$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: kXu7AoJrpomeWf68k5bRrnXjTq8Vg0aQYjp5Ur+aYNA= Subject key identifier: 52:49:46:8B:DE:6E:9C:30:7E:FB:54:8A:CA:0A:1A:98:29:FB:EB:94 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: DA Signing time: Mon 11 May 2026 06:47:56 +0000 Manifest this update: Mon 11 May 2026 06:47:56 +0000 Manifest next update: Mon 18 May 2026 06:47:56 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: vik7Rh4Ed3gft2PH0WCf7IHr9z5c0QWU+Kqy5ocQVPs=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: 6P2hBxUHzqjP2+oG6i740uJYxBeonxP8fzF0Md+3yP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: May 11 06:47:56 2026 GMT Not After : May 18 06:47:56 2026 GMT Subject: CN=6a017b9c-13b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a4:85:89:4d:21:30:7d:2d:e8:2d:7c:08:f0: 47:f6:5e:2c:5e:da:c6:b4:db:5a:f9:79:af:f2:22: 77:ea:0d:f8:ca:5f:8c:5e:47:d4:39:99:56:d8:c9: d1:ce:92:20:2b:e0:87:96:0c:10:51:54:de:79:33: 71:fa:b8:29:f1:ab:3d:f4:26:6e:bc:83:49:8c:4e: 17:c0:4e:4b:f0:ea:a2:7c:eb:88:3f:7f:8f:00:f7: 49:02:ec:9b:14:25:d0:e1:b2:a3:5e:e9:4d:89:7d: 59:a2:f6:a1:6c:4f:19:0c:eb:80:bf:bd:99:15:3d: f1:a8:f1:17:8d:28:0d:03:e1:b7:3b:30:dc:fa:9f: 30:4f:c8:7f:e3:2a:ca:9e:9e:40:da:0b:c3:f5:41: a0:e3:df:c2:1f:2e:7b:55:e3:a2:71:43:cf:a7:38: 0b:2f:a9:95:f8:63:c7:6c:d4:51:54:fd:f7:87:27: c7:c9:26:87:27:2a:7e:f5:aa:50:69:f0:47:e2:08: da:1c:09:67:69:94:64:dc:ce:d3:b3:24:25:cc:78: a2:ed:13:c9:c5:8c:3d:9d:d2:82:35:80:aa:dc:44: e1:19:87:7f:70:da:25:4e:83:c3:0f:04:62:23:ff: 39:ce:bc:0b:9d:e9:24:12:4f:00:b5:7f:cd:21:93: 36:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:49:46:8B:DE:6E:9C:30:7E:FB:54:8A:CA:0A:1A:98:29:FB:EB:94 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:85:f6:4c:5f:24:0d:9f:03:d3:b9:17:c2:cf:95:1a:a3:9f: 1f:af:11:79:f7:9a:df:17:fe:a8:49:2b:2e:54:16:52:df:5b: 02:44:81:79:55:c2:33:59:a3:70:f7:ce:a3:f4:c3:fb:64:17: 35:05:bb:fa:e5:14:2b:be:1d:7e:dc:91:29:5f:71:29:3c:36: 8e:6c:dd:ef:8f:aa:d6:04:d5:d3:6b:05:8c:30:89:e1:de:fa: 85:c4:8e:0d:d8:83:81:68:d6:d8:95:fa:5c:09:1c:25:c0:02: 1c:cb:9c:d4:81:b5:fa:ae:c5:b1:3e:d7:f3:97:6e:e4:d6:39: 29:18:ad:ac:60:63:d0:62:23:1e:98:ed:da:9d:76:b0:7c:0b: b5:d8:44:2d:25:64:21:06:e9:72:ef:45:33:0e:22:5f:af:11: 2e:33:b2:eb:ac:7c:58:ce:c6:0f:f7:28:0c:f4:77:9f:d2:75: e0:3e:e0:38:76:bb:e0:ed:17:7b:d1:ef:0d:03:cc:27:9b:e4: a3:18:dc:5e:e5:75:b4:c8:77:4d:54:76:b8:da:45:a8:f1:0e: 44:50:31:06:6c:b4:e5:1b:4e:e0:c9:83:49:5a:76:9c:81:cf: 39:1f:15:fa:19:61:bb:9d:f6:ae:1f:ad:96:22:f9:07:6c:2f: 7e:24:7c:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKEIwMzQxQzM0M0ZFMTUyNUY3NkM5Mjk5NjEwQ0EwRTc4 RTkzRTg3QzMwHhcNMjYwNTExMDY0NzU2WhcNMjYwNTE4MDY0NzU2WjAYMRYwFAYD VQQDEw02YTAxN2I5Yy0xM2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaSFiU0hMH0t6C18CPBH9l4sXtrGtNta+Xmv8iJ36g34yl+MXkfUOZlW2MnR zpIgK+CHlgwQUVTeeTNx+rgp8as99CZuvINJjE4XwE5L8OqifOuIP3+PAPdJAuyb FCXQ4bKjXulNiX1ZovahbE8ZDOuAv72ZFT3xqPEXjSgNA+G3OzDc+p8wT8h/4yrK np5A2gvD9UGg49/CHy57VeOicUPPpzgLL6mV+GPHbNRRVP33hyfHySaHJyp+9apQ afBH4gjaHAlnaZRk3M7TsyQlzHii7RPJxYw9ndKCNYCq3EThGYd/cNolToPDDwRi I/85zrwLnekkEk8AtX/NIZM2GQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFJJRove bpwwfvtUisoKGpgp++uUMB8GA1UdIwQYMBaAFLA0HDQ/4VJfdskplhDKDnjpPofD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80MkZDM0Q4QTA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVsOTJ5U21XRU1vT2VPay1o OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZCQS80MkZDM0Q4QTA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVs OTJ5U21XRU1vT2VPay1oOE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcIX2TF8kDZ8D07kXws+VGqOfH68Refea3xf+qEkrLlQWUt9bAkSBeVXCM1mj cPfOo/TD+2QXNQW7+uUUK74dftyRKV9xKTw2jmzd74+q1gTV02sFjDCJ4d76hcSO DdiDgWjW2JX6XAkcJcACHMuc1IG1+q7FsT7X85du5NY5KRitrGBj0GIjHpjt2p12 sHwLtdhELSVkIQbpcu9FMw4iX68RLjOy66x8WM7GD/coDPR3n9J14D7gOHa74O0X e9HvDQPMJ5vkoxjcXuV1tMh3TVR2uNpFqPEORFAxBmy05RtO4MmDSVp2nIHPOR8V +hlhu532rh+tliL5B2wvfiR8XA== -----END CERTIFICATE-----Generated at Wed May 13 07:17:09 2026 by rpki-client