$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: l/qNNy6fA/TEZLzXizRJo8kalshSJaT7kJ2eTJipwRs= Subject key identifier: 79:DF:0B:D7:BA:0E:CA:67:6C:22:7C:FF:D0:6E:8B:03:64:55:61:5C Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0DDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0DD2 Signing time: Tue 12 May 2026 17:54:58 +0000 Manifest this update: Tue 12 May 2026 17:54:58 +0000 Manifest next update: Tue 19 May 2026 17:54:58 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: Dg/fD+tO/4h6qpcOmniwOe0B8DFcZEc8g72gmdBqcQ4=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: DwDMBzTdLVQ0ELyjY5S8is56cxQg9X2S+eZse3Y+xqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3550 (0xdde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: May 12 17:54:58 2026 GMT Not After : May 19 17:54:58 2026 GMT Subject: CN=6a036972-b379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3c:6a:a2:90:bf:78:b4:ce:fd:9a:31:c3:8f: 21:5b:f9:36:0f:7c:0c:22:a9:df:9b:cb:f1:40:8e: 6e:d7:de:36:a4:2c:ae:3d:87:c4:17:83:15:34:b8: 22:f9:fd:80:39:3d:14:ca:6d:af:d0:47:56:83:08: 05:f1:f4:bd:f7:d6:b7:c8:7f:65:0f:99:62:c5:fc: 17:c7:7f:17:10:bb:b5:21:a7:26:58:a8:0a:db:e4: 4c:aa:c7:eb:47:52:31:d5:54:4f:2a:68:7a:20:7d: 0d:e6:a9:d3:de:fd:5f:25:86:45:cc:b7:d4:98:49: c3:eb:ee:35:5a:6c:5c:eb:e3:5a:bb:2c:d9:44:39: 9d:57:a3:fe:aa:18:a7:b8:56:9e:39:08:b2:1a:f0: 95:24:dd:94:56:8a:cf:5e:29:d7:c7:a3:ae:d9:55: 4b:81:7a:71:b4:2f:ab:b8:ed:47:19:c6:53:9f:0e: 7f:71:dc:5e:7f:dc:ca:b5:41:d2:74:3a:45:61:32: 98:5e:52:7d:6c:c8:54:2f:86:5f:b6:42:0c:90:9a: 65:35:74:77:42:3d:78:c8:13:c3:c2:99:20:f8:a4: 7f:b9:d5:25:70:d4:a5:bb:a2:7d:ba:73:b8:88:b1: a5:e6:6c:b5:20:ec:f1:2f:2b:e1:99:e4:d3:11:9c: 5d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:DF:0B:D7:BA:0E:CA:67:6C:22:7C:FF:D0:6E:8B:03:64:55:61:5C X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:14:dd:4c:70:de:52:d1:10:ba:6b:05:2e:79:b3:dd:89:31: eb:19:03:34:4c:ba:b0:98:41:53:c5:f8:d4:c2:a9:d9:48:50: 07:5f:39:0d:7d:ae:d9:27:7c:7e:c9:44:3b:9d:e3:72:7c:8a: 75:57:16:a8:e9:2c:34:69:ad:e8:40:05:7c:72:17:bd:e3:79: 5e:70:72:85:dc:52:29:07:e7:2c:e2:b1:65:65:f1:b7:10:50: 08:5c:81:e7:59:0a:65:a5:fc:88:b1:50:40:d8:b8:84:2e:ee: 7d:ae:b5:16:3b:de:de:37:fb:f5:c0:0d:7e:d3:1a:c1:de:44: a1:3c:10:ee:18:eb:93:16:0f:05:66:e0:07:af:93:31:3c:1a: 21:3e:49:09:30:ec:e5:a7:02:70:00:d8:66:10:98:54:92:41: fb:e1:7d:a1:d0:59:75:e1:fa:14:b0:d6:0e:89:e8:ce:52:f1: 92:56:27:8a:1a:92:b5:1c:f9:dc:db:fb:43:6d:6e:14:6d:2a: 1f:af:c9:e8:28:99:2d:9e:c9:e1:91:cc:22:ef:c1:89:99:d6: 09:36:15:f9:a1:46:0c:e7:87:03:73:80:1f:b2:1a:74:c7:9f: 78:bf:c2:2b:25:94:29:b8:78:58:d2:9d:de:b3:db:61:e8:b6: 4a:67:74:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjYwNTEyMTc1NDU4WhcNMjYwNTE5MTc1NDU4WjAYMRYwFAYD VQQDEw02YTAzNjk3Mi1iMzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTxqopC/eLTO/Zoxw48hW/k2D3wMIqnfm8vxQI5u1942pCyuPYfEF4MVNLgi +f2AOT0Uym2v0EdWgwgF8fS999a3yH9lD5lixfwXx38XELu1IacmWKgK2+RMqsfr R1Ix1VRPKmh6IH0N5qnT3v1fJYZFzLfUmEnD6+41Wmxc6+NauyzZRDmdV6P+qhin uFaeOQiyGvCVJN2UVorPXinXx6Ou2VVLgXpxtC+ruO1HGcZTnw5/cdxef9zKtUHS dDpFYTKYXlJ9bMhUL4ZftkIMkJplNXR3Qj14yBPDwpkg+KR/udUlcNSlu6J9unO4 iLGl5my1IOzxLyvhmeTTEZxd4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHnfC9e6 DspnbCJ8/9BuiwNkVWFcMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfxTdTHDeUtEQumsFLnmz3Ykx6xkDNEy6sJhBU8X41MKp2UhQB185DX2u2Sd8 fslEO53jcnyKdVcWqOksNGmt6EAFfHIXveN5XnByhdxSKQfnLOKxZWXxtxBQCFyB 51kKZaX8iLFQQNi4hC7ufa61Fjve3jf79cANftMawd5EoTwQ7hjrkxYPBWbgB6+T MTwaIT5JCTDs5acCcADYZhCYVJJB++F9odBZdeH6FLDWDonozlLxklYnihqStRz5 3Nv7Q21uFG0qH6/J6CiZLZ7J4ZHMIu/BiZnWCTYV+aFGDOeHA3OAH7IadMefeL/C KyWUKbh4WNKd3rPbYei2Smd0rQ== -----END CERTIFICATE-----Generated at Wed May 13 03:45:45 2026 by rpki-client