$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: o6G1yBf0AibuzROBwyPI2cpRdd+qGpWSPCdWduBAaUw= Subject key identifier: 81:A7:4A:AE:CF:A1:4F:F9:2A:95:8B:C6:57:52:49:20:AB:68:1D:B1 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 0719 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 0708 Signing time: Tue 12 May 2026 22:06:51 +0000 Manifest this update: Tue 12 May 2026 22:06:51 +0000 Manifest next update: Tue 19 May 2026 22:06:51 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: BZ5kOW/MzsNOlkYYCUEB0CXhwMeSOg3Saglai2rbo5c=) 2: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: mZPmB2gMHhMYq9+9YsdLGZPVF9Xjisj7wRrJK9Yzmx4=) 3: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: nPFuvMawG4xx+gCcX5sOjIYDGXFIgyL0vbMikWZz2Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1817 (0x719) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: May 12 22:06:51 2026 GMT Not After : May 19 22:06:51 2026 GMT Subject: CN=6a03a47b-68f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:67:87:4a:79:c7:04:28:84:95:5c:40:d4:dc: bf:bc:a2:f5:63:8e:a7:cb:ac:61:35:82:71:ab:83: dc:0c:0d:b8:60:85:01:da:e2:a4:f1:a8:39:c1:fa: ab:34:d3:04:a9:17:7d:cc:d5:a7:c8:0a:84:89:99: d7:d9:3c:77:98:0c:60:52:3b:b4:f8:0a:7c:76:ee: e9:2a:ef:ae:f2:21:76:74:19:27:57:45:ec:4e:6b: d4:e9:cd:da:8d:d3:17:f4:e0:ac:0d:8a:3b:ed:72: 00:66:4a:c9:93:df:03:2f:0a:53:62:90:73:57:b7: 2e:9a:3a:da:29:76:1f:0c:ae:84:da:af:c1:93:be: 2d:7f:ec:1c:25:00:b7:fb:79:74:41:b5:da:d1:4d: b0:a2:bb:f5:bd:bf:08:a6:11:8b:38:25:e0:86:d1: 54:19:40:8b:b3:6b:e4:a1:e2:c9:a7:69:5c:01:47: e8:f3:35:96:d0:9e:6d:90:79:e9:ce:3e:41:3b:c9: c2:fa:87:91:08:6c:e5:3d:ba:72:d8:57:46:a2:fa: 7a:5b:3a:58:23:87:b9:89:05:5a:af:42:ef:4a:4c: 1f:45:7c:53:b2:64:86:2c:4f:3c:0a:ca:c4:cd:ae: 7b:45:a5:63:12:d2:a3:90:c5:75:68:b4:3d:e8:d0: 8d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A7:4A:AE:CF:A1:4F:F9:2A:95:8B:C6:57:52:49:20:AB:68:1D:B1 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f3:31:42:b0:e7:87:ab:f7:cc:7d:99:30:f4:a2:6a:43:3b: ca:a1:d0:41:15:37:7c:bf:1d:9a:4c:fb:ca:69:a4:fb:ba:38: c1:00:4c:e0:68:f0:fa:d5:f6:10:8a:9f:c1:6b:48:9b:8f:60: 18:3e:ec:9e:67:8b:42:f9:c3:fa:4c:72:b0:91:99:83:43:eb: ce:94:76:37:33:e8:b9:08:17:05:3b:0f:b7:ac:20:e0:2f:fe: e4:df:f3:2b:ac:e4:8b:df:15:a6:f3:70:28:54:49:20:ce:cb: 17:6e:c5:3b:11:78:b0:7c:3e:e2:41:f5:fa:a6:c5:4d:fd:c3: e1:29:a4:34:84:4d:25:80:7b:74:32:c7:92:a4:cc:61:7f:22: fc:5c:bf:b8:ff:a0:52:79:56:94:ce:46:11:65:bd:01:47:61: 83:3f:61:26:f2:e6:77:6c:0a:b8:20:33:c0:75:c3:c4:79:a9: 66:24:13:d2:07:c1:dc:86:33:3d:6c:84:22:59:7d:f4:1b:2f: 04:b8:ca:32:8a:1c:ee:ee:6c:85:5f:a6:76:bb:3f:70:b8:32: 90:dd:42:ce:05:8a:22:52:e8:7e:e5:ff:e7:2e:99:b2:73:39: f9:16:b6:d5:e4:80:9a:5f:f1:b6:2c:cb:28:ff:31:e2:39:04: 61:15:68:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjYwNTEyMjIwNjUxWhcNMjYwNTE5MjIwNjUxWjAYMRYwFAYD VQQDEw02YTAzYTQ3Yi02OGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62eHSnnHBCiElVxA1Ny/vKL1Y46ny6xhNYJxq4PcDA24YIUB2uKk8ag5wfqr NNMEqRd9zNWnyAqEiZnX2Tx3mAxgUju0+Ap8du7pKu+u8iF2dBknV0XsTmvU6c3a jdMX9OCsDYo77XIAZkrJk98DLwpTYpBzV7cumjraKXYfDK6E2q/Bk74tf+wcJQC3 +3l0QbXa0U2worv1vb8IphGLOCXghtFUGUCLs2vkoeLJp2lcAUfo8zWW0J5tkHnp zj5BO8nC+oeRCGzlPbpy2FdGovp6WzpYI4e5iQVar0LvSkwfRXxTsmSGLE88CsrE za57RaVjEtKjkMV1aLQ96NCNXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIGnSq7P oU/5KpWLxldSSSCraB2xMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf/MxQrDnh6v3zH2ZMPSiakM7yqHQQRU3fL8dmkz7ymmk+7o4wQBM4Gjw+tX2 EIqfwWtIm49gGD7snmeLQvnD+kxysJGZg0PrzpR2NzPouQgXBTsPt6wg4C/+5N/z K6zki98VpvNwKFRJIM7LF27FOxF4sHw+4kH1+qbFTf3D4SmkNIRNJYB7dDLHkqTM YX8i/Fy/uP+gUnlWlM5GEWW9AUdhgz9hJvLmd2wKuCAzwHXDxHmpZiQT0gfB3IYz PWyEIll99BsvBLjKMooc7u5shV+mdrs/cLgykN1CzgWKIlLofuX/5y6ZsnM5+Ra2 1eSAml/xtizLKP8x4jkEYRVoIA== -----END CERTIFICATE-----Generated at Wed May 13 12:17:02 2026 by rpki-client