$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: MYPE6OAIJRTaZCKH9S/xKXx1nhpHQIiKe2X8GHcGesM= Subject key identifier: C5:FC:51:5B:38:D3:8A:62:52:2F:E6:F1:19:06:AF:DD:23:96:09:D5 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0D22 Signing time: Tue 12 May 2026 18:18:18 +0000 Manifest this update: Tue 12 May 2026 18:18:18 +0000 Manifest next update: Tue 19 May 2026 18:18:18 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: jeIIJI6a2SBt+pdKNKbUPPLEsO8jAi1PJM0pz5f/YEQ=) 2: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 0K2FVxGUCok0THMVBJfOUwq75tBpXjABY8rj5QwPc6w=) 3: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: mRpEBKmKyN90J4ooDi4lVCO6RHEBTfUlYtWenKg0wlw=) 4: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: 3Nv/ZHqsawJ0Jp2g16W+htBijpcWto8dbP6tcgAmIIk=) 5: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: qfOd2NsPmW/dThRfgUKaZ/2OAjQ7wZ+VSVJWExUQjSo=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: YAO0UnDpIZbyVXdmfYYOuYA82NNvp7ggEwgpiP6F4Bk=) 7: E0848D606F7611EDB491621FC4F9AE02.roa (hash: xiW1z5MnYSbZsJleNKbRUxhfgx/8JzW+eccLEQ4prS4=) 8: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: rJLxdr4XZ4oqpkH7S/LP6Q9L0HTP8eSINSv/SKNt+vc=) 9: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: 0sjZzbtNPaRKIT8BWTNvX39eUNvRnj582Bf5dTCbgrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3451 (0xd7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: May 12 18:18:18 2026 GMT Not After : May 19 18:18:18 2026 GMT Subject: CN=6a036eea-ace0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ef:3a:be:6f:94:da:83:c9:de:37:2f:6c:3e: 9c:aa:76:a5:71:bc:fd:b8:cb:42:0e:e5:be:42:9d: e4:9e:48:06:a3:15:8b:ca:68:24:0d:b6:53:58:f9: ec:59:0d:b0:79:6c:5d:b7:69:0d:bd:fb:73:e4:e5: 3c:87:16:f4:49:c6:d1:63:f7:fb:bf:aa:5c:f8:7a: 91:bd:7f:6e:b8:c4:d9:9b:9e:f6:f4:20:e5:1e:ff: ef:8e:af:2d:d8:13:cf:7c:f7:f4:f3:a8:20:64:60: 55:f5:a6:c1:f5:91:be:b9:4a:66:a5:5b:7f:4f:a2: 0f:0a:72:c5:f0:c9:a1:7c:32:f9:11:76:37:59:90: ba:52:bf:59:80:d1:79:d0:9d:d1:db:6c:62:7a:66: 6e:e5:90:dc:1f:3e:c6:a4:2c:b8:33:b6:7a:98:6f: 5d:77:a7:18:89:a7:10:81:c8:43:68:c6:1f:6d:3b: ed:53:1c:38:d3:79:90:75:1c:c8:e9:a9:00:39:87: 5f:b1:55:a7:cf:0f:21:ac:48:ae:a0:13:b9:e5:b6: df:a1:ca:14:e9:96:bd:d0:a0:9d:47:f3:fe:21:f0: de:e5:3c:87:62:9f:37:c9:2c:c2:d5:08:a3:f4:59: 8a:3e:7c:40:95:8d:92:dd:c1:9b:4c:89:ff:7b:08: 30:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:FC:51:5B:38:D3:8A:62:52:2F:E6:F1:19:06:AF:DD:23:96:09:D5 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:f1:95:22:97:ae:09:8b:ba:47:f4:ed:11:1f:88:3e:59:82: 7c:b4:c4:03:3f:c5:7a:14:44:f2:85:2c:b2:30:d3:82:29:a1: 0d:e3:b3:e8:96:03:81:1f:77:a3:ca:93:3b:f0:4c:be:34:ff: b5:7f:e1:bd:11:fd:26:49:f4:bb:5e:64:0c:05:d4:5c:71:8b: 83:70:6b:a2:11:e2:d2:bb:4a:90:9b:69:9f:05:6e:4c:24:8b: fc:f2:6d:c4:04:ac:e9:05:f2:80:5a:ce:cf:12:21:58:e2:93: ee:9a:c8:aa:c3:0c:46:89:3b:70:c3:34:00:90:f0:ed:6b:ba: 53:98:39:e4:ae:8d:37:40:c8:87:81:69:ac:29:9f:f4:f5:ae: 94:92:7d:64:c8:d6:73:93:24:b3:2b:ef:fd:97:43:67:96:8d: 61:67:85:45:c1:cc:3b:78:c9:4b:07:de:90:f0:db:80:bf:12: f6:9a:90:06:2a:4b:c2:41:40:1e:9b:66:ac:a2:73:74:a1:21: c1:45:05:37:5b:c1:96:f1:4e:22:23:d8:f0:4e:83:5d:98:00: 68:be:5f:6d:fd:e6:dd:2a:b0:c4:64:0d:0a:60:12:43:b8:b7: 26:48:da:77:9f:85:15:61:fc:ab:a1:a1:54:84:d8:b7:18:9f: 7c:21:f5:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwNTEyMTgxODE4WhcNMjYwNTE5MTgxODE4WjAYMRYwFAYD VQQDEw02YTAzNmVlYS1hY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4u86vm+U2oPJ3jcvbD6cqnalcbz9uMtCDuW+Qp3knkgGoxWLymgkDbZTWPns WQ2weWxdt2kNvftz5OU8hxb0ScbRY/f7v6pc+HqRvX9uuMTZm5729CDlHv/vjq8t 2BPPfPf086ggZGBV9abB9ZG+uUpmpVt/T6IPCnLF8MmhfDL5EXY3WZC6Ur9ZgNF5 0J3R22xiemZu5ZDcHz7GpCy4M7Z6mG9dd6cYiacQgchDaMYfbTvtUxw403mQdRzI 6akAOYdfsVWnzw8hrEiuoBO55bbfocoU6Za90KCdR/P+IfDe5TyHYp83ySzC1Qij 9FmKPnxAlY2S3cGbTIn/ewgwKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMX8UVs4 04piUi/m8RkGr90jlgnVMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW/GVIpeuCYu6R/TtER+IPlmCfLTEAz/FehRE8oUssjDTgimhDeOz6JYDgR93 o8qTO/BMvjT/tX/hvRH9Jkn0u15kDAXUXHGLg3BrohHi0rtKkJtpnwVuTCSL/PJt xASs6QXygFrOzxIhWOKT7prIqsMMRok7cMM0AJDw7Wu6U5g55K6NN0DIh4FprCmf 9PWulJJ9ZMjWc5Mksyvv/ZdDZ5aNYWeFRcHMO3jJSwfekPDbgL8S9pqQBipLwkFA HptmrKJzdKEhwUUFN1vBlvFOIiPY8E6DXZgAaL5fbf3m3SqwxGQNCmASQ7i3Jkja d5+FFWH8q6GhVITYtxiffCH1HQ== -----END CERTIFICATE-----Generated at Wed May 13 07:02:46 2026 by rpki-client