$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: f+Iog6jHcCf+VwZI0ju07cvzCd6BlAqgpRgAr2r/wGE= Subject key identifier: DF:D3:1C:15:F9:1C:63:D2:0D:38:C2:F7:C4:F6:C3:31:95:4C:39:3D Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 99 Signing time: Wed 13 May 2026 07:36:25 +0000 Manifest this update: Wed 13 May 2026 07:36:24 +0000 Manifest next update: Wed 20 May 2026 07:36:24 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: FJIhFBX9cfqBxNWfCRVtfOTZ+viCBPGDmScJgjs1KDg=) 2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: t3GNpUerhP0cJPbY48i/kbcLRCBSWRa0pQ+pR8/EBR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 07:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: May 13 07:36:24 2026 GMT Not After : May 20 07:36:24 2026 GMT Subject: CN=6a0429f9-03ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1b:bc:bf:b7:53:81:57:e5:f4:14:22:49:20: c8:45:22:1b:f9:cb:23:40:28:3a:2d:72:22:ef:ff: 78:0d:14:ed:eb:67:f2:7b:f6:0a:54:1d:50:de:12: 94:f5:75:95:21:22:98:aa:d7:64:d6:a9:60:e8:ab: 6c:8d:6e:b2:b4:2e:75:12:ad:f3:35:e3:33:24:5d: c1:f0:43:e1:d5:f7:75:bd:d2:de:3d:3b:92:18:c9: 11:f4:db:e4:82:ac:cf:6f:90:d7:4a:53:6f:ea:02: e2:d1:5b:c6:1d:a4:fc:67:64:e6:47:73:21:53:aa: a2:d4:3c:47:46:12:43:af:77:d4:ef:40:f3:36:cd: 13:31:98:24:61:bf:62:d4:03:92:e4:9f:69:f5:bd: 5b:08:73:7d:89:f0:96:ba:01:83:55:cd:df:30:4b: ca:37:7d:0c:52:89:f2:22:63:dc:ae:b0:b4:3a:d6: 75:76:7b:7e:76:e1:0a:07:53:a4:02:6f:8c:33:25: 11:8b:27:1c:4e:37:63:86:cd:df:43:47:bd:47:c3: 0d:da:9d:e7:8e:e4:90:e2:ce:99:db:65:b6:70:89: bc:be:82:51:65:08:e4:54:2b:3f:76:90:8e:6c:da: 18:d7:59:53:f8:51:6a:24:fe:be:60:21:00:01:e9: 03:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D3:1C:15:F9:1C:63:D2:0D:38:C2:F7:C4:F6:C3:31:95:4C:39:3D X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b7:b7:f9:14:28:8d:e0:dd:ae:2c:35:40:da:c9:62:44:47: 04:f7:8b:2d:c9:dd:bd:93:ae:db:a0:e3:2a:2f:66:6f:8b:fa: 9b:81:a9:71:ab:56:8e:25:ae:99:69:d9:99:c7:c5:c1:7b:58: 28:97:28:9a:e5:ff:73:93:5f:bb:06:34:d2:d5:d1:68:15:cc: 0e:e4:bc:33:fc:af:43:18:e4:58:17:f7:c0:40:50:91:72:3e: 67:7a:52:7c:c5:96:2b:0f:61:69:c2:9b:d5:46:cb:17:fd:f8: 63:44:1b:f7:9f:30:b3:9e:27:3f:0a:9d:6d:7b:77:35:6d:e4: e0:e8:19:0b:3f:2b:29:e5:74:5b:79:b9:4e:b0:5b:d4:ff:26: 64:a8:37:32:df:23:b5:e2:6c:df:33:0c:f1:64:cd:99:c2:dc: 73:55:7e:29:d8:74:71:2b:4f:c4:24:a6:3c:46:a6:ad:c4:61: d8:4d:0e:2e:8b:86:d7:c2:90:5c:66:70:45:f6:e7:f0:8c:92: a3:e7:3f:22:ee:96:35:ba:dd:6d:16:68:4c:ad:be:00:f7:aa: 97:e0:d0:5e:7e:a7:db:33:11:73:45:6b:74:80:c7:1b:de:b0: 07:b3:9b:da:7b:5d:68:55:94:e0:67:96:47:3f:0e:2a:d8:d5: 49:4a:bc:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDQTgxMTAvBgNVBAUTKEREMjgwODI4RkYwOTk2QThDQkVGMjlCRjBEOTE0REYy NTJERjFDQkQwHhcNMjYwNTEzMDczNjI0WhcNMjYwNTIwMDczNjI0WjAYMRYwFAYD VQQDEw02YTA0MjlmOS0wM2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhu8v7dTgVfl9BQiSSDIRSIb+csjQCg6LXIi7/94DRTt62fye/YKVB1Q3hKU 9XWVISKYqtdk1qlg6KtsjW6ytC51Eq3zNeMzJF3B8EPh1fd1vdLePTuSGMkR9Nvk gqzPb5DXSlNv6gLi0VvGHaT8Z2TmR3MhU6qi1DxHRhJDr3fU70DzNs0TMZgkYb9i 1AOS5J9p9b1bCHN9ifCWugGDVc3fMEvKN30MUonyImPcrrC0OtZ1dnt+duEKB1Ok Am+MMyURiyccTjdjhs3fQ0e9R8MN2p3njuSQ4s6Z22W2cIm8voJRZQjkVCs/dpCO bNoY11lT+FFqJP6+YCEAAekDrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN/THBX5 HGPSDTjC98T2wzGVTDk9MB8GA1UdIwQYMBaAFN0oCCj/CZaoy+8pvw2RTfJS3xy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NBOC82QTlFOTE1QzZF RTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxxakw3eW1fRFpGTjhsTGZI TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC82QTlFOTE1QzZFRTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxx akw3eW1fRFpGTjhsTGZITDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcLe3+RQojeDdriw1QNrJYkRHBPeLLcndvZOu26DjKi9mb4v6m4GpcatWjiWu mWnZmcfFwXtYKJcomuX/c5NfuwY00tXRaBXMDuS8M/yvQxjkWBf3wEBQkXI+Z3pS fMWWKw9hacKb1UbLF/34Y0Qb958ws54nPwqdbXt3NW3k4OgZCz8rKeV0W3m5TrBb 1P8mZKg3Mt8jteJs3zMM8WTNmcLcc1V+Kdh0cStPxCSmPEamrcRh2E0OLouG18KQ XGZwRfbn8IySo+c/Iu6WNbrdbRZoTK2+APeql+DQXn6n2zMRc0VrdIDHG96wB7Ob 2ntdaFWU4GeWRz8OKtjVSUq8RA== -----END CERTIFICATE-----Generated at Wed May 13 13:14:16 2026 by rpki-client