$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: pnBXT7dGO7YFBnjuev3WP/p4fJU+4V0Z8Rbz8DDyEVY= Subject key identifier: 57:37:25:28:01:C9:39:C2:8B:4A:C3:C2:29:B2:79:0A:CB:1C:6B:E7 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0CE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0CD5 Signing time: Tue 12 May 2026 18:28:31 +0000 Manifest this update: Tue 12 May 2026 18:28:31 +0000 Manifest next update: Tue 19 May 2026 18:28:31 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: 75HJZViyv/UxodH7nRe9o3pBqlL+2R8KGBDL3sIrtP8=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: c63Et1Ir/YnB7K8uol85rXXmz9MoXTQl05iq46Egj80=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: KI0wtfrpzzeldL0TKgebNaTut7M4MCF1WK3HZwTSHVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3305 (0xce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: May 12 18:28:31 2026 GMT Not After : May 19 18:28:31 2026 GMT Subject: CN=6a03714f-000a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:7d:a6:1e:38:e2:0c:74:48:84:9e:da:b2: 4c:4e:ab:f4:78:ba:bb:ce:52:1c:0e:4b:c0:8e:13: 8c:13:0c:cd:fd:61:2d:71:96:fc:d4:d8:96:a3:5a: 54:0b:3e:86:1a:52:ef:90:2c:5f:72:e3:fa:75:19: 60:72:92:a2:d2:0f:00:dc:4a:06:d2:1a:dc:ee:12: 5d:a8:5b:a5:2d:9e:68:9e:16:85:db:1b:dc:23:a8: c3:52:88:2f:68:d9:4e:0d:ec:9f:ab:01:7e:b7:d3: c3:84:0b:3a:2b:3d:d0:6d:9a:f7:b1:9d:31:5a:0c: 8a:12:78:40:b9:5b:34:68:22:21:21:e2:8e:20:7c: 61:01:41:21:ed:7f:84:d1:7e:52:2b:df:af:a0:71: 9f:30:43:ce:01:25:ae:f5:04:14:66:87:23:53:5c: 44:fe:fc:0e:22:5d:df:dd:0f:df:23:45:e5:16:78: 53:cd:36:e3:7d:69:a7:bb:5b:34:66:49:54:25:dc: 0b:88:e3:0f:1f:ac:4f:68:06:6b:ad:d9:27:8c:a0: 23:72:a5:c1:2e:3f:e0:08:25:2d:e3:e5:15:06:9b: c5:c1:01:69:e8:82:95:fc:64:b2:c7:e2:63:1a:c7: 25:22:41:e2:1e:89:33:d5:c1:1f:bc:e4:1e:c2:42: c7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:37:25:28:01:C9:39:C2:8B:4A:C3:C2:29:B2:79:0A:CB:1C:6B:E7 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:4e:b4:b5:8c:12:a7:bb:9d:88:29:81:dd:fa:4f:3f:5a:68: 74:f8:15:79:4d:ef:73:70:6a:d0:dc:c4:4a:61:6f:1c:4c:7a: 56:3b:39:2b:4a:40:f1:17:20:97:f0:b9:47:54:54:5d:9f:15: 18:9e:cf:31:80:28:ea:9c:97:7a:fc:ff:67:ef:69:df:61:74: 51:87:67:2e:f9:c5:a3:b3:01:8a:c6:19:3f:3a:01:e5:f5:d2: ca:1d:73:e8:e6:20:00:4f:af:a8:85:10:06:52:43:57:54:36: 14:e3:20:3c:86:dc:71:49:a6:09:20:f7:a2:07:44:fd:f0:4f: 66:a0:f2:8d:2e:88:3a:c2:df:41:3d:2b:68:e2:06:cb:ad:a1: ca:61:a6:ed:17:ad:26:8a:c0:d8:fc:87:44:cf:0d:31:78:d0: 76:4f:d1:98:e7:90:7a:ef:33:57:a3:e4:4e:33:49:82:b6:37: c0:81:ac:8f:b3:d2:ca:34:5e:02:07:cf:6b:a4:a4:70:ad:f2: f4:43:4e:c4:79:ff:13:03:bc:4a:04:d3:da:77:42:41:06:de: f9:d1:41:f8:e3:20:20:60:45:e9:76:50:29:75:b7:71:39:b8: b1:9a:e2:ae:ee:b7:56:88:ca:38:5e:54:c9:41:af:36:42:a5: 31:91:38:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjYwNTEyMTgyODMxWhcNMjYwNTE5MTgyODMxWjAYMRYwFAYD VQQDEw02YTAzNzE0Zi0wMDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vZ9ph444gx0SISe2rJMTqv0eLq7zlIcDkvAjhOMEwzN/WEtcZb81NiWo1pU Cz6GGlLvkCxfcuP6dRlgcpKi0g8A3EoG0hrc7hJdqFulLZ5onhaF2xvcI6jDUogv aNlODeyfqwF+t9PDhAs6Kz3QbZr3sZ0xWgyKEnhAuVs0aCIhIeKOIHxhAUEh7X+E 0X5SK9+voHGfMEPOASWu9QQUZocjU1xE/vwOIl3f3Q/fI0XlFnhTzTbjfWmnu1s0 ZklUJdwLiOMPH6xPaAZrrdknjKAjcqXBLj/gCCUt4+UVBpvFwQFp6IKV/GSyx+Jj GsclIkHiHokz1cEfvOQewkLHKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFc3JSgB yTnCi0rDwimyeQrLHGvnMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARE60tYwSp7udiCmB3fpPP1podPgVeU3vc3Bq0NzESmFvHEx6Vjs5K0pA8Rcg l/C5R1RUXZ8VGJ7PMYAo6pyXevz/Z+9p32F0UYdnLvnFo7MBisYZPzoB5fXSyh1z 6OYgAE+vqIUQBlJDV1Q2FOMgPIbccUmmCSD3ogdE/fBPZqDyjS6IOsLfQT0raOIG y62hymGm7RetJorA2PyHRM8NMXjQdk/RmOeQeu8zV6PkTjNJgrY3wIGsj7PSyjRe AgfPa6SkcK3y9ENOxHn/EwO8SgTT2ndCQQbe+dFB+OMgIGBF6XZQKXW3cTm4sZri ru63VojKOF5UyUGvNkKlMZE4RA== -----END CERTIFICATE-----Generated at Wed May 13 15:23:01 2026 by rpki-client