$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: tMuVvWB5ELpmrQrMCreqko79jncwlJDNppohZjb7em0= Subject key identifier: B9:EB:CB:54:10:0A:EB:C3:B9:7B:6F:B6:6F:75:E6:25:CE:10:E9:20 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1C4A Signing time: Tue 12 May 2026 16:13:12 +0000 Manifest this update: Tue 12 May 2026 16:13:11 +0000 Manifest next update: Tue 19 May 2026 16:13:11 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: kx5xrC/Psy/EGYkv61ArWb92OkDp4bmiurmi/Z+/qrQ=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: fv4oRIQ4Gxh8CoHiTKL/BcGQRnYE0nj0QiSPtWSrjAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7263 (0x1c5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: May 12 16:13:11 2026 GMT Not After : May 19 16:13:11 2026 GMT Subject: CN=6a035197-1040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:db:f9:96:22:a9:9d:6f:76:25:ae:93:1e:16: ba:cf:53:54:48:25:d3:c6:b8:97:47:63:16:06:8a: 6d:6e:a8:94:93:7c:0d:0a:20:a1:86:a1:6b:02:60: b7:ec:32:bf:be:94:78:49:e9:7c:db:04:d4:0a:e5: fd:f7:c7:46:b8:c3:9b:6b:28:ef:04:a7:e3:be:cf: 7c:06:53:ec:49:b1:00:b7:39:90:68:29:34:29:72: ff:7d:6a:87:66:50:cb:6e:e0:1d:57:d9:f0:c6:d5: a9:54:e0:69:06:5d:83:e2:4a:2a:f1:17:32:52:45: b0:f1:73:97:51:5a:a1:ce:bb:62:e5:57:84:7e:48: b9:ae:6a:cb:f4:81:82:54:d9:5e:e2:83:11:80:37: 80:b9:e0:d7:19:29:44:02:48:bf:fe:8a:83:f4:85: ec:ab:03:16:f1:89:3b:a7:1f:e6:be:36:98:7f:31: b7:2d:29:99:fa:c1:ec:72:f0:92:69:f4:5b:14:63: f0:47:43:95:bb:72:0c:ac:88:f6:44:f1:7e:f1:e9: f0:f1:5b:75:15:ff:a8:85:8d:c4:38:16:f3:57:da: 4b:05:39:cd:0a:d6:b0:97:24:45:4b:1c:bf:f6:ae: 37:6a:15:84:d7:13:08:ae:f7:00:52:d5:37:43:87: 6a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EB:CB:54:10:0A:EB:C3:B9:7B:6F:B6:6F:75:E6:25:CE:10:E9:20 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6e:cd:7e:3a:f2:f3:b6:13:d5:6f:34:8c:38:4f:c8:e9:3d: 20:bc:b0:54:9e:36:a7:40:08:c5:36:ef:af:84:89:e6:a9:a6: 16:56:7a:45:b1:af:1d:51:b6:27:65:c8:28:82:c1:17:e0:5f: 51:29:a4:64:80:f9:64:21:f4:34:5a:8f:2d:14:78:6c:de:81: f9:f3:2e:66:81:d5:0b:c0:73:44:75:03:f3:a4:8d:79:3d:46: 13:fd:41:b5:e4:50:8a:52:cd:a0:14:6a:38:56:13:f2:cc:fe: 3e:86:32:61:16:6f:8c:27:e2:ab:71:86:2a:e8:8a:0d:70:32: 99:6f:b2:7e:64:85:68:2b:08:fb:11:f4:35:7e:6b:4e:54:cc: e8:cd:8e:49:fe:ef:d7:ab:1e:6b:8a:1a:33:fd:9c:44:58:e4: 77:5e:37:32:67:a9:ec:a9:80:71:34:d8:bb:c8:1f:77:6b:c7: c0:d0:14:1e:46:40:dc:07:55:11:af:65:c8:02:c3:ae:e5:f8: 44:54:ee:eb:8b:4a:97:da:5a:6a:3e:bd:f0:30:53:6f:be:d6: 4a:83:ec:3a:7f:cf:e5:28:27:ae:eb:83:36:9a:f4:01:e0:2d: 7b:cf:70:8b:89:09:3e:f3:43:4f:f3:86:89:d7:5d:7e:74:cb: 27:d6:ca:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjYwNTEyMTYxMzExWhcNMjYwNTE5MTYxMzExWjAYMRYwFAYD VQQDEw02YTAzNTE5Ny0xMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNv5liKpnW92Ja6THha6z1NUSCXTxriXR2MWBoptbqiUk3wNCiChhqFrAmC3 7DK/vpR4Sel82wTUCuX998dGuMObayjvBKfjvs98BlPsSbEAtzmQaCk0KXL/fWqH ZlDLbuAdV9nwxtWpVOBpBl2D4koq8RcyUkWw8XOXUVqhzrti5VeEfki5rmrL9IGC VNle4oMRgDeAueDXGSlEAki//oqD9IXsqwMW8Yk7px/mvjaYfzG3LSmZ+sHscvCS afRbFGPwR0OVu3IMrIj2RPF+8enw8Vt1Ff+ohY3EOBbzV9pLBTnNCtawlyRFSxy/ 9q43ahWE1xMIrvcAUtU3Q4dq6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLnry1QQ CuvDuXtvtm915iXOEOkgMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJG7Nfjry87YT1W80jDhPyOk9ILywVJ42p0AIxTbvr4SJ5qmmFlZ6RbGvHVG2 J2XIKILBF+BfUSmkZID5ZCH0NFqPLRR4bN6B+fMuZoHVC8BzRHUD86SNeT1GE/1B teRQilLNoBRqOFYT8sz+PoYyYRZvjCfiq3GGKuiKDXAymW+yfmSFaCsI+xH0NX5r TlTM6M2OSf7v16sea4oaM/2cRFjkd143Mmep7KmAcTTYu8gfd2vHwNAUHkZA3AdV Ea9lyALDruX4RFTu64tKl9paaj698DBTb77WSoPsOn/P5SgnruuDNpr0AeAte89w i4kJPvNDT/OGidddfnTLJ9bKkA== -----END CERTIFICATE-----Generated at Wed May 13 13:10:31 2026 by rpki-client