$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft File: nQi_OKDTi4yrfP2I9djE7WZ3jME.mft (raw, json) Hash identifier: O35Pa5KbhPPBNsVre3uKGWAUH2HOv+1Z00jvoWACUMU= Subject key identifier: EA:74:39:1C:D4:A3:03:A7:A9:EB:12:41:57:A5:FF:FE:2C:7C:5F:31 Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft Manifest number: 01C8 Signing time: Mon 11 May 2026 03:49:43 +0000 Manifest this update: Mon 11 May 2026 03:49:42 +0000 Manifest next update: Mon 18 May 2026 03:49:42 +0000 Files and hashes: 1: nQi_OKDTi4yrfP2I9djE7WZ3jME.crl (hash: Zc5hYbSii9Wuv9sPW8CrlMA3hWEt8V345wi6OTaH1Vk=) 2: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (hash: KcnRjC7T6Kcnl9YrWn5mYyKPUtty/r1wIebOb0MFfxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF, serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Validity Not Before: May 11 03:49:42 2026 GMT Not After : May 18 03:49:42 2026 GMT Subject: CN=6a0151d7-76ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5a:c1:93:49:fb:c5:9e:51:15:5e:e5:06:f8: ea:31:a9:40:96:95:69:5a:7e:71:ac:5f:b1:69:2d: 29:06:a6:82:1a:76:4c:09:1d:37:0f:f3:c6:17:18: 29:0b:cc:17:31:f5:c5:c9:87:52:19:c2:3c:dc:54: 1e:40:60:b7:07:35:84:fc:d1:ab:fd:43:89:01:b2: 96:ab:05:1c:4f:6c:18:f3:e3:04:bc:37:cd:71:a2: 9e:bc:91:c0:56:05:7b:6c:7c:bb:bf:39:d7:4b:02: d5:0c:ab:db:ac:66:bf:92:81:6e:6d:99:8a:fd:99: eb:98:a3:d1:1e:5e:9d:2f:48:85:54:0f:08:e6:1d: a9:8d:90:56:0c:16:32:9f:01:9e:c6:00:b5:f8:5c: a7:74:b2:3f:6e:75:12:b2:91:de:2f:9f:23:23:94: cb:50:6e:64:6c:70:33:09:28:b0:dc:cb:2a:97:63: 63:80:1e:d3:87:be:b3:6d:00:8d:47:f3:b4:ed:43: dd:bc:b0:fd:29:13:d6:32:a2:50:a3:fb:20:ab:7a: 29:53:f0:e4:29:dc:fb:0c:27:65:c0:c4:23:49:fc: 94:df:06:cd:4c:7c:ee:8c:7e:16:47:fc:7e:b8:08: 7e:79:90:8d:ed:66:ae:7c:3b:78:1b:63:bb:97:40: 68:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:74:39:1C:D4:A3:03:A7:A9:EB:12:41:57:A5:FF:FE:2C:7C:5F:31 X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cf:c1:ad:fe:bd:d6:8b:f2:5e:34:ad:57:36:69:2c:c3:a3: a4:0f:24:c4:c0:75:fd:3d:eb:93:3f:a5:25:c6:96:4c:5f:75: ef:9b:29:0b:3a:6c:b2:5a:ab:2d:d8:ab:ff:6d:3e:90:5a:3a: a6:1f:b7:b3:6f:10:60:cf:c5:2a:08:90:14:e6:50:91:59:d4: e2:0b:56:d1:71:28:5e:ec:5f:70:f8:a6:00:4c:b1:19:32:7a: ed:33:4b:b4:9f:04:4d:15:2d:a8:87:08:77:bd:ad:a1:19:8e: 0e:a2:de:d0:6d:fb:6d:05:c7:09:3e:70:f3:c5:b6:47:c0:a1: 52:84:e0:65:23:fa:e7:8a:6a:dc:d2:0a:9b:a0:fc:cc:30:62: 58:d8:58:1c:9b:9f:36:64:e4:10:b1:2a:f3:77:73:51:95:03: af:99:a3:97:a1:a6:24:52:39:0f:18:c4:48:bd:6e:9d:8a:14: 3b:bd:f9:2d:88:d2:5f:27:87:c3:b6:5b:af:e6:48:89:56:01: 56:1d:39:8d:cb:d8:1a:06:17:3f:54:92:f8:89:40:85:f4:93: 88:3d:51:86:0c:a7:e1:22:70:49:35:29:b8:7d:1d:ee:e6:af: 40:a4:7f:4d:14:21:58:a1:52:62:d0:31:35:42:ef:8c:68:f1: d5:50:b3:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwREYxMTAvBgNVBAUTKDlEMDhCRjM4QTBEMzhCOENBQjdDRkQ4OEY1RDhDNEVE NjY3NzhDQzEwHhcNMjYwNTExMDM0OTQyWhcNMjYwNTE4MDM0OTQyWjAYMRYwFAYD VQQDEw02YTAxNTFkNy03NmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FrBk0n7xZ5RFV7lBvjqMalAlpVpWn5xrF+xaS0pBqaCGnZMCR03D/PGFxgp C8wXMfXFyYdSGcI83FQeQGC3BzWE/NGr/UOJAbKWqwUcT2wY8+MEvDfNcaKevJHA VgV7bHy7vznXSwLVDKvbrGa/koFubZmK/ZnrmKPRHl6dL0iFVA8I5h2pjZBWDBYy nwGexgC1+FyndLI/bnUSspHeL58jI5TLUG5kbHAzCSiw3Msql2NjgB7Th76zbQCN R/O07UPdvLD9KRPWMqJQo/sgq3opU/DkKdz7DCdlwMQjSfyU3wbNTHzujH4WR/x+ uAh+eZCN7WaufDt4G2O7l0BoswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOp0ORzU owOnqesSQVel//4sfF8xMB8GA1UdIwQYMBaAFJ0Ivzig04uMq3z9iPXYxO1md4zB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBERi9FNTA4MzY0ODk5 MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0eXJmUDJJOWRqRTdXWjNq TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBERi9FNTA4MzY0ODk5MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0 eXJmUDJJOWRqRTdXWjNqTUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACc/Brf691ovyXjStVzZpLMOjpA8kxMB1/T3rkz+lJcaWTF9175spCzpsslqr Ldir/20+kFo6ph+3s28QYM/FKgiQFOZQkVnU4gtW0XEoXuxfcPimAEyxGTJ67TNL tJ8ETRUtqIcId72toRmODqLe0G37bQXHCT5w88W2R8ChUoTgZSP654pq3NIKm6D8 zDBiWNhYHJufNmTkELEq83dzUZUDr5mjl6GmJFI5DxjESL1unYoUO735LYjSXyeH w7Zbr+ZIiVYBVh05jcvYGgYXP1SS+IlAhfSTiD1Rhgyn4SJwSTUpuH0d7uavQKR/ TRQhWKFSYtAxNULvjGjx1VCzRw== -----END CERTIFICATE-----Generated at Wed May 13 03:10:38 2026 by rpki-client