$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: TGpcNBnKmQVe16nLGQyHhIyyf/IbmIb+bAWSKHYhqPU= Subject key identifier: 48:6B:51:93:0B:43:9B:BC:6B:23:24:C3:73:AF:86:30:28:19:9D:5D Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 089B Signing time: Tue 12 May 2026 20:37:41 +0000 Manifest this update: Tue 12 May 2026 20:37:40 +0000 Manifest next update: Tue 19 May 2026 20:37:40 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: v6sDnF1wLxKrjStEVVpyuXd8EH9eK1beYfPZiF2YTxg=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: cf4yHcoutqovI1dQvoBzonoaRmnFgyfFyjHSp2dFK4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: May 12 20:37:40 2026 GMT Not After : May 19 20:37:40 2026 GMT Subject: CN=6a038f94-18ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:9f:47:94:55:97:2a:4e:a2:d2:e6:1e:08:52: 20:26:8d:95:a7:87:b6:6a:52:ec:10:07:be:d6:2b: 40:e4:fb:90:38:2c:95:f6:75:1f:5b:4e:df:ce:87: 93:59:89:67:23:c2:9d:90:2f:46:fc:5e:b3:5a:9a: 6a:68:1a:7f:d1:56:b3:bd:b7:37:95:ab:57:ea:ba: dd:3b:98:e4:22:ad:57:77:65:46:cf:11:0f:6e:f3: ff:e6:b9:5e:57:da:15:b2:fd:f6:07:ef:26:d3:c1: f1:2e:13:9a:de:33:a4:57:30:9d:6d:2a:60:69:1b: 3a:8a:90:a3:c3:e8:13:da:09:3e:1e:fe:6d:17:4e: 16:83:d3:52:dd:26:2b:6a:04:af:19:2b:21:57:48: 50:7a:a4:f0:c8:2f:01:f6:7a:78:56:85:7d:78:e4: 08:96:b3:2f:e6:2d:84:15:00:7f:08:f3:e6:40:4e: 62:8b:1b:bf:8c:fe:aa:a9:8c:cb:24:2d:0b:cc:7c: 40:33:85:48:6e:1c:43:12:e2:2e:2c:c4:d0:cc:d2: f8:a7:ef:93:a4:a2:4e:98:d9:e8:09:c3:21:34:19: a2:e3:df:d6:3d:2b:58:eb:1d:25:23:2b:ee:2a:84: 1c:18:fa:e5:f7:88:0f:25:40:54:91:07:94:51:ea: 0a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6B:51:93:0B:43:9B:BC:6B:23:24:C3:73:AF:86:30:28:19:9D:5D X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:56:26:76:a3:4e:ac:7c:74:0d:d8:6c:3c:26:f8:c0:40:0f: 1a:c2:4a:c2:b6:ab:1d:60:a1:68:b4:8b:dc:41:dc:d8:46:ee: 59:8a:45:13:42:cd:06:ae:47:7c:f6:dd:86:22:e7:f4:d8:c3: 7e:e9:01:9e:ab:61:38:d1:ef:98:b3:7f:b6:a3:fb:e7:f3:fe: ca:8d:12:87:9e:4f:0a:41:97:6b:9c:e0:e5:58:4f:60:b3:39: a2:87:bf:8f:8d:1b:e9:b3:59:08:06:ef:d3:25:db:90:28:e3: 98:66:00:93:c8:4f:56:0e:29:e5:00:15:f7:68:87:80:76:c6: ad:20:91:ad:11:e6:60:b3:af:42:8f:f3:5e:78:b2:d4:3a:ab: dd:47:2b:49:32:7e:b9:66:58:2a:d2:ac:08:18:10:9e:62:5b: b1:ea:ee:d0:3b:56:ab:71:cb:82:71:96:67:80:42:27:f2:9a: 99:b1:65:d8:ad:79:7c:8b:e4:de:85:3f:e2:69:73:12:0c:30: 01:22:76:ee:69:8c:92:da:11:d8:ec:f2:02:7a:0a:53:68:13: 67:4d:42:36:00:8a:12:b5:e8:01:00:94:58:bc:17:e5:31:1d: 2c:c2:98:5d:5d:8b:bb:65:f7:85:37:fe:51:9b:c9:9c:3f:c0: 11:b2:f0:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjYwNTEyMjAzNzQwWhcNMjYwNTE5MjAzNzQwWjAYMRYwFAYD VQQDEw02YTAzOGY5NC0xOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj59HlFWXKk6i0uYeCFIgJo2Vp4e2alLsEAe+1itA5PuQOCyV9nUfW07fzoeT WYlnI8KdkC9G/F6zWppqaBp/0Vazvbc3latX6rrdO5jkIq1Xd2VGzxEPbvP/5rle V9oVsv32B+8m08HxLhOa3jOkVzCdbSpgaRs6ipCjw+gT2gk+Hv5tF04Wg9NS3SYr agSvGSshV0hQeqTwyC8B9np4VoV9eOQIlrMv5i2EFQB/CPPmQE5iixu/jP6qqYzL JC0LzHxAM4VIbhxDEuIuLMTQzNL4p++TpKJOmNnoCcMhNBmi49/WPStY6x0lIyvu KoQcGPrl94gPJUBUkQeUUeoKQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEhrUZML Q5u8ayMkw3OvhjAoGZ1dMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABVYmdqNOrHx0DdhsPCb4wEAPGsJKwrarHWChaLSL3EHc2EbuWYpFE0LNBq5H fPbdhiLn9NjDfukBnqthONHvmLN/tqP75/P+yo0Sh55PCkGXa5zg5VhPYLM5ooe/ j40b6bNZCAbv0yXbkCjjmGYAk8hPVg4p5QAV92iHgHbGrSCRrRHmYLOvQo/zXniy 1Dqr3UcrSTJ+uWZYKtKsCBgQnmJbseru0DtWq3HLgnGWZ4BCJ/KambFl2K15fIvk 3oU/4mlzEgwwASJ27mmMktoR2OzyAnoKU2gTZ01CNgCKErXoAQCUWLwX5TEdLMKY XV2Lu2X3hTf+UZvJnD/AEbLw6Q== -----END CERTIFICATE-----Generated at Wed May 13 07:11:50 2026 by rpki-client