$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: JldD4f5Hd4A6V2UpJbSzH4UorjICPr+IZ2LDtg4mEpM= Subject key identifier: CD:67:74:63:D7:03:F3:24:BD:85:4A:57:56:B4:D4:05:B7:91:4E:BF Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 029D Signing time: Wed 13 May 2026 01:40:27 +0000 Manifest this update: Wed 13 May 2026 01:40:27 +0000 Manifest next update: Wed 20 May 2026 01:40:27 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: DIGNvHqG4wtWhz0m1042srifit2vjLRi5qR8Vf862AA=) 2: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: mF+0oU+0n20Cgq5ko570coLg0lSVzI4jtUFqm1rkd8w=) 3: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: 18O7Lp0T09zqzj1uz2UvboEJEAG8f//RjAML5YNM31g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: May 13 01:40:27 2026 GMT Not After : May 20 01:40:27 2026 GMT Subject: CN=6a03d68b-37be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:6d:7d:12:17:80:4b:15:07:8e:a7:a2:cc: d0:08:85:d7:e6:e4:9b:a2:8c:67:f7:69:ba:45:20: 93:ab:3b:5e:48:6d:af:8e:69:bb:62:3f:27:c8:0f: 32:8d:31:32:27:ab:7e:97:59:f5:46:43:d9:74:59: db:71:2a:d0:a7:20:15:39:1f:91:5f:45:b2:1c:2b: fe:3b:cb:40:87:c0:e9:56:34:b9:e1:80:9d:4e:fc: 33:31:8c:10:a6:73:bb:3f:a6:d9:6e:bf:1a:95:77: a8:d1:b3:12:c4:6c:cf:16:0b:92:f7:cc:6e:5f:a3: 18:e9:5d:e1:51:63:8d:97:ab:e7:32:ab:87:78:1e: 55:84:2e:16:ec:47:de:0d:91:ae:43:ce:45:ff:e7: 25:46:2e:16:5f:2c:d7:17:7e:20:bc:b2:fd:ce:09: 30:11:f2:13:8d:75:7e:99:dd:2a:f9:b0:8f:e0:4b: 4d:0e:69:c4:c7:5d:a8:f8:98:62:3a:a8:a3:c8:c4: b2:c0:14:e0:83:4b:05:79:2c:d9:39:1d:5a:67:4c: e5:6b:4a:ae:b3:4c:2a:a2:cd:b4:e2:c4:dd:33:fb: 93:4b:fc:12:05:75:0e:d9:29:08:5b:6d:f1:cb:6f: 6d:e6:85:da:0e:dd:f2:05:a8:ff:1a:c3:87:92:3f: 5d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:67:74:63:D7:03:F3:24:BD:85:4A:57:56:B4:D4:05:B7:91:4E:BF X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:fa:19:62:a5:27:6f:1e:48:3b:05:c9:ff:cf:9d:52:4c:1b: 2a:c1:e7:b6:33:3f:93:bf:d3:37:69:da:41:99:d0:f8:6c:66: b3:2a:73:25:5c:ed:86:6f:b0:b5:2d:94:25:89:dd:c0:a6:10: 60:85:1b:44:b3:81:0f:0d:55:a1:68:8f:38:c5:66:75:b6:96: d9:54:fc:f0:08:6a:e0:65:0e:53:69:e6:5e:86:b7:3f:cb:04: fb:12:f7:49:0b:88:10:c8:45:35:5a:38:e1:1c:86:aa:e8:cc: 03:0d:3a:49:db:1b:cd:48:87:de:64:77:56:56:10:42:94:53: 86:c0:87:a3:3b:d0:42:15:55:60:ef:6d:5d:51:5c:0d:30:0e: b9:82:48:68:03:ad:61:e4:b5:f7:ac:88:1a:5d:7f:6e:35:af: b8:f5:92:d5:30:24:52:3a:9c:94:aa:0c:aa:d9:d7:bc:33:d1: 65:aa:47:fa:7e:07:38:54:f1:b0:38:36:c7:1c:3d:f5:77:e1: 6b:38:e1:f7:7d:b8:90:32:5f:5d:de:0c:80:39:52:8a:6d:85: 01:04:97:26:84:cd:dc:b4:51:d4:a6:ae:02:5e:d3:d3:ea:64: f5:26:2c:27:5d:0c:1b:e3:42:46:fb:1d:04:6e:83:d0:1a:e3: 80:34:bc:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjYwNTEzMDE0MDI3WhcNMjYwNTIwMDE0MDI3WjAYMRYwFAYD VQQDEw02YTAzZDY4Yi0zN2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWVtfRIXgEsVB46noszQCIXX5uSbooxn92m6RSCTqzteSG2vjmm7Yj8nyA8y jTEyJ6t+l1n1RkPZdFnbcSrQpyAVOR+RX0WyHCv+O8tAh8DpVjS54YCdTvwzMYwQ pnO7P6bZbr8alXeo0bMSxGzPFguS98xuX6MY6V3hUWONl6vnMquHeB5VhC4W7Efe DZGuQ85F/+clRi4WXyzXF34gvLL9zgkwEfITjXV+md0q+bCP4EtNDmnEx12o+Jhi OqijyMSywBTgg0sFeSzZOR1aZ0zla0qus0wqos204sTdM/uTS/wSBXUO2SkIW23x y29t5oXaDt3yBaj/GsOHkj9dHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM1ndGPX A/MkvYVKV1a01AW3kU6/MB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXvoZYqUnbx5IOwXJ/8+dUkwbKsHntjM/k7/TN2naQZnQ+GxmsypzJVzthm+w tS2UJYndwKYQYIUbRLOBDw1VoWiPOMVmdbaW2VT88Ahq4GUOU2nmXoa3P8sE+xL3 SQuIEMhFNVo44RyGqujMAw06SdsbzUiH3mR3VlYQQpRThsCHozvQQhVVYO9tXVFc DTAOuYJIaAOtYeS196yIGl1/bjWvuPWS1TAkUjqclKoMqtnXvDPRZapH+n4HOFTx sDg2xxw99Xfhazjh9324kDJfXd4MgDlSim2FAQSXJoTN3LRR1KauAl7T0+pk9SYs J10MG+NCRvsdBG6D0BrjgDS86Q== -----END CERTIFICATE-----Generated at Wed May 13 08:11:36 2026 by rpki-client