$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: LNjWU9Ii2yJeV8szDu/j4/JKWdlAL0Wbr6t/0VZOM20= Subject key identifier: 27:FE:43:26:2C:77:30:C6:69:E9:E1:78:FD:85:33:1C:03:CB:6D:21 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 07D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2E6F Signing time: Tue 12 May 2026 15:41:17 +0000 Manifest this update: Tue 12 May 2026 15:41:16 +0000 Manifest next update: Tue 19 May 2026 15:41:16 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: qvw3oNsH0K0Z9EY+GkIkVW6gkpNQbQNY190A++Qa57E=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: 1/JNtgxrsCQgMCZg/xoCtiLGpLNRukBhGSMeMiBFJLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:41:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: May 12 15:41:16 2026 GMT Not After : May 19 15:41:16 2026 GMT Subject: CN=6a034a1d-8e41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:09:c4:b9:42:57:d5:24:1c:9a:34:93:77:e7: cd:0b:63:1e:22:b7:5d:d6:e8:ad:98:a4:d9:2c:b0: 50:a1:da:6e:33:29:09:75:21:b6:d3:5d:93:02:71: 9f:ee:fb:cd:ec:94:5d:89:23:30:fb:78:e9:1d:76: 5b:a0:4d:3b:5f:c0:df:3a:41:96:73:5b:7b:0d:ed: 2a:9e:43:7b:ff:f5:b9:96:09:4f:8e:11:70:4d:2f: c3:83:60:40:ec:51:95:4d:7f:8f:49:71:4c:ae:02: 62:ef:ec:3d:0f:12:30:1d:57:f2:89:28:ea:52:ac: 07:ea:92:37:f6:2f:8a:f6:96:62:06:fe:bf:61:51: 09:30:1c:42:86:81:2a:f9:54:36:80:df:02:2d:f4: 34:8c:dd:30:0f:52:53:36:38:0e:8a:a2:dc:70:c3: ea:44:53:a3:9b:3f:9b:d1:b6:78:0d:0d:3f:2c:c9: f3:1c:3c:7d:10:74:f2:02:c3:2a:e5:68:52:56:c3: 0a:39:a3:6b:3e:d0:3c:2f:b6:9f:f4:42:be:c6:9f: 8b:1e:42:e4:ca:f0:1a:99:37:7f:5b:a3:65:c8:7a: 0a:19:38:01:c9:ac:1b:fd:b6:c2:f3:31:e0:c4:f2: 6f:24:83:3e:88:40:4a:82:23:64:b1:50:83:91:b3: 4f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FE:43:26:2C:77:30:C6:69:E9:E1:78:FD:85:33:1C:03:CB:6D:21 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e1:a4:ca:6a:c2:a5:81:ac:f8:fa:6f:30:48:14:ae:af:2b: ef:4e:95:55:1f:1f:e7:ff:5b:47:2e:16:2d:ba:8a:13:81:99: 6f:ee:36:2f:5f:6d:78:5d:23:a4:a9:0e:e2:79:50:5f:7d:3f: 23:09:9f:70:1c:c2:9c:15:2e:96:cf:35:cd:75:fb:4f:00:10: 96:b6:c7:4c:98:b0:e3:32:45:f7:30:3f:60:04:f6:b9:72:da: 47:45:99:62:38:e8:ea:89:ef:87:ea:23:39:9d:b5:83:b3:43: 9a:05:e7:19:04:9a:f0:d5:4c:ad:24:48:60:d9:c0:b2:ad:2f: dd:e3:a3:44:71:4b:d8:8d:64:e1:3b:7a:6a:fe:30:8c:c4:b3: ba:3e:2f:77:80:1d:80:eb:87:53:9e:a9:31:f7:fc:f5:cf:58: 23:76:d3:90:54:e5:fb:5b:5d:fd:e3:64:82:b0:a5:0a:9d:65: 56:f6:c0:cf:ed:e5:79:3b:72:b8:83:2d:ce:4f:92:27:f9:38: 2f:e8:69:f4:a9:f2:b2:0b:29:d0:79:7e:37:08:43:e6:e1:1c: 80:ae:c7:09:9c:ef:95:19:10:37:34:06:46:98:ee:06:3d:35: 06:c1:d8:63:03:cb:ed:a6:f4:7b:08:ad:d3:fc:e5:d6:6a:b1: 3a:ad:91:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjYwNTEyMTU0MTE2WhcNMjYwNTE5MTU0MTE2WjAYMRYwFAYD VQQDEw02YTAzNGExZC04ZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQnEuUJX1SQcmjSTd+fNC2MeIrdd1uitmKTZLLBQodpuMykJdSG2012TAnGf 7vvN7JRdiSMw+3jpHXZboE07X8DfOkGWc1t7De0qnkN7//W5lglPjhFwTS/Dg2BA 7FGVTX+PSXFMrgJi7+w9DxIwHVfyiSjqUqwH6pI39i+K9pZiBv6/YVEJMBxChoEq +VQ2gN8CLfQ0jN0wD1JTNjgOiqLccMPqRFOjmz+b0bZ4DQ0/LMnzHDx9EHTyAsMq 5WhSVsMKOaNrPtA8L7af9EK+xp+LHkLkyvAamTd/W6NlyHoKGTgByawb/bbC8zHg xPJvJIM+iEBKgiNksVCDkbNPtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCf+QyYs dzDGaenheP2FMxwDy20hMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAROGkymrCpYGs+PpvMEgUrq8r706VVR8f5/9bRy4WLbqKE4GZb+42L19teF0j pKkO4nlQX30/IwmfcBzCnBUuls81zXX7TwAQlrbHTJiw4zJF9zA/YAT2uXLaR0WZ Yjjo6onvh+ojOZ21g7NDmgXnGQSa8NVMrSRIYNnAsq0v3eOjRHFL2I1k4Tt6av4w jMSzuj4vd4AdgOuHU56pMff89c9YI3bTkFTl+1td/eNkgrClCp1lVvbAz+3leTty uIMtzk+SJ/k4L+hp9Knysgsp0Hl+NwhD5uEcgK7HCZzvlRkQNzQGRpjuBj01BsHY YwPL7ab0ewit0/zl1mqxOq2RZA== -----END CERTIFICATE-----Generated at Wed May 13 13:58:29 2026 by rpki-client