$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: 5N+g0fLlOj3c0eYhDSuD4PBsi5cQeQnaOEjrMpRp9eU= Subject key identifier: E7:7A:23:85:FC:07:CD:8A:C5:AE:4B:A7:15:44:66:59:7C:B3:FA:8A Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0222 Signing time: Mon 11 May 2026 02:47:32 +0000 Manifest this update: Mon 11 May 2026 02:47:31 +0000 Manifest next update: Mon 18 May 2026 02:47:31 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: 9vNJGbzcyTM4QT+Q46lcj2tmPykIBxFy1rDFie4NS4o=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: wcyOVBW/tGd3skqw30jqZPA6tqviwDkxNlXM49SoLAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: May 11 02:47:31 2026 GMT Not After : May 18 02:47:31 2026 GMT Subject: CN=6a014344-0e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:01:25:a1:ae:c0:6c:4c:7a:0d:ca:1c:e6: 30:2e:55:ec:2a:b5:b9:16:7c:52:b6:d6:a4:b2:46: ec:08:a6:cb:98:ef:25:c2:4d:b0:ce:eb:61:e7:b6: 38:f0:a5:30:86:a9:3d:a2:a2:e0:ef:f6:45:1b:dc: 82:0f:f4:b6:34:e1:45:e5:b6:48:12:b5:f0:de:b7: 14:47:c4:3c:42:78:fa:02:82:13:5c:6a:ce:1b:8f: fa:0b:45:d7:d8:89:e3:88:93:e1:15:98:27:92:8c: 33:b0:84:cf:07:dc:92:5f:8f:96:de:d8:43:54:34: eb:93:d8:c7:11:4f:2c:d6:f5:ec:b1:a2:7b:c7:82: ff:ad:e3:fa:48:dd:b0:2f:a4:cf:b2:a4:d8:c9:ad: 26:81:aa:e8:91:b8:c6:74:b5:a0:4d:18:72:4c:3a: 68:cc:fc:d1:39:31:7d:a5:6d:c7:9b:cf:ca:cb:7e: 10:e8:c6:c3:c6:85:3e:ed:a8:22:6f:f4:35:46:9f: 57:bc:1e:a8:7d:be:51:c9:c3:df:e7:90:e9:d1:64: 83:19:74:b0:9a:ca:a8:e9:32:a5:39:0d:06:47:12: 57:d7:d4:29:e2:c8:de:56:76:da:8a:72:27:f6:2e: 13:a7:11:cb:f2:c7:e0:cf:2f:2e:52:11:71:cc:ae: 40:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:7A:23:85:FC:07:CD:8A:C5:AE:4B:A7:15:44:66:59:7C:B3:FA:8A X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:50:ef:8c:c3:3e:28:bf:92:b9:aa:7c:bd:5a:b6:3b:12:65: 6d:d9:d9:1a:b1:39:1e:69:7b:41:f5:92:8d:96:63:f1:c0:0e: 11:55:86:ed:f3:ba:bf:6d:74:f3:fb:3d:0a:b1:3b:a2:56:0b: 2a:1e:9b:a4:f3:46:e0:07:2a:c3:5f:d8:51:bc:99:b4:86:be: 9a:e6:6f:1f:cb:77:aa:d7:7d:51:b4:e2:d9:ca:27:c4:50:e6: a5:63:47:48:26:7e:91:d7:f8:76:31:7f:89:7d:8b:58:3b:f6: 2d:0c:2d:5b:46:ec:14:a2:5b:c5:2a:67:35:da:57:ba:9a:09: e8:d2:e9:bb:84:c3:1b:1d:e8:8c:3d:37:99:b9:b3:20:ca:f2: af:da:77:f6:dd:b7:26:4d:d0:25:64:9d:f8:70:7c:be:96:ff: 68:39:82:e0:e8:d1:61:df:3a:8c:6e:5f:fa:8b:f5:f8:15:f4: 23:fa:c3:1a:07:3f:14:5d:82:7c:82:00:36:07:ed:1a:1c:71: 7f:d2:53:07:57:59:f5:e0:2c:a3:92:15:28:9f:43:b8:08:14: 49:00:b0:94:6c:fc:da:a8:aa:78:a4:a0:9f:e3:b8:20:58:7c: a9:7c:50:b7:b6:c7:a6:43:5d:91:f5:18:f4:ba:e8:57:31:fd: e2:ea:3c:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjYwNTExMDI0NzMxWhcNMjYwNTE4MDI0NzMxWjAYMRYwFAYD VQQDEw02YTAxNDM0NC0wZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypIBJaGuwGxMeg3KHOYwLlXsKrW5FnxSttakskbsCKbLmO8lwk2wzuth57Y4 8KUwhqk9oqLg7/ZFG9yCD/S2NOFF5bZIErXw3rcUR8Q8Qnj6AoITXGrOG4/6C0XX 2InjiJPhFZgnkowzsITPB9ySX4+W3thDVDTrk9jHEU8s1vXssaJ7x4L/reP6SN2w L6TPsqTYya0mgarokbjGdLWgTRhyTDpozPzROTF9pW3Hm8/Ky34Q6MbDxoU+7agi b/Q1Rp9XvB6ofb5RycPf55Dp0WSDGXSwmsqo6TKlOQ0GRxJX19Qp4sjeVnbainIn 9i4TpxHL8sfgzy8uUhFxzK5AKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOd6I4X8 B82Kxa5LpxVEZll8s/qKMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD1DvjMM+KL+Suap8vVq2OxJlbdnZGrE5Hml7QfWSjZZj8cAOEVWG7fO6v210 8/s9CrE7olYLKh6bpPNG4Acqw1/YUbyZtIa+muZvH8t3qtd9UbTi2conxFDmpWNH SCZ+kdf4djF/iX2LWDv2LQwtW0bsFKJbxSpnNdpXupoJ6NLpu4TDGx3ojD03mbmz IMryr9p39t23Jk3QJWSd+HB8vpb/aDmC4OjRYd86jG5f+ov1+BX0I/rDGgc/FF2C fIIANgftGhxxf9JTB1dZ9eAso5IVKJ9DuAgUSQCwlGz82qiqeKSgn+O4IFh8qXxQ t7bHpkNdkfUY9LroVzH94uo84w== -----END CERTIFICATE-----Generated at Wed May 13 02:36:19 2026 by rpki-client