$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: Mx5x7TmF3jUCmI85nJErxsz145PzYrch3UBxx3QNwg4= Subject key identifier: 41:EF:EA:DF:33:5C:8F:DE:26:F4:D5:33:9E:BE:23:23:82:E5:ED:95 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 0247 Signing time: Mon 11 May 2026 02:29:29 +0000 Manifest this update: Mon 11 May 2026 02:29:29 +0000 Manifest next update: Mon 18 May 2026 02:29:29 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: xy4/IQmiLdGHbfoWzXhXcWp3auGYDcoBb8op2zJLkcE=) 2: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: sE0FXcv6AB6dmDFKiWcu8KQiOOpk2VVY0iuOGiUmgoI=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: LUHYZ/6kqurL/jOA9WsqOIbXqqpGM7KM4Mk7l+DENE0=) 4: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RremoPLYHwOMsWIoI3OXSWs8zLNwfSA8SoWwpFXqkZA=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: GKQTSqIzwIY4GOth+FkYLT5SOAlB26R/4wVLOg8mq+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: May 11 02:29:29 2026 GMT Not After : May 18 02:29:29 2026 GMT Subject: CN=6a013f09-e9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ff:58:3b:cf:c9:7e:d3:a9:75:aa:f1:55:fa: 39:d4:03:0d:2f:71:ad:91:1c:0b:f0:8e:96:34:ae: 11:f4:06:ab:ea:37:41:e7:be:39:69:2e:e9:53:3d: 3e:8d:71:04:cb:75:bc:f8:22:d1:04:62:d2:04:86: b3:45:9c:54:6e:bd:0d:f0:b2:04:95:b2:4a:c9:7c: 81:e8:7b:7c:9c:97:d4:70:c3:05:a3:48:ab:6b:a9: 46:18:24:e2:7c:00:cc:ea:4e:6d:23:a3:d3:2e:b5: aa:63:a9:a8:96:49:68:10:df:24:33:3e:ef:57:fe: aa:cb:56:2c:b5:c5:d3:05:3d:c0:00:7f:d0:68:a2: 17:c2:b4:9f:9c:fd:82:84:cb:02:71:95:39:7c:a2: b9:f5:25:39:e7:f9:a9:21:cf:a1:61:e6:c8:c2:d5: 73:bc:65:eb:56:be:ca:cc:e7:aa:ef:90:42:14:97: a3:a8:f7:ce:5d:d0:26:ee:3d:9b:dd:2d:03:b6:14: f1:c8:85:3c:97:f3:26:8d:7b:5e:aa:11:35:9f:bf: a2:64:2e:23:6f:55:33:f5:cf:84:05:b5:82:55:ed: f3:6b:b0:b9:6d:40:ad:1d:08:21:a0:b2:db:c1:ca: fc:e6:0f:33:05:b8:fa:c7:01:b5:fa:28:1c:cd:30: 96:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EF:EA:DF:33:5C:8F:DE:26:F4:D5:33:9E:BE:23:23:82:E5:ED:95 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:66:e8:35:90:bf:b4:0e:ed:d9:bc:1b:ab:c5:7d:0b:f0:9b: b2:a8:e0:33:30:5e:e0:4c:0f:08:1a:f3:b1:bc:76:29:25:69: 9c:26:88:91:36:30:b1:fb:7d:c9:0a:6e:9b:7d:39:60:ad:4f: 6b:5a:de:6c:36:a2:dd:b9:67:5b:9a:d8:04:6e:3b:46:4d:18: 98:27:78:b1:09:e0:7c:d8:f6:d1:5c:db:f6:d8:fa:38:2a:0d: 7f:d7:f5:18:21:4b:ca:99:78:eb:ce:e5:03:89:39:7d:e0:3d: a1:a0:14:d2:9a:bf:13:13:3d:cc:c1:f8:b4:52:8d:e5:9b:6c: 08:59:27:47:29:9b:45:c8:ab:59:04:fb:fe:36:04:bc:9e:fa: c1:dc:10:af:73:02:1e:13:6a:71:04:38:18:44:05:15:68:aa: 40:94:35:46:c2:1d:3e:04:0c:b4:f8:d1:5d:e9:ad:36:ee:6a: 80:53:bd:db:1e:99:0e:bb:2c:33:ca:f8:49:36:dc:07:e0:e1: 6e:75:e8:bf:8c:36:a5:5b:b6:fc:8f:2c:b6:08:e5:36:a7:4b: 92:06:a3:44:ff:fd:02:ae:e3:03:a0:a7:ae:60:6f:ee:e9:d2: c6:3d:55:bd:97:f5:ef:ea:a2:7e:ec:52:75:0d:71:8f:84:9e: 9c:1a:0e:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjYwNTExMDIyOTI5WhcNMjYwNTE4MDIyOTI5WjAYMRYwFAYD VQQDEw02YTAxM2YwOS1lOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnv9YO8/JftOpdarxVfo51AMNL3GtkRwL8I6WNK4R9Aar6jdB5745aS7pUz0+ jXEEy3W8+CLRBGLSBIazRZxUbr0N8LIElbJKyXyB6Ht8nJfUcMMFo0ira6lGGCTi fADM6k5tI6PTLrWqY6molkloEN8kMz7vV/6qy1YstcXTBT3AAH/QaKIXwrSfnP2C hMsCcZU5fKK59SU55/mpIc+hYebIwtVzvGXrVr7KzOeq75BCFJejqPfOXdAm7j2b 3S0DthTxyIU8l/MmjXteqhE1n7+iZC4jb1Uz9c+EBbWCVe3za7C5bUCtHQghoLLb wcr85g8zBbj6xwG1+igczTCWUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEHv6t8z XI/eJvTVM56+IyOC5e2VMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdmboNZC/tA7t2bwbq8V9C/CbsqjgMzBe4EwPCBrzsbx2KSVpnCaIkTYwsft9 yQpum305YK1Pa1rebDai3blnW5rYBG47Rk0YmCd4sQngfNj20Vzb9tj6OCoNf9f1 GCFLypl4687lA4k5feA9oaAU0pq/ExM9zMH4tFKN5ZtsCFknRymbRcirWQT7/jYE vJ76wdwQr3MCHhNqcQQ4GEQFFWiqQJQ1RsIdPgQMtPjRXemtNu5qgFO92x6ZDrss M8r4STbcB+DhbnXov4w2pVu2/I8stgjlNqdLkgajRP/9Aq7jA6CnrmBv7unSxj1V vZf17+qifuxSdQ1xj4SenBoOnA== -----END CERTIFICATE-----Generated at Wed May 13 01:26:58 2026 by rpki-client