$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: /Xps9on5Nf3ehA3S2uAAWmgYaiQQTC24h9IdvNgu8YQ= Subject key identifier: 38:AA:4A:5A:61:CB:7C:29:7A:79:DF:A5:0A:A6:1C:70:10:0C:92:75 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 01EA Signing time: Tue 12 May 2026 18:36:16 +0000 Manifest this update: Tue 12 May 2026 18:36:15 +0000 Manifest next update: Tue 19 May 2026 18:36:15 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: WptdkQfDeUlW9UZOgX1O+aSRyUAY0dt9zMyRyKTtksk=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: tSRP0mSyeCxo4ldlJd0x8udwsUTZBLiY2tDABXr5M1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: May 12 18:36:15 2026 GMT Not After : May 19 18:36:15 2026 GMT Subject: CN=6a037320-271b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:54:b0:cd:fa:16:50:b8:97:d7:a6:00:0c:5d: a0:66:8e:09:cb:c0:bb:40:0c:56:55:19:1c:c6:87: cc:20:c0:f4:3f:d4:44:f4:33:95:f7:65:8d:41:4c: 74:30:9f:18:38:d9:16:f9:b3:ec:f7:c6:ef:5d:e8: d9:0d:70:52:14:27:d0:ca:7a:6c:4a:8c:0b:a0:c1: 78:40:d7:ea:58:b2:61:8c:5e:50:5a:54:b1:68:b5: f3:0c:68:f5:47:77:b1:aa:c1:f4:a2:cc:b5:55:78: 46:db:ff:a4:41:4a:c8:9a:c9:11:17:cb:ad:d7:ea: 56:05:db:5e:87:bb:d7:b2:39:02:ed:80:b3:41:d5: 42:1b:20:7e:87:02:a3:c7:a5:e6:b8:92:1e:ec:24: f6:05:e6:3f:88:b1:39:e9:ce:cc:d2:93:9e:da:fa: b7:84:a9:ca:e2:37:a6:fe:d2:bc:a0:74:81:40:5c: e0:7c:93:c6:22:07:b6:13:28:02:62:7b:4e:68:a1: 32:33:31:f1:3f:08:95:99:6f:6d:bf:f8:f3:32:9a: f9:62:d8:ca:48:ab:06:c1:17:21:13:55:b8:7d:a5: cc:c4:69:4d:b8:b7:c1:a1:3d:ea:92:82:55:4d:7a: 7a:bc:7c:0b:1d:d9:3a:dd:e4:57:32:56:5b:60:da: 35:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AA:4A:5A:61:CB:7C:29:7A:79:DF:A5:0A:A6:1C:70:10:0C:92:75 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:0b:e9:fc:9c:4c:8a:78:f4:80:ac:bc:47:f4:c2:72:8e:82: 99:95:bb:b4:61:c7:aa:b6:c6:e8:0d:56:59:4e:de:9d:6b:11: 70:48:a0:b4:f4:f6:ad:29:36:8e:d3:06:fd:78:52:6c:b5:f1: 7c:ad:21:0c:2f:fb:71:55:fe:94:7c:97:d0:c5:db:af:e9:f8: 04:c8:45:79:64:78:86:02:b5:65:43:d3:47:e6:57:f1:be:ae: 00:0c:1a:74:66:64:c4:a7:cc:69:1e:65:2b:9f:d1:70:53:59: 4d:ae:fe:32:6f:41:ca:b3:49:4e:9c:af:d1:a1:ae:60:2b:3a: fb:20:b3:00:df:fd:cc:7d:a0:c7:cf:14:1a:31:16:96:91:3f: 29:37:82:74:c7:3c:8b:95:e4:93:bc:d5:72:5a:15:31:e4:34: af:d2:74:78:a2:6a:1b:40:31:b8:c5:f5:54:78:68:3e:d5:eb: 76:6d:f7:87:01:ce:6a:78:1f:8a:b5:70:86:58:14:28:c5:b9: b3:4e:dc:d4:d3:55:d3:e6:a0:dc:95:71:eb:f8:24:83:f0:51: 47:b4:14:b6:d9:05:af:ff:e2:a1:8c:22:15:41:f3:cb:e8:f6: fa:94:09:03:07:ac:d9:8f:a4:b1:9d:94:a1:96:f3:27:99:50: fb:58:27:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjYwNTEyMTgzNjE1WhcNMjYwNTE5MTgzNjE1WjAYMRYwFAYD VQQDEw02YTAzNzMyMC0yNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFSwzfoWULiX16YADF2gZo4Jy8C7QAxWVRkcxofMIMD0P9RE9DOV92WNQUx0 MJ8YONkW+bPs98bvXejZDXBSFCfQynpsSowLoMF4QNfqWLJhjF5QWlSxaLXzDGj1 R3exqsH0osy1VXhG2/+kQUrImskRF8ut1+pWBdteh7vXsjkC7YCzQdVCGyB+hwKj x6XmuJIe7CT2BeY/iLE56c7M0pOe2vq3hKnK4jem/tK8oHSBQFzgfJPGIge2EygC YntOaKEyMzHxPwiVmW9tv/jzMpr5YtjKSKsGwRchE1W4faXMxGlNuLfBoT3qkoJV TXp6vHwLHdk63eRXMlZbYNo10wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDiqSlph y3wpennfpQqmHHAQDJJ1MB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIQvp/JxMinj0gKy8R/TCco6CmZW7tGHHqrbG6A1WWU7enWsRcEigtPT2rSk2 jtMG/XhSbLXxfK0hDC/7cVX+lHyX0MXbr+n4BMhFeWR4hgK1ZUPTR+ZX8b6uAAwa dGZkxKfMaR5lK5/RcFNZTa7+Mm9ByrNJTpyv0aGuYCs6+yCzAN/9zH2gx88UGjEW lpE/KTeCdMc8i5Xkk7zVcloVMeQ0r9J0eKJqG0AxuMX1VHhoPtXrdm33hwHOangf irVwhlgUKMW5s07c1NNV0+ag3JVx6/gkg/BRR7QUttkFr//ioYwiFUHzy+j2+pQJ Awes2Y+ksZ2UoZbzJ5lQ+1gn+Q== -----END CERTIFICATE-----Generated at Wed May 13 11:19:47 2026 by rpki-client