$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: J5rXhVKMnIGRdf1qgw+8HjufdnjJIhpZJ3oHDJJ+Qt0= Subject key identifier: DE:81:14:15:4D:0A:BE:FA:84:AB:DB:CF:9B:E2:18:25:47:A8:22:4D Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0C87 Signing time: Tue 12 May 2026 18:38:30 +0000 Manifest this update: Tue 12 May 2026 18:38:29 +0000 Manifest next update: Tue 19 May 2026 18:38:29 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: gSDV8/EhllC62apZPifP1TP4Lgy8yIzgjQ7XiA3x3jw=) 2: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (hash: wgK4ZuIIb0twemfmKGJQ9J4VlAgOAeotYnSBFamHuz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: May 12 18:38:29 2026 GMT Not After : May 19 18:38:29 2026 GMT Subject: CN=6a0373a5-21fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:37:5f:97:61:d3:44:69:5c:c8:1d:27:8f:be: fe:a3:69:93:ab:ce:2a:2f:e3:e9:97:2e:c3:2d:53: ad:f6:d9:4c:ac:bb:cf:52:22:ad:1e:20:fe:83:8c: 13:33:e4:46:af:93:90:0f:fc:38:b0:e4:4e:b7:22: 28:d0:1b:4d:d3:7f:66:a7:b4:d4:70:60:be:33:48: f6:6a:23:35:c0:a2:b4:52:27:1b:77:e7:ac:e1:31: c2:18:a0:3b:7e:fb:a8:c8:29:9a:41:be:87:0b:a5: f0:45:41:d3:7e:b4:9d:84:d1:79:6e:d5:29:c4:6f: 1c:b8:18:e8:32:80:c9:1c:7f:37:a3:19:d2:0a:2b: 07:8d:fd:45:34:94:3c:77:c4:ea:8a:e5:c7:e4:eb: 0c:89:95:0d:c7:84:2c:22:e6:66:07:0f:4c:ff:23: e5:33:3d:ce:1b:00:97:54:60:23:87:56:10:f6:76: a5:38:05:14:26:93:bc:34:de:30:7f:de:51:04:42: 7c:90:fd:ae:33:40:90:03:03:1a:cc:d3:4c:d6:d2: 76:04:6f:cb:ef:73:ba:70:ac:6f:da:4d:37:9c:47: 45:13:9b:01:2b:68:52:36:40:bc:b3:db:dd:bb:d8: c6:54:04:98:7d:05:68:67:36:9a:a6:bf:59:32:e6: f3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:81:14:15:4D:0A:BE:FA:84:AB:DB:CF:9B:E2:18:25:47:A8:22:4D X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:99:97:b6:98:57:97:a3:57:4f:fe:a0:8a:33:3c:84:88:7f: 87:b5:60:90:ea:dc:39:c0:11:14:db:e1:93:16:3e:da:c4:84: c8:a8:6b:c8:d2:6d:b9:2a:c3:c9:af:ff:e1:08:12:21:12:2b: fc:fe:e0:6d:c4:ae:ec:97:7d:02:f3:6d:90:7f:3d:95:43:08: d9:7f:a7:91:e2:e8:31:cf:77:56:ef:b9:41:43:12:4e:ac:f7: 06:6a:3e:90:e8:e3:6a:ac:2d:62:5e:de:26:3a:f1:88:b1:11: 89:e6:bd:c0:88:7f:f0:43:d6:34:75:29:12:da:11:b1:35:8e: a5:ae:f6:7c:08:e6:a1:ae:a9:95:47:55:78:43:12:b1:1f:b7: 10:38:e7:f9:3c:51:59:c4:f7:12:48:de:ef:a3:a9:ad:ed:e5: 11:87:71:51:7b:04:99:79:b1:88:dc:44:dd:19:9a:44:b2:38: ca:8e:e2:e8:c5:45:5a:7d:58:64:de:31:90:b2:b6:cb:e4:5b: 91:63:32:9c:89:27:7c:eb:09:80:f3:bd:46:a5:bf:61:9b:41: af:7a:c1:07:2b:72:f3:b9:7e:3f:5a:35:ae:39:3f:ab:e7:1b: b7:1b:f7:cc:b3:2a:f5:27:d0:44:c7:11:2f:71:05:6a:0b:d4: f0:ba:5a:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjYwNTEyMTgzODI5WhcNMjYwNTE5MTgzODI5WjAYMRYwFAYD VQQDEw02YTAzNzNhNS0yMWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjdfl2HTRGlcyB0nj77+o2mTq84qL+Pply7DLVOt9tlMrLvPUiKtHiD+g4wT M+RGr5OQD/w4sOROtyIo0BtN039mp7TUcGC+M0j2aiM1wKK0Uicbd+es4THCGKA7 fvuoyCmaQb6HC6XwRUHTfrSdhNF5btUpxG8cuBjoMoDJHH83oxnSCisHjf1FNJQ8 d8TqiuXH5OsMiZUNx4QsIuZmBw9M/yPlMz3OGwCXVGAjh1YQ9nalOAUUJpO8NN4w f95RBEJ8kP2uM0CQAwMazNNM1tJ2BG/L73O6cKxv2k03nEdFE5sBK2hSNkC8s9vd u9jGVASYfQVoZzaapr9ZMubzIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN6BFBVN Cr76hKvbz5viGCVHqCJNMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPJmXtphXl6NXT/6gijM8hIh/h7VgkOrcOcARFNvhkxY+2sSEyKhryNJtuSrD ya//4QgSIRIr/P7gbcSu7Jd9AvNtkH89lUMI2X+nkeLoMc93Vu+5QUMSTqz3Bmo+ kOjjaqwtYl7eJjrxiLERiea9wIh/8EPWNHUpEtoRsTWOpa72fAjmoa6plUdVeEMS sR+3EDjn+TxRWcT3Ekje76Opre3lEYdxUXsEmXmxiNxE3RmaRLI4yo7i6MVFWn1Y ZN4xkLK2y+RbkWMynIknfOsJgPO9RqW/YZtBr3rBByty87l+P1o1rjk/q+cbtxv3 zLMq9SfQRMcRL3EFagvU8Lpa5w== -----END CERTIFICATE-----Generated at Wed May 13 04:28:25 2026 by rpki-client