$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: 9ZLxzH1dUTdSI7G+mdNNA3BLQ7Y5Uzpkm2pBL5mjdqI= Subject key identifier: 1A:7D:26:97:2C:A4:B0:FF:9C:D6:A3:6F:60:40:44:F8:D4:EA:D5:E9 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0F82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0F69 Signing time: Tue 12 May 2026 17:35:07 +0000 Manifest this update: Tue 12 May 2026 17:35:07 +0000 Manifest next update: Tue 19 May 2026 17:35:07 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: 0gU88rLkMs9QCKLJk9jNMLjZVAvCnOQ4ehWg0v3pWjc=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: N33b13XY6g27GVjt3CNNQUi+knQ6X/92GcFFFlrfuoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3970 (0xf82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: May 12 17:35:07 2026 GMT Not After : May 19 17:35:07 2026 GMT Subject: CN=6a0364cb-40a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:e9:43:cb:a8:34:ca:07:9c:79:a9:1c:b5: 98:8a:74:e1:1b:56:97:67:cb:e8:fe:5c:b4:54:25: de:2e:a2:dc:6e:3c:72:43:df:31:88:77:ce:83:c9: 53:ab:20:77:03:28:9c:a6:e3:8b:82:f8:69:ba:6d: e0:50:c8:ad:1d:a7:b5:10:8b:87:56:45:66:4c:0d: d8:61:51:8a:31:88:d4:3b:53:c5:fa:51:f8:bf:a7: ad:04:2c:3c:26:17:7f:e4:af:d3:3f:81:34:ac:3e: 0b:51:87:a5:70:ea:78:32:32:ed:fe:e9:1c:7a:e0: 69:96:a9:fc:17:de:99:6b:e3:e5:51:7a:61:e9:f1: a7:19:86:b7:c3:77:b1:bb:8f:ec:ef:6e:1b:43:bb: da:e7:b3:cd:9f:c5:0f:5a:94:d3:8d:12:f6:fe:1d: 06:6f:99:f2:33:d8:f7:4b:50:e7:18:d1:a9:84:e5: 85:10:53:97:37:b5:e8:a6:6f:c0:6f:62:b9:86:ba: aa:9b:c4:23:d8:f9:04:18:b2:7f:ef:e8:74:df:a8: 8e:2b:cf:66:0f:41:a4:2d:c1:94:8a:a2:23:ef:03: 9f:f8:e0:19:37:f4:c7:e9:47:c2:73:a0:ad:dd:f7: b8:8a:30:2c:c2:84:be:8b:fb:53:e0:69:eb:d3:52: 21:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7D:26:97:2C:A4:B0:FF:9C:D6:A3:6F:60:40:44:F8:D4:EA:D5:E9 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:70:20:95:9c:a2:ea:b5:22:03:88:7e:6f:99:ff:a6:ca:27: df:03:26:7e:b3:5f:16:a3:74:87:62:fe:00:2b:c7:36:11:db: a5:55:8e:3c:f1:ee:21:56:8e:7d:24:4c:36:1b:2f:e6:7d:8d: 37:aa:78:97:78:33:d3:c5:a4:2a:f4:4e:5e:0e:58:2e:cc:97: e3:45:5f:cd:42:ca:36:0f:a5:30:a9:f5:28:c8:9f:c3:78:ca: 58:e4:77:38:d2:cf:ce:dd:ac:0c:40:1f:8b:50:5a:9d:a9:a9: 47:9f:32:cb:24:bc:08:c4:bc:f7:76:9e:fb:0e:88:43:ff:16: 78:1d:1a:69:33:2c:fe:08:81:dd:b6:ab:43:ca:cb:a1:e3:82: 50:d3:f4:26:f3:30:b2:6e:25:2f:de:85:c3:6d:07:46:37:70: 73:2a:a2:70:09:65:3a:5f:96:62:ef:63:6f:d1:52:f8:ce:5b: 45:de:aa:b6:95:c2:40:00:d2:0b:74:97:0c:31:64:83:43:7d: a6:0c:05:e3:7f:e5:18:58:4f:dc:c2:92:97:73:d7:ae:2e:63: b8:de:8c:07:92:3d:c2:f0:92:ca:25:72:65:0c:db:2a:89:2b: 96:19:d9:bc:79:33:75:fa:d3:e8:48:63:20:ae:e6:16:76:25: 3c:f4:25:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjYwNTEyMTczNTA3WhcNMjYwNTE5MTczNTA3WjAYMRYwFAYD VQQDEw02YTAzNjRjYi00MGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKHpQ8uoNMoHnHmpHLWYinThG1aXZ8vo/ly0VCXeLqLcbjxyQ98xiHfOg8lT qyB3AyicpuOLgvhpum3gUMitHae1EIuHVkVmTA3YYVGKMYjUO1PF+lH4v6etBCw8 Jhd/5K/TP4E0rD4LUYelcOp4MjLt/ukceuBplqn8F96Za+PlUXph6fGnGYa3w3ex u4/s724bQ7va57PNn8UPWpTTjRL2/h0Gb5nyM9j3S1DnGNGphOWFEFOXN7Xopm/A b2K5hrqqm8Qj2PkEGLJ/7+h036iOK89mD0GkLcGUiqIj7wOf+OAZN/TH6UfCc6Ct 3fe4ijAswoS+i/tT4Gnr01Ih3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBp9Jpcs pLD/nNajb2BARPjU6tXpMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcnAglZyi6rUiA4h+b5n/pson3wMmfrNfFqN0h2L+ACvHNhHbpVWOPPHuIVaO fSRMNhsv5n2NN6p4l3gz08WkKvROXg5YLsyX40VfzULKNg+lMKn1KMifw3jKWOR3 ONLPzt2sDEAfi1BanampR58yyyS8CMS893ae+w6IQ/8WeB0aaTMs/giB3barQ8rL oeOCUNP0JvMwsm4lL96Fw20HRjdwcyqicAllOl+WYu9jb9FS+M5bRd6qtpXCQADS C3SXDDFkg0N9pgwF43/lGFhP3MKSl3PXri5juN6MB5I9wvCSyiVyZQzbKokrlhnZ vHkzdfrT6EhjIK7mFnYlPPQl/w== -----END CERTIFICATE-----Generated at Wed May 13 13:09:53 2026 by rpki-client