$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: F8Yr1Jrul6rRydLKT0CKHuXkNE9p6xEontbu7hztijw= Subject key identifier: 2B:E1:B4:F0:9F:0E:03:FF:1E:D4:83:50:84:43:7B:10:4D:7F:63:4A Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 0639 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 0632 Signing time: Tue 12 May 2026 23:27:58 +0000 Manifest this update: Tue 12 May 2026 23:27:58 +0000 Manifest next update: Tue 19 May 2026 23:27:58 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: Kx8lrI1Ses3YuoXfPBXTTzeEmR3ezmEl/6RjSdXc+lk=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: 3RyEfrC1/+oLdtWYjCCiGJj81mtXCEJfqPIsFdcM1I0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1593 (0x639) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: May 12 23:27:58 2026 GMT Not After : May 19 23:27:58 2026 GMT Subject: CN=6a03b77e-d261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2a:f9:01:6f:b4:30:8e:fd:ab:b0:56:1b:77: 41:5e:bd:8c:21:d3:28:d9:04:38:d8:85:7e:d6:84: 5b:e5:b8:49:5a:08:db:66:d8:11:1f:76:c5:24:15: fe:84:97:09:bb:b2:88:4e:ff:a7:ee:a7:8c:e0:76: b8:22:c9:c1:48:a7:38:af:7d:ea:f0:89:af:93:b7: 80:ad:b0:26:8e:ef:00:74:3a:96:72:b2:c7:b9:6d: 90:df:df:d2:99:d2:7a:e0:9d:13:68:04:76:b2:11: b7:6d:28:60:57:ca:38:70:df:4d:cd:bf:4b:af:42: ca:4c:1c:79:02:f4:c7:33:f2:06:74:e3:24:e4:0b: 9f:8f:28:48:89:88:9a:94:5e:5b:b4:e9:4d:de:85: bc:a7:ec:1c:5d:2e:66:98:65:1a:06:de:1b:07:e7: 43:32:6e:7c:49:08:e5:ec:42:38:bb:61:36:ba:fb: be:0b:24:af:c4:e3:47:24:32:67:42:42:3e:91:7e: 5f:b1:d2:bb:13:f8:fd:2e:2b:a2:cc:9b:cc:91:e9: 2c:f2:92:20:91:05:69:3e:10:2f:b3:ea:74:4c:f4: 04:ec:0c:fb:39:b9:97:48:19:f8:3e:18:c0:50:b9: 05:ae:7b:9c:1e:a5:fc:09:e5:0f:99:6b:77:16:77: 7c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E1:B4:F0:9F:0E:03:FF:1E:D4:83:50:84:43:7B:10:4D:7F:63:4A X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:8a:13:cd:9c:a2:b4:ed:10:8f:8d:92:ed:81:29:b1:cc:2a: 7c:ab:0a:eb:33:5c:ec:ba:0d:af:0c:94:33:51:71:c9:8c:56: d9:81:af:e2:66:a2:00:b2:c1:21:2a:83:01:3d:fb:da:ad:bc: d8:bb:1b:85:9b:73:a1:25:4f:96:49:10:68:ab:e2:c5:69:77: 40:47:dd:f9:5e:cb:5f:cc:00:63:41:e0:54:07:1c:f9:72:76: ab:eb:b0:10:a8:53:bf:e0:3c:c4:b5:c1:1e:7b:69:19:55:0a: 1c:01:9e:29:ad:22:e5:56:27:7e:6f:b3:e6:14:3b:b7:66:39: df:02:a7:f3:7a:d3:18:14:7a:e7:20:ba:10:0f:63:ea:eb:e6: 8e:13:eb:a9:2d:98:70:c4:cd:9a:dd:ed:54:f6:06:9e:0b:94: 93:7d:4a:cd:50:11:bf:78:bc:e6:40:eb:65:8e:42:ed:15:e0: 48:04:0d:16:d3:d7:a7:b0:91:7a:da:69:1e:ca:75:30:86:b0: 1a:cb:d0:23:2a:c2:b5:a9:b8:81:0f:ed:38:f2:57:8e:75:ed: ba:f5:aa:42:40:cf:d2:6d:15:b4:8f:73:bd:9b:0c:10:8d:f1: f5:ae:55:bb:65:f4:41:13:dd:25:50:e6:ff:97:89:43:52:3c: 8d:97:44:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjYwNTEyMjMyNzU4WhcNMjYwNTE5MjMyNzU4WjAYMRYwFAYD VQQDEw02YTAzYjc3ZS1kMjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSr5AW+0MI79q7BWG3dBXr2MIdMo2QQ42IV+1oRb5bhJWgjbZtgRH3bFJBX+ hJcJu7KITv+n7qeM4Ha4IsnBSKc4r33q8Imvk7eArbAmju8AdDqWcrLHuW2Q39/S mdJ64J0TaAR2shG3bShgV8o4cN9Nzb9Lr0LKTBx5AvTHM/IGdOMk5AufjyhIiYia lF5btOlN3oW8p+wcXS5mmGUaBt4bB+dDMm58SQjl7EI4u2E2uvu+CySvxONHJDJn QkI+kX5fsdK7E/j9LiuizJvMkeks8pIgkQVpPhAvs+p0TPQE7Az7ObmXSBn4PhjA ULkFrnucHqX8CeUPmWt3Fnd8CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCvhtPCf DgP/HtSDUIRDexBNf2NKMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsIoTzZyitO0Qj42S7YEpscwqfKsK6zNc7LoNrwyUM1FxyYxW2YGv4maiALLB ISqDAT372q282LsbhZtzoSVPlkkQaKvixWl3QEfd+V7LX8wAY0HgVAcc+XJ2q+uw EKhTv+A8xLXBHntpGVUKHAGeKa0i5VYnfm+z5hQ7t2Y53wKn83rTGBR65yC6EA9j 6uvmjhPrqS2YcMTNmt3tVPYGnguUk31KzVARv3i85kDrZY5C7RXgSAQNFtPXp7CR etppHsp1MIawGsvQIyrCtam4gQ/tOPJXjnXtuvWqQkDP0m0VtI9zvZsMEI3x9a5V u2X0QRPdJVDm/5eJQ1I8jZdE9w== -----END CERTIFICATE-----Generated at Wed May 13 10:46:13 2026 by rpki-client