$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: MUf9ybe/9SPe4Pw9UbvJHXd1ts0QfZBZcnB0QfXtwJI= Subject key identifier: 87:F2:09:BD:F9:FB:C1:26:B5:A6:87:AA:3A:95:19:87:D9:AD:97:34 Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: A3 Signing time: Mon 11 May 2026 07:25:03 +0000 Manifest this update: Mon 11 May 2026 07:25:02 +0000 Manifest next update: Mon 18 May 2026 07:25:02 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: TBb/sIhIv7pqVhs5NUZx5F0kzRSaABip64O65XTJxno=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: GVEpvnEFQk1r8mTWmBDvESje+/1MN9Uk5AtUa2pXkUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: May 11 07:25:02 2026 GMT Not After : May 18 07:25:02 2026 GMT Subject: CN=6a01844e-a810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d7:96:6d:bf:eb:e3:72:0a:de:c9:dd:0c:7e: 7c:e4:66:b2:f0:cb:5a:62:ed:50:fb:ba:d0:39:82: e0:c1:a5:57:53:5e:0a:72:18:3f:21:a3:a8:4d:8b: 4f:51:bc:bb:d2:a0:db:51:16:d7:72:3b:6d:ba:b2: a9:47:7a:41:71:6b:55:a5:8a:6c:9f:03:5d:d8:23: 23:24:62:2c:59:dc:17:60:f1:8a:22:57:2e:74:e3: 0b:92:71:26:11:8c:ee:8e:e9:85:a7:67:3c:4a:8a: 37:d3:c0:56:3e:75:2b:57:79:3b:26:f3:25:45:97: 27:ce:ed:d0:48:56:1b:0d:a7:d0:de:e4:45:9a:7f: 97:67:6a:32:48:79:ea:76:2a:5d:b0:9a:90:4e:92: c8:ce:bf:ba:b7:1b:35:60:c8:e1:ca:f5:11:61:f3: 76:d0:4e:56:05:79:dc:47:e3:f5:c0:8a:ce:b3:73: 32:5d:f7:9d:57:43:e3:79:cc:78:90:f2:da:59:5c: 16:fd:76:b0:29:ba:55:a6:55:0c:6e:a2:4c:a0:97: 18:ff:5d:d6:f1:f7:ad:ff:0d:47:2f:35:78:9b:87: b1:4b:43:dc:70:7d:41:af:d0:bc:f8:98:94:6e:83: 67:a7:94:7f:e9:be:0e:50:5b:75:08:3d:98:c0:05: 1c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F2:09:BD:F9:FB:C1:26:B5:A6:87:AA:3A:95:19:87:D9:AD:97:34 X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:bd:ad:dc:c0:0a:f1:cb:98:cd:43:8d:86:1c:83:4c:51:59: a6:aa:d4:c6:da:4d:7f:ff:5d:7c:f7:10:f4:e4:08:82:90:ff: c2:f2:92:fd:b9:2c:62:91:fa:43:67:92:6b:87:44:67:b6:e3: 9e:dc:b4:eb:55:7b:08:68:6f:66:87:49:90:9c:58:b5:f9:1c: 50:66:1c:13:c5:47:8f:91:a3:60:af:a9:76:04:7d:a9:83:04: e8:95:83:60:4c:94:7d:4d:64:73:5d:80:f4:ea:62:4a:65:1d: 24:01:dd:d4:cf:8c:e7:aa:54:6f:db:e9:6d:75:7f:44:7b:0e: af:f8:75:fa:ad:3b:9c:3f:df:45:8b:d2:b1:b7:61:35:d5:b6: a6:53:c8:7d:90:44:e5:60:51:ad:fe:99:83:f6:d6:8d:af:2e: 69:5d:d2:62:26:e8:d3:25:9b:a3:6b:c4:91:09:75:cd:a2:06: 04:60:50:e6:1a:9f:ba:60:dd:4c:38:6b:d8:a8:02:bb:fd:22: ec:ea:9a:81:47:32:92:47:56:93:9b:e2:20:d7:d8:b4:89:7c: 2d:42:f1:a5:53:37:7f:2a:93:fd:64:53:9d:d8:d1:6c:89:de: de:e4:98:6c:c9:12:a8:52:36:19:a3:f6:a9:dd:e8:8e:ca:a0: f0:56:23:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKDNFQzdCMUE2REEyMUExQTc3NTgxNUQxQ0JGRTcyMzE0 QjhBOTVERDkwHhcNMjYwNTExMDcyNTAyWhcNMjYwNTE4MDcyNTAyWjAYMRYwFAYD VQQDEw02YTAxODQ0ZS1hODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkdeWbb/r43IK3sndDH585Gay8MtaYu1Q+7rQOYLgwaVXU14Kchg/IaOoTYtP Uby70qDbURbXcjtturKpR3pBcWtVpYpsnwNd2CMjJGIsWdwXYPGKIlcudOMLknEm EYzujumFp2c8Soo308BWPnUrV3k7JvMlRZcnzu3QSFYbDafQ3uRFmn+XZ2oySHnq dipdsJqQTpLIzr+6txs1YMjhyvURYfN20E5WBXncR+P1wIrOs3MyXfedV0Pjecx4 kPLaWVwW/XawKbpVplUMbqJMoJcY/13W8fet/w1HLzV4m4exS0PccH1Br9C8+JiU boNnp5R/6b4OUFt1CD2YwAUcGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIfyCb35 +8EmtaaHqjqVGYfZrZc0MB8GA1UdIwQYMBaAFD7HsabaIaGndYFdHL/nIxS4qV3Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DRTBFREEyNjU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi9Qc2V4cHRvaG9hZDFnVjBjdi1jakZMaXBY ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DRTBFREEyNjU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi9Qc2V4cHRvaG9h ZDFnVjBjdi1jakZMaXBYZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkb2t3MAK8cuYzUONhhyDTFFZpqrUxtpNf/9dfPcQ9OQIgpD/wvKS/bksYpH6 Q2eSa4dEZ7bjnty061V7CGhvZodJkJxYtfkcUGYcE8VHj5GjYK+pdgR9qYME6JWD YEyUfU1kc12A9OpiSmUdJAHd1M+M56pUb9vpbXV/RHsOr/h1+q07nD/fRYvSsbdh NdW2plPIfZBE5WBRrf6Zg/bWja8uaV3SYibo0yWbo2vEkQl1zaIGBGBQ5hqfumDd TDhr2KgCu/0i7OqagUcykkdWk5viINfYtIl8LULxpVM3fyqT/WRTndjRbIne3uSY bMkSqFI2GaP2qd3ojsqg8FYjhw== -----END CERTIFICATE-----Generated at Wed May 13 03:25:16 2026 by rpki-client