$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: p/Us42VJTplOxmj1oCB5ZgsJU9joC0qvRcdAuCTDp/Y= Subject key identifier: 66:5D:B3:A5:C4:18:F9:F7:23:4D:11:B1:74:DA:08:D1:BD:D2:DA:0F Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 0572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 0562 Signing time: Tue 12 May 2026 23:29:23 +0000 Manifest this update: Tue 12 May 2026 23:29:23 +0000 Manifest next update: Tue 19 May 2026 23:29:23 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: easmrClcb9zM9iZb82MTag9cOcshOqG9I/OoqZC+dF4=) 2: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: IekuGWz95qJq1RkERKwpFfkq5YP338H+OPjlC3vFHYE=) 3: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: mMzlkdBS5l7zH1NqOtcSGsyrLWVpyJgkzBlaJ0LOo5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: May 12 23:29:23 2026 GMT Not After : May 19 23:29:23 2026 GMT Subject: CN=6a03b7d3-d1b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:14:90:1f:2a:89:0f:90:3f:3a:dd:2f:6c:fd: 01:bd:b1:fb:34:96:69:7b:36:61:20:3b:02:b9:49: a2:64:ce:d2:60:03:79:5c:b7:22:cf:c3:f9:ff:c4: fb:9b:81:7d:2d:15:6e:db:4b:aa:3e:66:d9:c5:e6: 70:3c:2f:71:5d:24:90:de:e3:ae:0d:76:8b:a0:96: 1c:32:f4:a0:0f:66:c8:0c:5f:e2:00:cb:c7:2e:97: 56:70:b7:30:13:b4:8f:2a:a1:5e:d4:2e:3d:3a:f1: 13:64:1b:19:8d:a1:c8:ac:18:ee:6e:7f:ce:d8:ae: 07:b3:8f:7a:de:0a:79:0a:3b:92:63:c7:7e:2c:1e: 6e:3a:7e:2c:7f:b8:0b:9a:2c:c6:89:4b:a5:3f:0f: 8a:fe:a2:82:f4:7c:48:8d:16:1f:99:63:f0:1a:e8: 62:7c:1a:3e:4f:aa:3a:34:22:9a:c9:28:1c:50:4e: d2:63:14:4a:48:60:d3:ad:a8:58:c4:b6:69:e6:06: 89:c4:ea:9c:44:67:c9:05:64:b5:16:91:95:df:e0: 25:32:db:2c:6a:ea:87:e4:d5:b7:22:c5:df:be:e0: 1c:f3:b7:cb:c3:70:f3:91:25:08:85:26:82:48:35: fa:18:e8:ab:5d:62:b8:88:7c:c0:88:ca:e2:55:15: 5a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:5D:B3:A5:C4:18:F9:F7:23:4D:11:B1:74:DA:08:D1:BD:D2:DA:0F X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:64:b9:a7:02:08:b7:61:38:76:f0:3a:b6:87:d9:73:a8:58: d0:a4:a5:61:5d:32:a3:9d:cd:10:78:35:28:80:62:84:81:c1: a6:ef:f0:44:41:7c:bc:37:84:ae:36:5e:9d:22:3c:0b:27:c7: c5:db:15:f4:51:98:34:9b:47:8d:3e:e8:25:71:58:b2:ec:18: 23:6b:00:95:ac:b6:cb:bf:96:a2:8f:c9:3d:50:7c:dc:83:5d: 6f:7c:f5:55:94:34:c7:45:76:88:cb:5b:5a:3c:95:0b:7c:aa: a6:d4:60:db:88:b5:7f:15:8c:91:00:70:77:f4:0a:74:be:7b: 31:92:82:2e:54:44:39:46:70:21:3a:5e:83:70:fc:dc:bf:1e: ce:af:2e:05:b9:c2:5f:44:ac:c2:97:a8:13:b9:8a:a4:68:31: 83:30:96:71:3e:55:90:78:c1:8c:8c:f4:11:02:ce:dc:9f:ee: f9:75:36:82:b7:83:d0:a8:2c:7d:e1:1a:a3:3a:e4:26:5b:3a: 84:63:5c:70:57:10:21:b7:00:97:78:59:34:62:10:fd:e1:ba: 5b:90:91:25:a9:2c:f3:6d:9f:c8:d7:ee:48:eb:5d:c1:e5:e4: c8:f3:f4:be:fb:2f:f8:65:8b:7c:34:9e:2c:9d:8b:94:41:00: 9b:ea:6e:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjYwNTEyMjMyOTIzWhcNMjYwNTE5MjMyOTIzWjAYMRYwFAYD VQQDEw02YTAzYjdkMy1kMWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBSQHyqJD5A/Ot0vbP0BvbH7NJZpezZhIDsCuUmiZM7SYAN5XLciz8P5/8T7 m4F9LRVu20uqPmbZxeZwPC9xXSSQ3uOuDXaLoJYcMvSgD2bIDF/iAMvHLpdWcLcw E7SPKqFe1C49OvETZBsZjaHIrBjubn/O2K4Hs4963gp5CjuSY8d+LB5uOn4sf7gL mizGiUulPw+K/qKC9HxIjRYfmWPwGuhifBo+T6o6NCKaySgcUE7SYxRKSGDTrahY xLZp5gaJxOqcRGfJBWS1FpGV3+AlMtssauqH5NW3IsXfvuAc87fLw3DzkSUIhSaC SDX6GOirXWK4iHzAiMriVRVazQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGZds6XE GPn3I00RsXTaCNG90toPMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHGS5pwIIt2E4dvA6tofZc6hY0KSlYV0yo53NEHg1KIBihIHBpu/wREF8vDeE rjZenSI8CyfHxdsV9FGYNJtHjT7oJXFYsuwYI2sAlay2y7+Woo/JPVB83INdb3z1 VZQ0x0V2iMtbWjyVC3yqptRg24i1fxWMkQBwd/QKdL57MZKCLlREOUZwITpeg3D8 3L8ezq8uBbnCX0SswpeoE7mKpGgxgzCWcT5VkHjBjIz0EQLO3J/u+XU2greD0Kgs feEaozrkJls6hGNccFcQIbcAl3hZNGIQ/eG6W5CRJaks822fyNfuSOtdweXkyPP0 vvsv+GWLfDSeLJ2LlEEAm+puDw== -----END CERTIFICATE-----Generated at Wed May 13 14:42:33 2026 by rpki-client