$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: YDTk1wbuidLg56BCZLGHcaX2UPvijSpP9VH+vK/lr0Q= Subject key identifier: 41:66:E7:F2:0A:1B:AF:32:66:CA:56:8E:CC:B7:5D:43:71:0D:9D:0D Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: A4 Signing time: Wed 13 May 2026 07:23:16 +0000 Manifest this update: Wed 13 May 2026 07:23:15 +0000 Manifest next update: Wed 20 May 2026 07:23:15 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: oSbCz70nak030eDzXlaK9R5FLqd6LZXiF3GePGj4b7w=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: weUBuaqXjk5/5+ZvfK6KOqbWfTtXBnBwNWpgK2K7P90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: May 13 07:23:15 2026 GMT Not After : May 20 07:23:15 2026 GMT Subject: CN=6a0426e4-f4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ba:38:c3:05:ed:8b:6d:ed:72:10:94:2c:52: d3:58:95:11:64:8c:dc:4a:b1:6b:60:c1:c5:28:15: 81:d2:c4:63:1f:69:52:ae:1d:7b:39:b6:cc:ac:3a: fc:59:f2:55:30:16:07:d0:b0:e2:fb:af:dd:7e:fb: 3a:94:4d:b6:10:78:b4:fa:ab:01:6d:82:4d:1f:10: a6:4a:0d:4f:da:90:9f:fe:3b:8f:4e:16:6b:2c:a0: 71:1d:d1:10:1a:cb:61:f2:7e:63:6f:aa:36:22:a8: 05:ef:fc:da:c9:73:b4:c8:b1:6b:d3:0d:9f:0d:3f: f1:d7:d5:b5:3c:b1:ae:ea:c7:6d:f4:27:d9:2e:18: cd:83:b2:57:b9:cc:69:a8:74:ea:67:51:bb:55:bd: cd:be:b0:82:f4:d0:a7:d2:70:3b:d1:97:1b:0a:40: 12:08:58:4f:37:76:cb:13:e6:40:ba:3e:d6:0d:2b: e9:f5:9c:35:8d:11:8c:50:98:ee:a2:5b:46:6a:79: 2b:c3:42:83:03:34:1a:18:89:e5:71:ec:6d:2b:b8: 74:63:16:55:6a:21:ea:a7:69:d8:b9:e1:84:f6:fc: aa:73:6b:8f:34:4a:0d:c0:26:18:62:d6:61:f5:66: bf:3c:5c:6f:df:85:54:33:19:58:b1:36:84:5a:63: de:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:66:E7:F2:0A:1B:AF:32:66:CA:56:8E:CC:B7:5D:43:71:0D:9D:0D X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:65:52:81:7d:4f:b3:3b:14:b3:c8:10:40:35:01:4d:0d:ac: 9c:b8:57:f9:ec:f3:25:7b:f7:59:2d:21:ca:83:7d:ff:2d:10: ca:df:fa:f5:0f:5a:88:8b:d8:37:bf:ee:b3:2c:5e:80:77:b2: 64:73:92:00:ae:0b:8f:37:13:a1:aa:e4:6f:5e:92:ec:23:fd: 0a:91:9a:9e:2f:08:fc:dd:ff:b9:ba:fa:fa:e7:66:e5:44:2b: f3:f0:4b:d3:d7:49:9c:43:b1:de:85:b8:1e:06:0e:7d:5f:a0: 3e:1f:32:ec:74:71:91:b0:ea:bb:91:6c:21:e3:0c:39:40:ae: e5:01:f7:67:21:70:1e:76:57:14:ec:7d:dd:ed:51:37:78:24: 5d:0f:63:d2:05:74:bd:29:24:9a:eb:4e:9e:f4:38:85:02:03: b4:4d:cd:b7:d1:07:6c:0d:3f:58:aa:60:b1:ee:3e:47:2b:98: 28:63:77:64:34:4b:ea:0a:33:01:4c:7b:4f:e0:5c:d1:a8:6b: 88:fd:48:a4:b6:ad:08:c6:5c:ec:76:23:ca:d6:83:dd:6c:9f: 5e:5b:25:8b:b0:29:16:8c:11:c5:41:e8:97:1e:13:75:f5:06: 81:53:2a:e7:b0:d4:3b:86:7e:68:f7:17:4a:d9:2f:4d:24:bd: 0a:eb:7c:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKEQ0MjU2RURDMkJDMTFDODQ1REI1MDdCN0MwQTg5MzU0 NDYyRUI2M0QwHhcNMjYwNTEzMDcyMzE1WhcNMjYwNTIwMDcyMzE1WjAYMRYwFAYD VQQDEw02YTA0MjZlNC1mNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Lo4wwXti23tchCULFLTWJURZIzcSrFrYMHFKBWB0sRjH2lSrh17ObbMrDr8 WfJVMBYH0LDi+6/dfvs6lE22EHi0+qsBbYJNHxCmSg1P2pCf/juPThZrLKBxHdEQ Gsth8n5jb6o2IqgF7/zayXO0yLFr0w2fDT/x19W1PLGu6sdt9CfZLhjNg7JXucxp qHTqZ1G7Vb3NvrCC9NCn0nA70ZcbCkASCFhPN3bLE+ZAuj7WDSvp9Zw1jRGMUJju oltGankrw0KDAzQaGInlcextK7h0YxZVaiHqp2nYueGE9vyqc2uPNEoNwCYYYtZh 9Wa/PFxv34VUMxlYsTaEWmPelwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEFm5/IK G68yZspWjsy3XUNxDZ0NMB8GA1UdIwQYMBaAFNQlbtwrwRyEXbUHt8Cok1RGLrY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DNTU5NDI0QTU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJUmR0UWUzd0tpVFZFWXV0 ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DNTU5NDI0QTU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJ UmR0UWUzd0tpVFZFWXV0ajAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXGVSgX1PszsUs8gQQDUBTQ2snLhX+ezzJXv3WS0hyoN9/y0Qyt/69Q9aiIvY N7/usyxegHeyZHOSAK4LjzcToarkb16S7CP9CpGani8I/N3/ubr6+udm5UQr8/BL 09dJnEOx3oW4HgYOfV+gPh8y7HRxkbDqu5FsIeMMOUCu5QH3ZyFwHnZXFOx93e1R N3gkXQ9j0gV0vSkkmutOnvQ4hQIDtE3Nt9EHbA0/WKpgse4+RyuYKGN3ZDRL6goz AUx7T+Bc0ahriP1IpLatCMZc7HYjytaD3WyfXlsli7ApFowRxUHolx4TdfUGgVMq 57DUO4Z+aPcXStkvTSS9Cut8PQ== -----END CERTIFICATE-----Generated at Wed May 13 11:58:20 2026 by rpki-client