$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: QUQK92eBlkUOqiW1PnIxx+Rlux4j1QM7nj+IzLtg+lM= Subject key identifier: CD:E9:DA:15:B2:83:81:FA:95:3F:81:8C:68:47:A6:1C:FE:46:2A:81 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 0253 Signing time: Mon 11 May 2026 02:20:20 +0000 Manifest this update: Mon 11 May 2026 02:20:19 +0000 Manifest next update: Mon 18 May 2026 02:20:19 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: k9c9UhHlKsCQNiSo2Q8qCbvUVXWeqp6uimxxj+25hWg=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: cFTNjWmWAl/Ioxhdrn8peplOv2/LEeZJ3Jpud6hMyaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 11 02:20:19 2026 GMT Not After : May 18 02:20:19 2026 GMT Subject: CN=6a013ce4-a175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:8c:70:4b:7f:4b:67:63:d5:ba:91:ad:7c: 1a:43:95:18:b6:71:ca:91:ae:3f:1e:d3:36:84:f5: 98:01:bb:5f:b5:1e:be:87:03:55:e6:17:d3:de:84: 56:8e:cd:a4:47:a7:4f:6e:67:35:4f:72:a4:12:b8: a5:9e:e7:5a:4e:71:90:0c:9c:e9:e0:98:2f:ea:d5: 96:8e:d3:29:7b:65:5e:2a:4e:26:ff:8f:63:ab:24: 0b:aa:e0:70:7e:e7:0f:58:96:b7:6d:70:03:5f:37: 19:7e:05:59:5b:ed:06:aa:1b:4c:5f:6a:ec:d2:0e: 6c:63:76:f0:66:64:af:c5:97:d6:74:35:42:63:17: fa:37:f0:c0:f7:d5:96:bc:98:7d:af:de:92:bd:4b: aa:4e:30:35:74:e9:61:8f:58:e0:77:ad:a0:b8:12: 80:1e:2c:47:9a:d9:b9:e2:41:c7:92:84:71:83:c7: b3:8c:5c:8d:e3:5d:ee:b5:74:b2:c6:2e:43:70:02: 66:c2:92:4b:7d:16:11:7c:67:32:79:79:92:06:2a: fc:0d:a0:58:b1:b0:b8:e9:cb:8f:b5:c1:c5:95:61: bb:71:80:88:34:d6:8c:1d:ca:8b:43:09:ec:95:84: 19:7c:00:23:02:d9:7c:4b:4d:c0:07:11:66:40:1d: b7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E9:DA:15:B2:83:81:FA:95:3F:81:8C:68:47:A6:1C:FE:46:2A:81 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:dd:b7:28:10:ca:00:76:de:53:ff:3b:2f:dc:dc:24:ce:9a: 03:37:f8:9c:f5:0c:61:07:b3:bc:52:06:54:7c:bf:58:6e:34: a0:18:11:9d:50:6d:5f:24:68:b9:56:76:9d:ba:ef:96:e0:3a: c1:fd:21:e1:94:fb:68:3f:f4:85:0e:2d:c2:62:c5:8e:58:72: 8e:a2:72:d9:61:04:74:dd:4d:e6:6f:a5:e6:e9:e0:b7:2f:a1: 1a:4b:92:b4:e5:0b:3b:27:40:06:2e:40:83:ab:04:ff:28:4b: f8:ec:78:1b:14:57:07:15:f5:a8:34:07:8a:91:92:d1:32:3a: 6d:6e:49:1a:6b:6c:6c:a0:82:aa:ac:8c:06:30:58:5d:a1:19: 25:35:c6:2d:e8:f1:2d:22:41:17:bf:48:6d:d6:ba:e6:9a:a1: 1f:b3:f7:67:7e:84:54:6c:6f:eb:09:50:26:b5:4f:b9:c5:83: dc:09:65:70:5c:27:bf:67:e3:cc:5b:3b:7f:ca:76:b7:6f:e4: a8:9e:e3:b0:94:7c:ea:be:41:15:6a:a0:bd:0b:25:a1:87:42: 80:e4:c1:71:95:95:2d:66:c5:a0:6f:bd:46:9f:31:8f:a0:34: 79:84:23:03:d3:a8:2c:36:c1:75:a1:6a:51:83:e5:77:35:ad: 0b:ed:b1:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjYwNTExMDIyMDE5WhcNMjYwNTE4MDIyMDE5WjAYMRYwFAYD VQQDEw02YTAxM2NlNC1hMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC6McEt/S2dj1bqRrXwaQ5UYtnHKka4/HtM2hPWYAbtftR6+hwNV5hfT3oRW js2kR6dPbmc1T3KkErilnudaTnGQDJzp4Jgv6tWWjtMpe2VeKk4m/49jqyQLquBw fucPWJa3bXADXzcZfgVZW+0GqhtMX2rs0g5sY3bwZmSvxZfWdDVCYxf6N/DA99WW vJh9r96SvUuqTjA1dOlhj1jgd62guBKAHixHmtm54kHHkoRxg8ezjFyN413utXSy xi5DcAJmwpJLfRYRfGcyeXmSBir8DaBYsbC46cuPtcHFlWG7cYCINNaMHcqLQwns lYQZfAAjAtl8S03ABxFmQB23FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3p2hWy g4H6lT+BjGhHphz+RiqBMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkt23KBDKAHbeU/87L9zcJM6aAzf4nPUMYQezvFIGVHy/WG40oBgRnVBtXyRo uVZ2nbrvluA6wf0h4ZT7aD/0hQ4twmLFjlhyjqJy2WEEdN1N5m+l5ungty+hGkuS tOULOydABi5Ag6sE/yhL+Ox4GxRXBxX1qDQHipGS0TI6bW5JGmtsbKCCqqyMBjBY XaEZJTXGLejxLSJBF79Ibda65pqhH7P3Z36EVGxv6wlQJrVPucWD3AllcFwnv2fj zFs7f8p2t2/kqJ7jsJR86r5BFWqgvQsloYdCgOTBcZWVLWbFoG+9Rp8xj6A0eYQj A9OoLDbBdaFqUYPldzWtC+2xTQ== -----END CERTIFICATE-----Generated at Wed May 13 00:56:12 2026 by rpki-client