$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: Z+uqp0bh4c8bA04++zBS89ZUpU1/mKwfjpckI/D8F+Q= Subject key identifier: 0B:2C:B3:F0:8B:1F:18:22:31:AE:EA:C8:61:9F:AF:94:A1:81:EA:E1 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 04BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 04B1 Signing time: Wed 13 May 2026 00:01:58 +0000 Manifest this update: Wed 13 May 2026 00:01:57 +0000 Manifest next update: Wed 20 May 2026 00:01:57 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: ZY89zKqDd6pH3qTACXjZH+caA44MGjt9R3b7qrV637s=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: BfgbyrDUSPaDFbvmIvU+wE2M70H25WXoCbwhEXrv7bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: May 13 00:01:57 2026 GMT Not After : May 20 00:01:57 2026 GMT Subject: CN=6a03bf75-6406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:af:70:01:b0:71:ac:22:72:c2:70:da:57:93: 15:b3:83:4e:c0:93:26:b2:8a:c4:c2:85:c4:f4:69: 93:35:1e:6f:73:7e:fd:3d:08:f8:e4:e1:b4:ff:85: 97:03:1b:3d:a9:c2:9e:56:d4:e0:bf:dc:a6:f3:36: 75:3b:eb:cf:40:07:83:ce:c2:d0:a2:1b:21:84:3b: 83:c2:ad:b2:85:b5:48:fe:6b:cb:71:11:97:3a:28: c0:30:ea:2d:d0:ca:7a:84:5e:41:c3:9d:72:a9:8a: 0c:f5:ff:4e:bf:5a:c8:48:8e:17:de:6b:ce:44:17: e0:6b:c2:c5:c6:65:2a:cf:9d:76:57:53:03:36:3d: 38:c7:d6:b7:72:b0:10:43:2c:73:79:44:9a:a8:47: a0:2f:27:f2:58:79:1e:a7:3c:2f:9e:80:3d:59:d8: 07:41:80:91:60:b2:6c:ac:80:35:6c:b6:b7:71:fe: 05:03:80:f4:13:7f:93:b5:88:8e:e4:9e:1d:0c:01: a3:c1:3c:3f:a4:2c:b7:3e:4a:a1:20:6a:2a:1a:42: c3:9d:e8:95:9c:3c:ee:d7:1a:0f:cc:55:fd:11:46: a1:d9:e9:c5:56:fa:51:79:b9:55:c0:02:6c:bf:34: b9:8b:2b:ba:d7:50:06:06:fb:75:17:8b:4f:a7:8d: b0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2C:B3:F0:8B:1F:18:22:31:AE:EA:C8:61:9F:AF:94:A1:81:EA:E1 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:8f:26:df:dc:ea:b4:14:f0:27:8c:f9:51:aa:48:51:46:44: 65:e4:fd:a3:86:dd:30:c1:27:80:9e:af:35:d6:c6:f4:fd:09: 23:2f:fd:46:e5:3e:1b:c0:8a:75:d6:bb:ee:a0:e4:d5:f5:c0: 4c:33:91:37:f0:1b:1a:b9:af:36:ff:df:f2:c7:04:88:f8:9b: 89:ae:8e:a1:bd:5f:2c:e3:bf:8e:80:b1:c7:87:20:2f:f7:ad: d9:28:cc:a5:9e:2b:c7:0f:6b:42:9f:9b:2e:ed:92:c4:0d:8c: bd:2f:4d:eb:26:d4:e8:1d:34:f5:cd:e3:b8:aa:39:7b:90:dc: 20:ac:1e:8d:11:6d:65:a5:44:00:b6:9a:23:45:c4:8b:3f:44: f2:18:30:33:27:f9:07:5f:e4:46:a2:25:46:47:a8:55:83:b5: 2a:ef:1c:7c:e0:4e:33:8a:27:4a:0b:3a:33:c2:09:81:e7:67: 65:53:bd:de:b6:15:74:bb:d0:6b:69:a8:52:56:74:13:ff:b9: b1:9f:71:85:59:3d:56:d3:7b:ba:54:e8:6d:5a:05:67:73:83: 96:9f:e8:d0:90:a9:de:83:dc:20:5b:26:75:2a:ad:97:ca:be: 73:ad:3b:1d:bb:67:50:54:d9:f0:d4:e5:4f:9f:76:3d:51:d0: 2d:be:6b:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjYwNTEzMDAwMTU3WhcNMjYwNTIwMDAwMTU3WjAYMRYwFAYD VQQDEw02YTAzYmY3NS02NDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn69wAbBxrCJywnDaV5MVs4NOwJMmsorEwoXE9GmTNR5vc379PQj45OG0/4WX Axs9qcKeVtTgv9ym8zZ1O+vPQAeDzsLQohshhDuDwq2yhbVI/mvLcRGXOijAMOot 0Mp6hF5Bw51yqYoM9f9Ov1rISI4X3mvORBfga8LFxmUqz512V1MDNj04x9a3crAQ QyxzeUSaqEegLyfyWHkepzwvnoA9WdgHQYCRYLJsrIA1bLa3cf4FA4D0E3+TtYiO 5J4dDAGjwTw/pCy3PkqhIGoqGkLDneiVnDzu1xoPzFX9EUah2enFVvpReblVwAJs vzS5iyu611AGBvt1F4tPp42wIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAsss/CL HxgiMa7qyGGfr5ShgerhMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzY8m39zqtBTwJ4z5UapIUUZEZeT9o4bdMMEngJ6vNdbG9P0JIy/9RuU+G8CK dda77qDk1fXATDORN/AbGrmvNv/f8scEiPibia6Oob1fLOO/joCxx4cgL/et2SjM pZ4rxw9rQp+bLu2SxA2MvS9N6ybU6B009c3juKo5e5DcIKwejRFtZaVEALaaI0XE iz9E8hgwMyf5B1/kRqIlRkeoVYO1Ku8cfOBOM4onSgs6M8IJgednZVO93rYVdLvQ a2moUlZ0E/+5sZ9xhVk9VtN7ulTobVoFZ3ODlp/o0JCp3oPcIFsmdSqtl8q+c607 HbtnUFTZ8NTlT592PVHQLb5rvg== -----END CERTIFICATE-----Generated at Wed May 13 02:58:33 2026 by rpki-client