$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: gNqPwlK1oKN1w9l0+DgO6rhcCfWy/bfBumAXIIIkT3Q= Subject key identifier: E8:B3:79:7C:26:31:02:DC:CD:B8:31:D7:25:C6:72:8A:4E:02:2B:63 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0CE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0CBE Signing time: Tue 12 May 2026 18:33:09 +0000 Manifest this update: Tue 12 May 2026 18:33:09 +0000 Manifest next update: Tue 19 May 2026 18:33:09 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: AIPpBDy6wXlq/IpuKOMy97/M41X+tm3GTaiXhjF3e1w=) 2: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: pUo1M6Sm4lp9c2XrgF+LDSj3mLXP2pG6wm3MhRuMa6w=) 3: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: 4GtPeohLS8OTUPDc8RgozS35ewcE3lUXQAukx2eqQRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3301 (0xce5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: May 12 18:33:09 2026 GMT Not After : May 19 18:33:09 2026 GMT Subject: CN=6a037265-fa5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8b:58:12:76:8c:35:d7:3a:15:a0:0c:71:b9: 4f:88:71:57:59:d2:d2:f4:e9:f4:04:9c:02:b7:d3: 82:7a:f3:d8:27:39:f5:22:65:df:a6:1e:f3:1f:0e: da:d5:d4:80:5d:7d:aa:75:c9:cf:9c:c7:b9:54:08: 0a:7e:7c:1c:b0:46:ef:f3:50:60:eb:fe:cb:59:7a: a7:1d:1d:74:4e:9e:39:b0:11:a0:84:cc:38:ba:57: ab:23:55:8a:19:6f:f3:77:6a:de:ba:a2:67:f0:b0: 99:84:3e:66:44:26:b8:13:e4:36:81:25:39:f5:1a: ae:fd:3c:32:6d:1f:b7:a5:eb:68:29:ae:58:f5:d3: 55:a3:1c:e4:83:6a:4f:db:60:3b:fa:c2:4b:c4:08: 77:05:61:1f:33:49:83:ce:7f:64:d7:b1:6a:98:d9: 2a:52:5a:99:b4:4d:84:de:98:30:d3:6d:5d:5f:86: bd:e5:4e:63:44:f2:e8:b9:a0:40:19:84:35:17:42: 70:0c:29:16:4d:3f:87:5a:b4:20:f1:96:1f:44:56: 19:8e:c2:47:1c:2d:19:ba:7a:b9:2e:9c:a6:0e:bb: c9:69:2b:d4:6f:89:77:e1:17:fe:95:37:01:af:7b: ac:a3:8c:94:80:0b:2a:34:a5:96:5c:9c:fe:52:65: 79:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B3:79:7C:26:31:02:DC:CD:B8:31:D7:25:C6:72:8A:4E:02:2B:63 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:29:4f:a0:6d:06:6d:be:7d:7d:21:0d:0c:94:6a:19:d4:e8: 94:5c:d1:41:f5:db:83:7d:51:d3:50:94:29:0e:e2:4d:1c:22: ca:ce:98:14:77:29:2f:0e:01:5e:97:01:5e:64:fc:91:3b:a6: fd:b1:ce:3d:f0:7f:52:6a:45:2c:37:ee:5e:45:3f:4e:b6:55: 82:42:6f:28:12:fc:91:f3:5f:02:32:22:0e:04:fe:81:e9:ac: 83:23:ed:f6:51:66:d1:0b:0a:c2:2f:d6:cc:06:cc:b7:19:9c: 16:82:cc:07:48:69:2c:1b:99:ef:c9:cf:40:d9:15:5a:27:ef: c4:6c:e2:ce:c5:dd:df:d2:e7:83:d1:21:00:d1:34:d9:61:f9: e9:30:fd:4f:84:53:2a:f2:2b:3a:79:83:1a:50:e9:82:d1:31: 16:55:e4:2c:93:2a:e8:a2:14:f9:44:e5:a6:4e:fb:b4:f1:9b: 2c:de:28:6d:67:e5:a2:ef:11:cd:3b:07:5e:44:2b:26:c9:66: 2d:dd:5a:e6:2a:92:72:2d:4b:2a:8c:c2:48:c1:51:ce:68:d1: 3d:49:0a:1d:d8:00:8b:b6:6e:5d:7e:6f:05:06:d9:f7:a1:f6: f9:bd:0a:c7:f6:e6:9d:21:86:f7:51:7e:f0:cd:e9:a6:66:0b: bb:af:cb:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjYwNTEyMTgzMzA5WhcNMjYwNTE5MTgzMzA5WjAYMRYwFAYD VQQDEw02YTAzNzI2NS1mYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04tYEnaMNdc6FaAMcblPiHFXWdLS9On0BJwCt9OCevPYJzn1ImXfph7zHw7a 1dSAXX2qdcnPnMe5VAgKfnwcsEbv81Bg6/7LWXqnHR10Tp45sBGghMw4ulerI1WK GW/zd2reuqJn8LCZhD5mRCa4E+Q2gSU59Rqu/TwybR+3petoKa5Y9dNVoxzkg2pP 22A7+sJLxAh3BWEfM0mDzn9k17FqmNkqUlqZtE2E3pgw021dX4a95U5jRPLouaBA GYQ1F0JwDCkWTT+HWrQg8ZYfRFYZjsJHHC0Zunq5LpymDrvJaSvUb4l34Rf+lTcB r3uso4yUgAsqNKWWXJz+UmV5twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOizeXwm MQLczbgx1yXGcopOAitjMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhSlPoG0Gbb59fSENDJRqGdTolFzRQfXbg31R01CUKQ7iTRwiys6YFHcpLw4B XpcBXmT8kTum/bHOPfB/UmpFLDfuXkU/TrZVgkJvKBL8kfNfAjIiDgT+gemsgyPt 9lFm0QsKwi/WzAbMtxmcFoLMB0hpLBuZ78nPQNkVWifvxGzizsXd39Lng9EhANE0 2WH56TD9T4RTKvIrOnmDGlDpgtExFlXkLJMq6KIU+UTlpk77tPGbLN4obWflou8R zTsHXkQrJslmLd1a5iqSci1LKozCSMFRzmjRPUkKHdgAi7ZuXX5vBQbZ96H2+b0K x/bmnSGG91F+8M3ppmYLu6/Lfw== -----END CERTIFICATE-----Generated at Wed May 13 11:41:33 2026 by rpki-client