$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: /rijo4GKQfi95PoxvOSINHLuZOYPjhmItR5fLKrFge4= Subject key identifier: 19:56:BF:20:21:D1:9D:A0:EC:45:11:54:BE:47:C0:3A:DC:65:A6:10 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 0207 Signing time: Mon 11 May 2026 03:04:04 +0000 Manifest this update: Mon 11 May 2026 03:04:03 +0000 Manifest next update: Mon 18 May 2026 03:04:03 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: vF8Wb9rLAIGR7eEe5pt4ljg1u9sITaFzsJ8wYdXXbe4=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: ChPU5idLRzFBAUfZXdVDn4ZS21EQnqWVbj2XL7b56XA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: May 11 03:04:03 2026 GMT Not After : May 18 03:04:03 2026 GMT Subject: CN=6a014724-69ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4a:74:6f:e9:21:b7:a5:7f:c9:ac:f2:81:ae: 14:d9:51:29:f4:1c:96:a1:ac:bf:71:1d:8b:63:ec: 3b:0e:c5:b2:20:30:ba:94:0e:ae:55:d9:9a:c1:4d: 3e:79:b1:5c:63:a9:bb:6f:36:a3:5d:7c:ee:4b:d8: e1:f8:94:44:7d:8d:31:22:e8:d1:13:f3:4a:4a:0c: b2:2b:11:4b:a8:58:55:e3:73:e3:18:5a:1a:4e:1c: 46:f0:21:b0:07:cc:9a:57:9c:5e:9c:1e:45:89:99: d5:41:98:d3:03:6d:cc:d8:f6:85:9c:ea:55:21:10: 58:76:27:56:c5:74:8e:58:b3:c3:b4:e4:e1:70:95: 9c:69:e5:49:a0:3d:a5:2f:07:b5:74:af:81:c5:79: fc:b3:2d:19:bb:e4:5e:43:32:e0:28:84:f3:95:4a: 4c:80:c8:c0:2c:84:d2:4b:6c:20:08:e4:1a:97:92: fd:fc:c8:4c:9f:5d:d5:35:5e:97:23:de:5e:1b:12: 40:65:d8:8d:04:1f:ca:73:be:6d:73:ea:82:ef:c5: 77:ab:99:f2:13:f5:46:24:5c:08:d4:72:17:4b:81: d1:92:ba:39:77:17:8b:c7:54:f2:c9:48:b5:e8:9d: 9e:39:5e:fd:97:cf:c8:70:63:21:0c:42:a6:f5:55: 5d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:56:BF:20:21:D1:9D:A0:EC:45:11:54:BE:47:C0:3A:DC:65:A6:10 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:11:0e:af:19:0b:68:f7:02:79:ab:b2:e0:e4:35:15:fa:95: e8:1b:fe:72:29:79:cd:ae:2d:b6:58:97:1a:f7:6c:61:7c:19: 82:2e:8b:65:f6:51:33:2b:aa:45:7d:4b:8e:3e:8e:95:2f:69: 60:19:58:8e:99:08:35:03:44:d4:58:03:49:2d:1f:76:93:22: ee:54:5b:98:61:77:a2:73:34:c6:e1:4b:b4:23:73:2f:65:a5: 70:93:7a:43:0f:3c:e2:65:70:58:24:79:24:06:32:56:7a:1b: 39:1a:f3:62:ab:c2:43:8c:f0:fa:60:88:c6:24:93:34:c0:ea: 23:ce:5a:73:1f:3f:97:fd:8a:c8:ba:82:1b:84:92:af:c8:3d: ca:99:c7:58:26:2f:9f:f2:68:40:b9:a7:d9:b6:87:24:8f:88: ed:a5:b3:52:69:a0:d7:40:3f:0b:31:42:03:33:8d:bf:df:00: fe:16:2b:18:07:52:85:9c:20:98:c5:fd:df:3c:ee:df:58:70: 21:89:79:32:cb:18:63:23:7a:23:96:c1:8d:a7:66:6d:d8:0a: bd:da:41:c9:90:f4:72:f8:f8:71:c7:0d:12:8b:e9:20:c7:ed: 65:fe:a4:a7:f8:1d:a8:92:fb:a0:9d:1f:0f:a6:2f:52:d9:95: af:c9:f0:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwNTExMDMwNDAzWhcNMjYwNTE4MDMwNDAzWjAYMRYwFAYD VQQDEw02YTAxNDcyNC02OWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20p0b+kht6V/yazyga4U2VEp9ByWoay/cR2LY+w7DsWyIDC6lA6uVdmawU0+ ebFcY6m7bzajXXzuS9jh+JREfY0xIujRE/NKSgyyKxFLqFhV43PjGFoaThxG8CGw B8yaV5xenB5FiZnVQZjTA23M2PaFnOpVIRBYdidWxXSOWLPDtOThcJWcaeVJoD2l Lwe1dK+BxXn8sy0Zu+ReQzLgKITzlUpMgMjALITSS2wgCOQal5L9/MhMn13VNV6X I95eGxJAZdiNBB/Kc75tc+qC78V3q5nyE/VGJFwI1HIXS4HRkro5dxeLx1TyyUi1 6J2eOV79l8/IcGMhDEKm9VVdxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBlWvyAh 0Z2g7EURVL5HwDrcZaYQMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADBEOrxkLaPcCeauy4OQ1FfqV6Bv+cil5za4ttliXGvdsYXwZgi6LZfZRMyuq RX1Ljj6OlS9pYBlYjpkINQNE1FgDSS0fdpMi7lRbmGF3onM0xuFLtCNzL2WlcJN6 Qw884mVwWCR5JAYyVnobORrzYqvCQ4zw+mCIxiSTNMDqI85acx8/l/2KyLqCG4SS r8g9ypnHWCYvn/JoQLmn2baHJI+I7aWzUmmg10A/CzFCAzONv98A/hYrGAdShZwg mMX93zzu31hwIYl5MssYYyN6I5bBjadmbdgKvdpByZD0cvj4cccNEovpIMftZf6k p/gdqJL7oJ0fD6YvUtmVr8nwfQ== -----END CERTIFICATE-----Generated at Wed May 13 03:40:22 2026 by rpki-client