$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: FklbhM7cRDgfW25xs3YhgFraKF5+GbuRoqyMv1xsotc= Subject key identifier: 46:3E:DA:4B:C5:25:93:E5:C0:A5:EE:BC:8F:B0:D6:27:27:9F:69:C7 Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 049C Signing time: Wed 13 May 2026 00:04:51 +0000 Manifest this update: Wed 13 May 2026 00:04:50 +0000 Manifest next update: Wed 20 May 2026 00:04:50 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: Y1wk3HufHegdtstIWSEI7VPt0Jl5HIU5WpFOngpWQ8Y=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: 53xSQQ9Bxh94fQZ470RfHLjvIXQRf/E6MeWzNjwS2HI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: May 13 00:04:50 2026 GMT Not After : May 20 00:04:50 2026 GMT Subject: CN=6a03c023-841e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:3f:e6:d1:fd:ae:7b:ba:c1:74:63:5d:87: bb:5a:76:c0:76:d9:c9:62:9e:00:aa:b0:c0:b6:76: 96:c7:55:02:c6:05:60:2e:80:3c:ac:70:0a:3c:5f: cc:62:d6:1c:06:86:b7:e0:c4:b7:b6:9c:d1:44:f0: dd:b5:ff:51:c0:32:73:6e:20:b0:e6:14:e6:5d:00: 0e:18:b3:32:0f:13:36:29:8d:3e:75:13:ac:a3:a8: 2e:1a:7e:e2:d0:98:04:d3:08:0f:51:7f:db:5d:2f: a8:b6:2f:7b:cb:b4:ae:1f:fa:cb:2c:49:79:1b:79: bd:3e:2f:79:f2:d0:de:46:e5:d9:31:e4:25:a8:c5: aa:b0:42:63:8b:83:21:ee:d4:5a:d0:f8:44:fc:75: c3:62:68:fa:d0:28:2d:a1:71:86:eb:7c:5a:41:86: f9:2c:d6:bc:c4:0a:cd:5c:4a:bb:fe:ac:66:60:bc: 56:04:fe:fb:50:aa:cb:a0:db:3b:c3:b3:98:b5:4f: a3:ca:61:c4:00:d2:62:e8:2c:f6:16:87:6f:22:a6: ee:2b:8a:34:e8:0b:e4:ab:4d:51:87:77:c6:95:9c: ca:65:13:73:a1:84:4c:f8:47:3d:02:91:6b:db:8d: 7c:79:c4:ab:d5:33:c8:db:36:5a:a3:01:bc:90:53: 78:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3E:DA:4B:C5:25:93:E5:C0:A5:EE:BC:8F:B0:D6:27:27:9F:69:C7 X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:cd:41:56:9d:03:5b:4e:19:20:47:7d:a2:27:0d:86:28:8f: 8f:bf:9d:42:6a:5d:8e:fc:34:04:ce:22:92:a3:a3:53:7d:4a: 23:43:75:4a:80:2c:7a:fa:00:b3:61:e0:27:fb:0f:c5:b1:f3: 9d:f5:f3:91:5e:ab:9c:fe:9c:8d:8f:27:03:2e:cb:34:ad:ef: d4:0c:81:39:67:1b:1a:aa:3d:eb:57:42:e6:bb:55:1d:c6:e1: fb:8b:da:8f:ee:da:80:20:2b:ad:e5:14:6e:fe:4d:da:9d:31: 3f:bd:55:c9:c7:d8:73:3e:4d:4d:90:d4:75:de:0b:34:d0:45: 28:8c:be:cd:57:fd:fc:c5:53:50:10:7b:2a:bd:f2:88:8f:cb: 66:15:f2:61:1b:82:63:ba:ab:b2:ea:a5:58:99:77:90:61:01: a8:de:bc:e5:8d:90:18:9e:cf:4a:2e:cf:30:7b:6a:9d:0b:9b: b2:a1:ac:96:87:68:21:8b:1e:2f:45:04:07:35:1e:e1:f9:a8: 71:97:87:fa:c9:09:c7:6f:59:89:fb:ad:15:e6:8f:2c:b6:f4: d5:c8:00:e0:3a:39:4a:e9:54:06:99:24:a0:d1:dc:f0:f2:39: 6f:0d:b1:36:69:f3:09:2d:65:10:76:fc:b5:15:4d:18:ae:64: ae:70:a3:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjYwNTEzMDAwNDUwWhcNMjYwNTIwMDAwNDUwWjAYMRYwFAYD VQQDEw02YTAzYzAyMy04NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSk/5tH9rnu6wXRjXYe7WnbAdtnJYp4AqrDAtnaWx1UCxgVgLoA8rHAKPF/M YtYcBoa34MS3tpzRRPDdtf9RwDJzbiCw5hTmXQAOGLMyDxM2KY0+dROso6guGn7i 0JgE0wgPUX/bXS+oti97y7SuH/rLLEl5G3m9Pi958tDeRuXZMeQlqMWqsEJji4Mh 7tRa0PhE/HXDYmj60CgtoXGG63xaQYb5LNa8xArNXEq7/qxmYLxWBP77UKrLoNs7 w7OYtU+jymHEANJi6Cz2FodvIqbuK4o06Avkq01Rh3fGlZzKZRNzoYRM+Ec9ApFr 2418ecSr1TPI2zZaowG8kFN4BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEY+2kvF JZPlwKXuvI+w1icnn2nHMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASs1BVp0DW04ZIEd9oicNhiiPj7+dQmpdjvw0BM4ikqOjU31KI0N1SoAsevoA s2HgJ/sPxbHznfXzkV6rnP6cjY8nAy7LNK3v1AyBOWcbGqo961dC5rtVHcbh+4va j+7agCArreUUbv5N2p0xP71VycfYcz5NTZDUdd4LNNBFKIy+zVf9/MVTUBB7Kr3y iI/LZhXyYRuCY7qrsuqlWJl3kGEBqN685Y2QGJ7PSi7PMHtqnQubsqGslodoIYse L0UEBzUe4fmocZeH+skJx29ZifutFeaPLLb01cgA4Do5SulUBpkkoNHc8PI5bw2x NmnzCS1lEHb8tRVNGK5krnCj5g== -----END CERTIFICATE-----Generated at Wed May 13 14:38:50 2026 by rpki-client