$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: 8nxDohKJOt+l+RnE30GtEyZSnAJ0yA9xgIhjq3p6vdc= Subject key identifier: 18:FC:0A:37:F6:E3:BC:9D:B2:F8:D6:23:AA:7C:20:D1:60:A6:06:5D Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 0119 Signing time: Mon 11 May 2026 06:01:30 +0000 Manifest this update: Mon 11 May 2026 06:01:29 +0000 Manifest next update: Mon 18 May 2026 06:01:29 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: GWDXOtf4/q7a43AgnFUqPpQ+vsVs8u2boZre1LmoLdE=) 2: 30BF0192D5B411F0BA49041CC4F9AE02.roa (hash: 7Xq/xrlaF1i6pCbhVMnZT3OZ5U9fhM3Ebdid2BeEwH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: May 11 06:01:29 2026 GMT Not After : May 18 06:01:29 2026 GMT Subject: CN=6a0170ba-276e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:97:7c:15:7a:a4:7f:bc:ed:52:28:d1:7c:04: 31:29:4c:4f:d6:87:f9:0b:fb:1f:63:4c:fc:39:59: e7:64:95:51:52:32:cd:6d:50:92:01:68:fd:42:26: ed:88:4d:25:77:bd:c1:39:cf:9d:96:78:62:6a:7e: e6:74:ed:1e:40:e1:e3:b7:ba:04:21:dc:87:dd:3c: 90:ac:6f:cf:f1:84:e7:ce:41:d4:d3:76:f9:77:f4: d5:52:34:cb:f3:b7:8d:18:8a:d0:ed:d3:62:2d:1d: d2:1e:ec:96:61:06:66:7f:b5:26:7d:4b:34:43:1e: 82:9e:24:d4:d1:3d:02:dc:2a:8d:a7:d0:44:a5:a0: 73:cd:1f:9b:2c:fb:43:21:40:f3:77:fd:ec:6e:b0: 2f:ed:92:2b:5c:7e:eb:74:52:dc:95:d4:56:89:17: 05:41:06:87:6a:44:ef:84:96:5b:84:58:fe:51:b2: 8e:e4:05:f1:18:05:bd:3e:ed:74:25:52:04:d6:c8: b2:66:ca:f9:f4:3e:7a:f9:d6:f7:f7:f5:79:19:3f: 20:eb:34:d9:63:16:da:1f:49:4a:12:91:4b:14:37: 00:ac:55:17:9c:a4:2d:5f:f8:bf:e2:02:e9:d6:90: 3c:a0:de:ff:9d:c1:96:06:e8:a7:37:05:60:04:02: 4d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FC:0A:37:F6:E3:BC:9D:B2:F8:D6:23:AA:7C:20:D1:60:A6:06:5D X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:87:c1:a6:4c:9f:f6:35:bc:e5:4c:46:64:3b:72:34:f5:8f: 05:af:69:5e:e6:f5:21:f4:37:14:55:1e:cf:ba:0b:32:76:5c: cc:b0:79:ea:c1:d7:4e:a3:ad:b6:db:2a:30:c8:cf:4d:19:df: 51:ca:74:11:8d:ba:d9:12:ca:22:d0:d8:ba:13:e7:2e:c9:d1: 20:1d:ce:69:55:7a:76:2b:97:17:de:07:62:ee:c4:29:cd:48: 56:bd:27:df:5a:d3:f7:61:c7:ee:ce:49:36:ab:87:f3:2b:84: ea:59:87:b0:af:68:86:85:e8:b9:e5:f4:37:93:58:03:71:bd: e3:b9:c7:aa:4e:12:37:b8:e8:6d:b7:1c:6b:29:7f:21:27:c6: ac:65:f0:37:3f:00:14:82:7a:89:33:9f:cb:af:29:f8:cf:a4: 6b:cd:46:66:d3:f4:70:93:21:fe:42:f5:f7:60:ef:59:9c:3d: ff:59:ce:70:99:bc:e5:f5:08:64:ac:7e:c4:44:6f:1c:e0:ec: a3:bf:ae:b2:03:16:ea:b5:87:08:3f:96:a9:70:2a:e6:ff:8f: 7d:91:a5:30:9a:b8:85:84:78:dd:2e:02:94:05:4e:8d:29:fc: 90:fe:33:36:18:7c:9d:82:6d:cf:43:80:90:67:ef:0e:3f:c2: 2c:24:7b:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjYwNTExMDYwMTI5WhcNMjYwNTE4MDYwMTI5WjAYMRYwFAYD VQQDEw02YTAxNzBiYS0yNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi5d8FXqkf7ztUijRfAQxKUxP1of5C/sfY0z8OVnnZJVRUjLNbVCSAWj9Qibt iE0ld73BOc+dlnhian7mdO0eQOHjt7oEIdyH3TyQrG/P8YTnzkHU03b5d/TVUjTL 87eNGIrQ7dNiLR3SHuyWYQZmf7UmfUs0Qx6CniTU0T0C3CqNp9BEpaBzzR+bLPtD IUDzd/3sbrAv7ZIrXH7rdFLcldRWiRcFQQaHakTvhJZbhFj+UbKO5AXxGAW9Pu10 JVIE1siyZsr59D56+db39/V5GT8g6zTZYxbaH0lKEpFLFDcArFUXnKQtX/i/4gLp 1pA8oN7/ncGWBuinNwVgBAJNTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBj8Cjf2 47ydsvjWI6p8INFgpgZdMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcofBpkyf9jW85UxGZDtyNPWPBa9pXub1IfQ3FFUez7oLMnZczLB56sHXTqOt ttsqMMjPTRnfUcp0EY262RLKItDYuhPnLsnRIB3OaVV6diuXF94HYu7EKc1IVr0n 31rT92HH7s5JNquH8yuE6lmHsK9ohoXoueX0N5NYA3G947nHqk4SN7jobbccayl/ ISfGrGXwNz8AFIJ6iTOfy68p+M+ka81GZtP0cJMh/kL192DvWZw9/1nOcJm85fUI ZKx+xERvHODso7+usgMW6rWHCD+WqXAq5v+PfZGlMJq4hYR43S4ClAVOjSn8kP4z Nhh8nYJtz0OAkGfvDj/CLCR7pQ== -----END CERTIFICATE-----Generated at Wed May 13 04:49:25 2026 by rpki-client