$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: PsiSQgNfRn5OQhl+H3fxcfqfagnpFaGYbStd5byIPpM= Subject key identifier: DD:3E:58:63:DB:9D:83:DA:5D:32:9E:E7:8C:38:34:E8:7B:28:88:A6 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D4D Signing time: Tue 12 May 2026 18:02:11 +0000 Manifest this update: Tue 12 May 2026 18:02:11 +0000 Manifest next update: Tue 19 May 2026 18:02:11 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: RGi8omFjiGhqQS+JYjvQDbbsf0cdkEWASvD5HvHcdaU=) 2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: X8sSkThLSb4fvyIS1pC23KDUjsj3Bu29OZPUHsBaV1A=) 3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: Aw64/YmY/GSEcpV9lRNLIVB3nggqqcAVaMWqQLrAoig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3423 (0xd5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: May 12 18:02:11 2026 GMT Not After : May 19 18:02:11 2026 GMT Subject: CN=6a036b23-9cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:73:83:a4:95:ce:1b:4e:45:71:fa:5a:5f:69: 8a:e0:8a:2a:ed:7c:db:5d:d8:48:d3:ad:8a:50:80: c0:54:b9:86:43:7d:99:25:73:3a:9f:a5:98:e9:fd: 47:08:0e:c6:97:fb:5b:ce:34:74:c3:2c:68:a8:83: a8:a7:5f:a8:32:2c:8a:79:eb:8f:68:13:23:61:96: 4e:a4:37:ae:8a:9b:14:9c:72:95:db:0a:21:76:4d: 16:b3:5f:df:f2:cd:e6:fc:55:f2:5a:36:d0:00:c1: 7a:75:22:d4:ab:65:22:9b:2a:f1:74:e7:32:b8:6e: ef:44:ef:f7:0f:e7:1b:69:21:5a:73:cd:5e:4f:d1: c6:34:d4:c0:4b:0a:66:a4:5d:b1:ff:7b:22:66:e1: 22:4d:1c:0b:f6:3f:13:8d:dc:75:dc:2a:17:3f:cc: 7f:b2:fc:9d:d8:90:dd:f1:1a:af:a5:e7:1f:d7:1c: 01:0d:29:b7:d5:1c:0b:20:78:31:d7:45:62:b2:8d: 72:07:87:ca:2b:4c:cf:3b:91:54:16:69:2c:53:20: 29:aa:b9:e9:c5:fe:ca:e5:51:29:e7:a1:58:ac:d0: 9e:48:11:cf:04:56:31:39:7f:ac:22:18:24:07:13: 8f:4f:ae:b4:b6:a9:3d:32:9f:28:bb:66:6a:ab:7c: e9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3E:58:63:DB:9D:83:DA:5D:32:9E:E7:8C:38:34:E8:7B:28:88:A6 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:6d:3e:f6:f7:76:8e:45:32:93:bc:87:72:9f:7a:a4:8b:24: 33:65:c9:0e:9b:9b:33:de:cd:09:bd:73:ba:ea:29:6a:4e:85: 4a:9d:6c:be:8f:d4:67:bc:ed:22:61:c8:46:42:c9:86:db:fd: e0:69:ec:47:05:03:e4:a6:07:ad:95:bc:f7:a0:cd:c3:ef:03: 67:2b:fa:9e:bb:09:ac:d5:a0:de:59:d3:d9:2f:d0:48:6e:d0: 23:e1:7c:4a:e4:fc:ee:7d:d4:d7:20:50:9a:e1:9d:d7:e6:a7: fe:2b:d6:18:01:21:6b:48:b1:0a:f3:75:5a:be:d5:b0:29:7a: 84:d0:70:73:be:4b:80:b7:5c:0f:41:be:02:90:4e:9c:06:1e: 23:3c:c9:ab:6c:69:d4:cb:47:8d:64:5e:27:a9:12:e9:73:25: 55:ef:6d:e5:19:cf:53:31:c6:9d:70:2f:37:14:43:c2:cb:90: d9:7c:ae:97:15:51:00:a9:72:f4:68:78:89:3b:8c:d2:5e:cf: a3:4c:48:67:66:a7:3d:49:65:ff:42:09:b5:a2:b9:4b:36:05: 6d:27:2d:96:ff:f0:91:2e:ae:6c:1f:32:51:a0:67:09:59:5f: 2e:1f:d2:0e:da:33:4c:ce:c9:eb:f7:4d:27:96:fa:39:08:2b: 37:32:54:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjYwNTEyMTgwMjExWhcNMjYwNTE5MTgwMjExWjAYMRYwFAYD VQQDEw02YTAzNmIyMy05Y2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3ODpJXOG05FcfpaX2mK4Ioq7XzbXdhI062KUIDAVLmGQ32ZJXM6n6WY6f1H CA7Gl/tbzjR0wyxoqIOop1+oMiyKeeuPaBMjYZZOpDeuipsUnHKV2wohdk0Ws1/f 8s3m/FXyWjbQAMF6dSLUq2UimyrxdOcyuG7vRO/3D+cbaSFac81eT9HGNNTASwpm pF2x/3siZuEiTRwL9j8Tjdx13CoXP8x/svyd2JDd8Rqvpecf1xwBDSm31RwLIHgx 10Viso1yB4fKK0zPO5FUFmksUyApqrnpxf7K5VEp56FYrNCeSBHPBFYxOX+sIhgk BxOPT660tqk9Mp8ou2Zqq3zp7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN0+WGPb nYPaXTKe54w4NOh7KIimMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT20+9vd2jkUyk7yHcp96pIskM2XJDpubM97NCb1zuuopak6FSp1svo/UZ7zt ImHIRkLJhtv94GnsRwUD5KYHrZW896DNw+8DZyv6nrsJrNWg3lnT2S/QSG7QI+F8 SuT87n3U1yBQmuGd1+an/ivWGAEha0ixCvN1Wr7VsCl6hNBwc75LgLdcD0G+ApBO nAYeIzzJq2xp1MtHjWReJ6kS6XMlVe9t5RnPUzHGnXAvNxRDwsuQ2XyulxVRAKly 9Gh4iTuM0l7Po0xIZ2anPUll/0IJtaK5SzYFbSctlv/wkS6ubB8yUaBnCVlfLh/S DtozTM7J6/dNJ5b6OQgrNzJUWQ== -----END CERTIFICATE-----Generated at Wed May 13 08:48:19 2026 by rpki-client