$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft File: PX_qy2M6a4KTI7HplE1K-Y3do3I.mft (raw, json) Hash identifier: +eC4xVrXWbSZB1zqn6QFPUOk5QmROdifKpgJISOEqWM= Subject key identifier: D4:2B:60:C4:03:81:B7:8D:E7:B3:D4:45:31:43:78:55:6D:38:2D:52 Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 Certificate issuer: /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft Manifest number: 01BD Signing time: Wed 13 May 2026 04:01:04 +0000 Manifest this update: Wed 13 May 2026 04:01:03 +0000 Manifest next update: Wed 20 May 2026 04:01:03 +0000 Files and hashes: 1: PX_qy2M6a4KTI7HplE1K-Y3do3I.crl (hash: mCOdPGZ2u/qolMgYFPIxaR3ftT33BInfeXJDJ7NCqMw=) 2: 97F15FD8068D11EF839A3054C4F9AE02.roa (hash: zmOLhDjLLlYiaqwa8RVMxb2GzAY0iWJCLtJiuDqYk1M=) 3: 78321A66068D11EF92608943C4F9AE02.roa (hash: 5UiyGeebz2scg4gBW5wMGNarCtgnSEGr0R8BVofACP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 04:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Validity Not Before: May 13 04:01:03 2026 GMT Not After : May 20 04:01:03 2026 GMT Subject: CN=6a03f780-147a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ae:26:f7:04:6e:6b:ac:9c:57:0a:b6:29:4d: cb:51:56:1a:2c:91:a1:12:60:32:80:26:02:cd:c5: 06:02:b7:1d:cd:a2:4c:3a:54:1c:08:b2:03:e0:41: 40:de:16:eb:78:22:7a:96:1e:f4:61:50:83:dd:12: 6a:4e:c8:60:63:ea:2b:55:9c:b1:0c:b1:e6:9b:fb: 30:6c:91:d0:68:a9:59:d4:d4:8d:82:d0:4a:d7:b4: 8e:06:2d:66:0e:31:d3:26:22:3a:51:b0:05:c8:97: c3:18:a8:02:99:42:eb:06:bf:2b:5a:80:6e:d6:57: 4a:9f:9b:5d:b6:e2:96:96:36:d3:c0:96:0d:7c:42: 81:23:4f:fc:e7:47:1b:38:38:51:e0:66:2b:af:cd: fc:5e:e0:ce:02:ca:79:3a:bc:2b:4c:ae:ca:f0:8b: f2:6f:26:00:57:fa:4d:a4:e5:4b:95:71:6e:02:0e: f9:7d:b4:af:3b:7e:76:7b:0f:81:dd:15:8d:e5:6d: 05:6a:29:69:10:91:82:f8:8d:e6:2d:32:39:21:0c: cd:ed:43:87:9b:89:d6:c7:f5:da:5d:83:4d:5d:79: fb:99:b4:c6:e3:be:1a:bb:01:18:91:b7:38:93:70: 0a:cc:05:ac:bf:4a:f8:72:e8:26:b1:a3:bb:97:5c: 4d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2B:60:C4:03:81:B7:8D:E7:B3:D4:45:31:43:78:55:6D:38:2D:52 X509v3 Authority Key Identifier: keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:d1:d2:78:e3:90:ab:2d:28:08:fd:ec:43:25:7e:0f:0f:c7: 31:11:b1:63:aa:1b:9b:dd:b9:e6:54:6e:bd:0a:83:f2:3b:b8: 9c:78:01:5f:62:b1:e8:8f:4e:9d:06:f7:68:4f:c4:d1:a0:3b: 99:b1:93:31:ac:51:f2:1f:fa:36:36:27:49:a3:42:08:11:3f: 1e:e3:17:c9:aa:c5:49:d6:f0:9d:14:53:ae:9a:3e:a1:4e:dd: ea:ec:bf:96:df:aa:9e:8d:93:76:54:a1:eb:c3:52:6a:41:d6: b1:a4:2f:76:fb:3c:4f:c4:39:9c:ff:9e:89:b9:8b:ee:93:07: c5:37:00:41:eb:df:2b:d4:6d:12:91:75:27:1a:df:e3:50:6e: b5:9c:c7:11:7d:72:ed:0f:aa:7e:25:04:94:67:e6:71:3c:df: f5:8e:a6:6f:72:32:c9:86:53:7e:82:55:b6:82:84:1f:18:b0: e3:c4:f0:ef:ef:91:8d:6d:dc:9a:72:b2:e0:08:42:83:7e:1f: 79:a0:0a:1b:b4:96:06:65:ca:bf:7f:b2:96:b3:0a:08:ce:ec: b2:49:db:1e:8f:52:2b:a5:7b:3e:64:b4:95:d2:96:57:6f:05: 17:b4:f3:82:c0:25:10:0a:61:e0:a0:bb:4d:57:c2:f3:21:d6: 78:ef:30:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDNEN0ZFQUNCNjMzQTZCODI5MzIzQjFFOTk0NEQ0QUY5 OEREREEzNzIwHhcNMjYwNTEzMDQwMTAzWhcNMjYwNTIwMDQwMTAzWjAYMRYwFAYD VQQDEw02YTAzZjc4MC0xNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1a4m9wRua6ycVwq2KU3LUVYaLJGhEmAygCYCzcUGArcdzaJMOlQcCLID4EFA 3hbreCJ6lh70YVCD3RJqTshgY+orVZyxDLHmm/swbJHQaKlZ1NSNgtBK17SOBi1m DjHTJiI6UbAFyJfDGKgCmULrBr8rWoBu1ldKn5tdtuKWljbTwJYNfEKBI0/850cb ODhR4GYrr838XuDOAsp5OrwrTK7K8IvybyYAV/pNpOVLlXFuAg75fbSvO352ew+B 3RWN5W0FailpEJGC+I3mLTI5IQzN7UOHm4nWx/XaXYNNXXn7mbTG474auwEYkbc4 k3AKzAWsv0r4cugmsaO7l1xNIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNQrYMQD gbeN57PURTFDeFVtOC1SMB8GA1UdIwQYMBaAFD1/6stjOmuCkyOx6ZRNSvmN3aNy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy82NEJGRjE0RUIz RjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0S1RJN0hwbEUxSy1ZM2Rv M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYX3F5Mk02YTRLVEk3SHBsRTFLLVkzZG8zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy82NEJGRjE0RUIzRjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0 S1RJN0hwbEUxSy1ZM2RvM0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIdHSeOOQqy0oCP3sQyV+Dw/HMRGxY6obm9255lRuvQqD8ju4nHgBX2Kx6I9O nQb3aE/E0aA7mbGTMaxR8h/6NjYnSaNCCBE/HuMXyarFSdbwnRRTrpo+oU7d6uy/ lt+qno2TdlSh68NSakHWsaQvdvs8T8Q5nP+eibmL7pMHxTcAQevfK9RtEpF1Jxrf 41ButZzHEX1y7Q+qfiUElGfmcTzf9Y6mb3IyyYZTfoJVtoKEHxiw48Tw7++RjW3c mnKy4AhCg34feaAKG7SWBmXKv3+ylrMKCM7ssknbHo9SK6V7PmS0ldKWV28FF7Tz gsAlEAph4KC7TVfC8yHWeO8weA== -----END CERTIFICATE-----Generated at Wed May 13 14:05:09 2026 by rpki-client