$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: ne5JVDaIuwVZ/kHjoPKbby5r03sKN2UPfh+t8EnQ9qY= Subject key identifier: 14:E8:6A:8F:F6:36:24:BB:EB:25:8F:BA:7F:92:3E:3A:38:61:ED:FA Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0D1A Signing time: Tue 12 May 2026 18:07:51 +0000 Manifest this update: Tue 12 May 2026 18:07:51 +0000 Manifest next update: Tue 19 May 2026 18:07:51 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: F1hhrCi3PRFnh3G2ZrFUboqZ/bc9ZtplpE9tBvVQsvY=) 2: 44FEC394589711F0B981A181C4F9AE02.roa (hash: XgVbFRUMdQn7YMgDUvllzDbhgw5VgTScVk8o1raBf8w=) 3: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: ev3YW2NLkO0rjwyR3qqZhC4fRgKa7uqRJcOoJlN/Fyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: May 12 18:07:51 2026 GMT Not After : May 19 18:07:51 2026 GMT Subject: CN=6a036c77-cba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:fb:74:cb:9c:6d:92:3a:14:b6:c4:08:8c: 41:78:83:1d:0f:91:8d:05:c0:fc:14:71:c5:fe:86: b4:35:8a:9f:0c:bb:0d:de:5c:72:84:87:64:3a:37: ad:14:d4:9a:48:a0:64:b8:11:2c:d8:90:27:ff:31: 80:11:25:be:3a:99:09:81:59:32:cb:68:0c:37:23: a0:96:6f:cc:cc:35:ff:63:f7:55:44:db:ad:f1:8d: 0f:63:32:55:e3:ed:bb:46:0b:e9:b3:56:ae:a4:b5: 3d:e9:c3:06:32:b4:77:85:ee:5c:c0:a8:cf:42:54: d0:92:17:ae:c5:da:be:93:d2:b7:5e:06:c1:60:06: f5:17:3f:8e:55:8d:c5:43:3c:64:3e:ef:16:5c:17: d6:04:be:87:09:21:60:6b:a2:8e:4f:84:8e:62:9b: 5c:06:ce:56:29:e0:7a:32:e6:6e:3c:65:fc:a0:bd: c6:2d:b9:31:61:82:ac:a6:04:99:4e:95:4f:eb:8c: 83:a5:5b:cc:4c:a6:74:e8:e7:76:6b:d8:85:88:1b: 7e:2b:e2:3f:b6:eb:55:fd:a2:85:16:70:14:c5:0a: 26:49:64:fb:bc:79:c4:75:0e:08:fd:0f:74:c5:43: 39:bc:7b:7d:0b:89:62:f6:8c:3b:df:c9:c0:a2:b6: c9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E8:6A:8F:F6:36:24:BB:EB:25:8F:BA:7F:92:3E:3A:38:61:ED:FA X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1f:ee:a9:4e:bb:6b:4d:b6:9b:20:f4:96:97:82:aa:74:e8: 64:dd:bc:ff:dc:25:79:70:03:7d:74:87:4d:b3:6e:02:06:00: 55:c2:b3:8d:47:e8:af:87:28:dd:93:aa:02:b4:46:74:72:b0: da:84:2f:21:3e:00:b1:02:0b:51:02:bf:35:b8:f8:af:b1:b0: e8:d0:46:66:19:35:6b:e9:c4:d6:0b:0b:a3:49:83:e0:3d:84: 35:a8:bb:2b:ac:4f:bb:b2:e4:6b:8d:94:0e:ca:bd:73:4e:c5: bd:3a:0f:dc:83:df:46:e2:08:56:d9:3e:41:29:a0:20:ee:ed: 09:af:0f:cf:7c:d7:19:26:b8:59:a7:c5:ac:a5:8c:59:6f:68: 2c:9d:3f:96:49:bc:d5:09:71:7d:a9:e0:fb:11:e9:e4:19:9b: ea:9d:a3:85:c9:0d:43:2d:ae:01:59:51:7c:d4:90:54:fc:1b: 5a:87:e6:92:38:2c:3b:85:c5:71:13:d4:57:de:f2:ce:e7:c9: 2b:ad:6b:92:64:e2:a4:4f:b3:12:e9:f3:1f:c1:64:9b:aa:a2: ec:fe:ad:dc:29:33:6c:d3:14:2a:cd:f8:8c:e4:4b:ba:87:cc: f9:21:65:11:d6:53:d0:80:7c:59:8f:ee:3b:72:04:d6:03:73: 39:ad:a5:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjYwNTEyMTgwNzUxWhcNMjYwNTE5MTgwNzUxWjAYMRYwFAYD VQQDEw02YTAzNmM3Ny1jYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaX7dMucbZI6FLbECIxBeIMdD5GNBcD8FHHF/oa0NYqfDLsN3lxyhIdkOjet FNSaSKBkuBEs2JAn/zGAESW+OpkJgVkyy2gMNyOglm/MzDX/Y/dVRNut8Y0PYzJV 4+27Rgvps1aupLU96cMGMrR3he5cwKjPQlTQkheuxdq+k9K3XgbBYAb1Fz+OVY3F QzxkPu8WXBfWBL6HCSFga6KOT4SOYptcBs5WKeB6MuZuPGX8oL3GLbkxYYKspgSZ TpVP64yDpVvMTKZ06Od2a9iFiBt+K+I/tutV/aKFFnAUxQomSWT7vHnEdQ4I/Q90 xUM5vHt9C4li9ow738nAorbJ+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBToao/2 NiS76yWPun+SPjo4Ye36MB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWh/uqU67a022myD0lpeCqnToZN28/9wleXADfXSHTbNuAgYAVcKzjUfor4co 3ZOqArRGdHKw2oQvIT4AsQILUQK/Nbj4r7Gw6NBGZhk1a+nE1gsLo0mD4D2ENai7 K6xPu7Lka42UDsq9c07FvToP3IPfRuIIVtk+QSmgIO7tCa8Pz3zXGSa4WafFrKWM WW9oLJ0/lkm81Qlxfang+xHp5Bmb6p2jhckNQy2uAVlRfNSQVPwbWofmkjgsO4XF cRPUV97yzufJK61rkmTipE+zEunzH8Fkm6qi7P6t3CkzbNMUKs34jORLuofM+SFl EdZT0IB8WY/uO3IE1gNzOa2l7g== -----END CERTIFICATE-----Generated at Wed May 13 14:18:16 2026 by rpki-client