$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: lrn/tAksqyO3bLX2OmbWPxBhLZv8UST2vThp5wr76A4= Subject key identifier: A7:16:33:55:D3:F8:FD:74:01:CD:05:E8:38:CB:00:CB:7E:AD:DD:DD Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 024E Signing time: Wed 13 May 2026 02:32:05 +0000 Manifest this update: Wed 13 May 2026 02:32:04 +0000 Manifest next update: Wed 20 May 2026 02:32:04 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: OMPWOuwvl0uP/Wud6JkX+VeQB3JoB48rsqv44gvmalE=) 2: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: QT/TXvlvue3wQ8fY3ahassV2Ju9ScJLofOE2xUpi/GI=) 3: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: TpOlOMkvGiREuIISjlFyTVVAuVCoOvxydJx/Up02XYA=) 4: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: +Q8so6nPeyC4+0wToagHFxd2QuGw1JN2hZ9q0eoOoGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: May 13 02:32:04 2026 GMT Not After : May 20 02:32:04 2026 GMT Subject: CN=6a03e2a5-b5fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:62:73:4d:c0:9a:9d:2f:5c:17:b3:78:fc:d4: 1c:c2:51:ed:5b:ec:c1:f3:95:cc:b8:1e:d1:48:16: fc:f4:04:f6:0f:e9:46:56:39:78:11:22:d4:1e:3a: 33:26:02:ee:90:a9:4d:48:a7:f9:66:c5:59:be:06: 71:72:aa:80:14:24:3d:f5:eb:32:17:54:49:aa:11: 48:f8:f2:38:0c:6c:b8:25:35:1a:13:13:3c:1c:d2: 31:dd:fe:76:01:dd:79:58:e5:bd:64:ea:74:8d:68: ee:3b:a0:57:7a:9b:5d:e2:2b:b6:dd:84:7a:17:04: 23:21:c6:a2:b8:19:d4:17:6f:07:61:ad:fd:4f:59: 65:b0:7a:83:92:d5:98:35:e1:9f:f7:12:a4:d0:a2: d4:4d:31:47:3b:f4:6c:a8:3d:7d:e2:60:8a:6b:22: 17:77:57:7c:92:82:76:bf:0d:d0:6a:40:b1:60:a8: 01:51:5e:d0:b2:1d:a8:b0:e5:23:b5:b1:a6:4b:77: 8b:7b:2a:41:6e:27:8b:5f:9c:02:b6:79:c6:7e:b6: 83:29:67:22:84:46:e2:d4:09:c6:23:58:4a:47:8d: 97:b3:12:bd:65:dd:d4:21:e9:2d:e5:a1:cd:bd:88: 96:d7:5e:56:ac:76:2d:f0:39:61:92:a9:4e:b9:c9: 97:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:16:33:55:D3:F8:FD:74:01:CD:05:E8:38:CB:00:CB:7E:AD:DD:DD X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f1:c2:03:9f:f8:2a:2e:bd:64:53:a3:f5:76:53:27:6a:3c: 3e:87:a4:5b:f4:7c:da:08:1a:fc:cf:d8:1d:72:69:bb:15:60: b0:b6:bb:7f:cd:37:fd:74:e8:d8:76:48:95:da:f7:53:cd:69: 41:ee:ad:02:b3:d8:e1:9f:75:3b:18:45:16:ee:27:17:e6:67: 9c:76:3b:e4:56:cb:47:77:16:3b:71:ad:d6:0c:a1:9d:d5:f6: a6:2a:67:50:8f:b6:70:49:72:5a:99:f8:95:e6:81:37:cb:ae: 43:cf:b1:c8:da:0d:ea:7a:8c:57:13:0b:9f:95:5c:9b:95:29: db:ae:8a:ca:c2:a0:e1:c4:54:28:9d:9b:50:f9:9c:e2:6c:20: 3e:18:4f:42:54:90:fb:ff:a8:57:aa:a0:23:18:8e:3b:3d:62: bd:d3:ef:12:5c:ed:ca:da:9e:33:db:7a:bd:d9:94:b6:b3:c5: 1a:4b:ce:61:d9:d4:47:44:eb:d4:f5:15:b1:6d:e6:94:53:f5: fc:62:f8:ba:03:22:19:b3:34:71:e8:78:fa:cf:33:94:5f:13: 06:c2:94:82:5c:19:5f:bc:9e:7c:26:22:fa:2b:4f:49:9d:15: 7a:32:06:d0:92:0e:9e:f3:e5:08:6f:f4:26:eb:d8:88:c6:57: 69:24:49:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjYwNTEzMDIzMjA0WhcNMjYwNTIwMDIzMjA0WjAYMRYwFAYD VQQDEw02YTAzZTJhNS1iNWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2JzTcCanS9cF7N4/NQcwlHtW+zB85XMuB7RSBb89AT2D+lGVjl4ESLUHjoz JgLukKlNSKf5ZsVZvgZxcqqAFCQ99esyF1RJqhFI+PI4DGy4JTUaExM8HNIx3f52 Ad15WOW9ZOp0jWjuO6BXeptd4iu23YR6FwQjIcaiuBnUF28HYa39T1llsHqDktWY NeGf9xKk0KLUTTFHO/RsqD194mCKayIXd1d8koJ2vw3QakCxYKgBUV7Qsh2osOUj tbGmS3eLeypBbieLX5wCtnnGfraDKWcihEbi1AnGI1hKR42XsxK9Zd3UIekt5aHN vYiW115WrHYt8DlhkqlOucmXtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKcWM1XT +P10Ac0F6DjLAMt+rd3dMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXPHCA5/4Ki69ZFOj9XZTJ2o8PoekW/R82gga/M/YHXJpuxVgsLa7f803/XTo 2HZIldr3U81pQe6tArPY4Z91OxhFFu4nF+ZnnHY75FbLR3cWO3Gt1gyhndX2pipn UI+2cElyWpn4leaBN8uuQ8+xyNoN6nqMVxMLn5Vcm5Up266KysKg4cRUKJ2bUPmc 4mwgPhhPQlSQ+/+oV6qgIxiOOz1ivdPvElztytqeM9t6vdmUtrPFGkvOYdnUR0Tr 1PUVsW3mlFP1/GL4ugMiGbM0ceh4+s8zlF8TBsKUglwZX7yefCYi+itPSZ0VejIG 0JIOnvPlCG/0JuvYiMZXaSRJww== -----END CERTIFICATE-----Generated at Wed May 13 06:44:07 2026 by rpki-client