$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: OMLZT5CAN/+j2UhQlzVsFICdU52jztVVIKua5kbywS4= Subject key identifier: FB:AE:29:C2:33:35:BA:FC:B0:F3:94:31:35:AD:5C:59:40:A9:47:1C Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: B8 Signing time: Mon 11 May 2026 07:12:55 +0000 Manifest this update: Mon 11 May 2026 07:12:54 +0000 Manifest next update: Mon 18 May 2026 07:12:54 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: JeIwih3y9p2g+bB9Yjwis2XgXZUYJKJWgJ0Ip9cg/rs=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: CoN2ChPQA1qn/Xvwh+q1CXaNL7awqOvoz+KnawFyjQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: May 11 07:12:54 2026 GMT Not After : May 18 07:12:54 2026 GMT Subject: CN=6a018177-3208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:65:47:73:aa:34:2e:b8:8a:2f:c9:c6:f7:ea: e8:78:48:bd:bf:5f:2c:e9:f0:67:29:ca:27:eb:4e: b1:ae:37:fe:39:f9:47:f8:a9:a2:db:b6:67:43:d9: a8:63:05:28:39:b8:3e:48:78:65:de:93:2c:01:9d: 37:e2:9a:d4:e2:60:7b:08:fa:8c:43:fc:db:7c:f6: f7:07:82:b8:b6:cd:dd:f2:2c:ad:c5:fa:4f:22:ff: 9f:c1:6a:a6:cd:24:eb:6c:19:cc:5f:2c:eb:dc:c2: 3c:8c:88:56:d4:a0:56:f8:6b:bd:3d:44:33:a8:ac: d3:c8:ea:c5:5c:6f:5b:e6:bd:16:70:c8:01:19:9d: da:d4:2a:1c:7d:d8:f8:8e:95:4d:c7:89:b7:ce:17: b0:60:d7:88:e1:d9:3c:a0:c6:27:d3:8d:a8:92:98: 5c:6c:05:12:27:73:bf:fa:4b:47:0a:e6:24:49:21: 7e:af:16:4a:64:7b:3e:6f:e5:ed:69:41:8f:40:fe: 15:09:54:c6:67:32:a2:66:02:d2:79:39:e8:b7:ee: 4b:79:42:ba:db:04:8c:82:b1:0e:22:cc:0e:ff:7c: a4:19:7b:cc:19:26:cb:51:90:41:d7:d2:f8:11:38: 38:88:52:1c:0e:62:be:0a:7f:4c:08:d9:ed:39:4b: 37:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AE:29:C2:33:35:BA:FC:B0:F3:94:31:35:AD:5C:59:40:A9:47:1C X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:47:37:9e:19:c9:5f:28:3c:eb:e7:d3:f0:bf:f5:16:5f:27: f1:15:85:7a:b0:49:0a:1a:83:d9:4f:91:7b:ce:25:b5:de:09: 44:2c:44:72:b7:61:94:a3:57:08:a0:6f:8c:53:38:d3:43:9d: fd:c0:20:df:05:f2:7d:6a:40:ae:30:fb:7e:bd:41:22:8f:07: 85:88:3c:f7:3b:46:d5:2a:e7:69:b5:e5:3b:3f:42:58:b7:24: 0d:24:e9:74:a6:7c:45:0c:b0:bb:54:71:48:eb:41:f5:d3:34: b8:98:b0:4e:b5:5f:6f:38:ef:53:28:41:93:64:50:88:86:fc: eb:ad:65:79:4d:ad:61:63:4e:43:67:1c:46:37:1e:ea:38:ac: 49:6d:02:1a:85:3a:db:fa:77:59:4d:fd:15:89:d1:cb:45:63: ba:79:46:e8:65:92:45:0b:a4:7e:b9:3f:fa:9f:5f:9e:aa:13: da:84:0f:f2:0f:1c:29:da:3f:f0:ec:c2:2c:e8:e0:fd:a0:70: 9f:29:b1:a2:04:65:28:fd:5d:b2:64:15:e9:0d:f0:1b:69:16: f2:f1:17:b6:55:7c:98:de:06:90:3d:e9:19:91:a3:19:cc:58: d5:56:18:7e:b1:6d:c0:e4:82:77:04:3f:3d:27:da:c1:cc:fd: 49:d6:ff:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5NzUxMTAvBgNVBAUTKDBDNjg1ODIyOEMzMDE3NDgyQkRDN0YzOTgxRTg5OEI5 NTZEQUEwMjkwHhcNMjYwNTExMDcxMjU0WhcNMjYwNTE4MDcxMjU0WjAYMRYwFAYD VQQDEw02YTAxODE3Ny0zMjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WVHc6o0LriKL8nG9+roeEi9v18s6fBnKcon606xrjf+OflH+Kmi27ZnQ9mo YwUoObg+SHhl3pMsAZ034prU4mB7CPqMQ/zbfPb3B4K4ts3d8iytxfpPIv+fwWqm zSTrbBnMXyzr3MI8jIhW1KBW+Gu9PUQzqKzTyOrFXG9b5r0WcMgBGZ3a1Cocfdj4 jpVNx4m3zhewYNeI4dk8oMYn042okphcbAUSJ3O/+ktHCuYkSSF+rxZKZHs+b+Xt aUGPQP4VCVTGZzKiZgLSeTnot+5LeUK62wSMgrEOIswO/3ykGXvMGSbLUZBB19L4 ETg4iFIcDmK+Cn9MCNntOUs3kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPuuKcIz Nbr8sPOUMTWtXFlAqUccMB8GA1UdIwQYMBaAFAxoWCKMMBdIK9x/OYHomLlW2qAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk3NS82N0M3QTQyQTNB MjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0YwZ3IzSDg1Z2VpWXVWYmFv Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk3NS82N0M3QTQyQTNBMjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0Yw Z3IzSDg1Z2VpWXVWYmFvQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANEc3nhnJXyg86+fT8L/1Fl8n8RWFerBJChqD2U+Re84ltd4JRCxEcrdhlKNX CKBvjFM400Od/cAg3wXyfWpArjD7fr1BIo8HhYg89ztG1SrnabXlOz9CWLckDSTp dKZ8RQywu1RxSOtB9dM0uJiwTrVfbzjvUyhBk2RQiIb8661leU2tYWNOQ2ccRjce 6jisSW0CGoU62/p3WU39FYnRy0VjunlG6GWSRQukfrk/+p9fnqoT2oQP8g8cKdo/ 8OzCLOjg/aBwnymxogRlKP1dsmQV6Q3wG2kW8vEXtlV8mN4GkD3pGZGjGcxY1VYY frFtwOSCdwQ/PSfawcz9Sdb/AA== -----END CERTIFICATE-----Generated at Wed May 13 03:38:18 2026 by rpki-client