:AF:6F:9E:CF Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 01AC Signing time: Wed 13 May 2026 04:12:18 +0000 Manifest this update: Wed 13 May 2026 04:12:17 +0000 Manifest next update: Wed 20 May 2026 04:12:17 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: ZPQJSuC6NV9S3eSJrVBhyB9qImowPuoZCh8Hl7KI7VY=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: xllDJ7wsryQrkSvX97smRm5LJiMbi7ECfICbiD0R3+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 04:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: May 13 04:12:17 2026 GMT Not After : May 20 04:12:17 2026 GMT Subject: CN=6a03fa22-6e5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:e9:b6:86:b8:43:18:65:e0:95:ea:f6:4c: 3d:73:6d:78:52:62:78:b1:6d:06:03:93:fc:bd:94: 91:70:19:67:b1:3a:b9:43:0b:8b:85:be:4e:1b:0e: 5b:da:1b:25:d2:5c:c5:8e:a6:52:10:83:ca:61:a4: 17:45:5d:91:ba:d6:fd:f5:4b:0f:e5:9a:5b:85:01: 08:7b:b4:ac:25:e7:8f:db:bb:ec:17:87:60:63:6e: 76:bc:96:2e:0c:2c:90:26:6a:26:29:d0:4b:0e:d4: 56:d0:50:e8:95:fa:ae:ad:2a:34:5e:8a:c5:14:d9: cd:87:65:4a:16:0f:24:a7:03:c4:a6:1c:4a:95:1f: 53:07:43:18:d6:29:29:65:d9:43:e7:42:8d:56:f2: bf:cc:85:9f:78:f3:af:da:4d:d8:42:52:3d:9a:b5: c0:ba:97:70:6e:98:5a:2c:a2:58:e3:cf:13:44:3f: 31:3d:4f:40:3f:38:68:fc:dd:85:5d:64:94:bc:59: 46:97:e5:e8:ea:72:52:9d:23:74:c2:a1:3b:8f:d1: 36:75:aa:f4:81:44:fd:b0:03:b1:38:00:0a:5a:19: 1b:e2:c5:88:ed:54:cf:3e:02:97:19:61:8d:67:90: c0:47:e3:94:45:f5:17:35:ae:0c:b3:75:82:db:ff: b0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F1:86:D7:AD:AD:BD:4A:30:42:B2:C4:EE:39:00:AF:AF:6F:9E:CF X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:d9:fc:f5:dc:fc:31:3a:64:4a:47:bc:b6:1a:2f:dd:e4:78: e7:50:96:8d:48:b2:97:ef:5f:fa:2a:97:4d:89:f4:a0:dc:58: 0f:93:dc:6f:ea:00:53:d7:0b:52:a5:f0:d2:f7:63:0e:c4:c7: ab:ec:5c:7b:20:66:a7:a5:87:f3:cb:7c:fc:c7:87:c9:59:94: bb:ce:ab:94:30:76:14:93:9a:a2:2b:c7:59:88:16:da:34:b1: 5c:4c:cf:f0:0e:fc:0a:9f:e3:17:cb:1b:0c:46:16:9e:6c:fb: 3e:6c:8a:c9:f0:9e:ee:5d:d7:a6:ea:ca:1a:93:06:fc:61:a3: 90:85:de:71:32:39:62:37:88:26:82:7b:d2:1e:62:24:49:c2: f6:52:85:46:02:8c:ab:c6:77:7d:8d:c0:ba:1a:ab:b2:9e:18: f7:bf:53:ae:e0:ca:e1:2e:5d:2c:cc:4d:3d:c2:44:b8:e2:8f: ea:ab:c7:85:59:c7:b2:a0:ea:4a:0d:7b:5b:95:71:a7:9a:1a: c9:ab:8e:5b:ed:47:ac:de:1b:e8:88:2e:80:ea:90:03:8e:be: 89:38:4b:3a:c6:6a:d5:fc:43:f5:6f:fe:65:69:9c:2c:bf:58: 60:d8:06:67:61:be:29:a5:e5:35:10:ed:47:a4:8e:52:3e:d9: 7e:bf:8f:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjYwNTEzMDQxMjE3WhcNMjYwNTIwMDQxMjE3WjAYMRYwFAYD VQQDEw02YTAzZmEyMi02ZTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjbptoa4Qxhl4JXq9kw9c214UmJ4sW0GA5P8vZSRcBlnsTq5QwuLhb5OGw5b 2hsl0lzFjqZSEIPKYaQXRV2Rutb99UsP5ZpbhQEIe7SsJeeP27vsF4dgY252vJYu DCyQJmomKdBLDtRW0FDolfqurSo0XorFFNnNh2VKFg8kpwPEphxKlR9TB0MY1ikp ZdlD50KNVvK/zIWfePOv2k3YQlI9mrXAupdwbphaLKJY488TRD8xPU9APzho/N2F XWSUvFlGl+Xo6nJSnSN0wqE7j9E2dar0gUT9sAOxOAAKWhkb4sWI7VTPPgKXGWGN Z5DAR+OURfUXNa4Ms3WC2/+wqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFETxhtet rb1KMEKyxO45AK+vb57PMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv9n89dz8MTpkSke8thov3eR451CWjUiyl+9f+iqXTYn0oNxYD5Pcb+oAU9cL UqXw0vdjDsTHq+xceyBmp6WH88t8/MeHyVmUu86rlDB2FJOaoivHWYgW2jSxXEzP 8A78Cp/jF8sbDEYWnmz7PmyKyfCe7l3XpurKGpMG/GGjkIXecTI5YjeIJoJ70h5i JEnC9lKFRgKMq8Z3fY3Auhqrsp4Y979TruDK4S5dLMxNPcJEuOKP6qvHhVnHsqDq Sg17W5Vxp5oayauOW+1HrN4b6IgugOqQA46+iThLOsZq1fxD9W/+ZWmcLL9YYNgG Z2G+KaXlNRDtR6SOUj7Zfr+P5Q== -----END CERTIFICATE-----Generated at Wed May 13 08:54:54 2026 by rpki-client