$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: a2lhICBkiAMbMA81pxqSzyyNZnEoLyJsJ1slLcEoAiI= Subject key identifier: EA:AC:44:39:02:E7:21:59:63:B9:A5:06:63:E8:FA:24:B7:AD:EA:69 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 072A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 071A Signing time: Fri 12 Jun 2026 22:01:26 +0000 Manifest this update: Fri 12 Jun 2026 22:01:26 +0000 Manifest next update: Fri 19 Jun 2026 22:01:26 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: 3BjALKyty8zOHxazQaKuDUqBIfVM6SNRSIDZADBMj2w=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: fjAS87Fa2KTDfIBPfFBgVc4CwHe6EqcmmF1tEiz37Qc=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: /5wXx4cmTVQVdguvfntlB2W6kj2rZMU7vB1692wCKvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Jun 12 22:01:26 2026 GMT Not After : Jun 19 22:01:26 2026 GMT Subject: CN=6a2c81b6-30c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ab:4f:82:50:f1:43:70:5a:4c:bf:09:03:db: 50:3c:41:40:da:32:a1:ef:e8:17:c7:9c:57:72:9b: 16:af:67:f0:64:30:a9:a8:88:42:8a:8e:ac:ed:e7: 42:65:e0:c7:83:6c:2e:79:63:72:d8:e8:54:ed:57: be:ca:f0:dd:88:b0:bb:3a:fc:5e:70:56:d8:9e:f4: bf:4e:35:6e:f5:bc:33:f8:db:f8:53:63:71:0e:ca: 36:b2:ae:21:42:79:ff:2d:7d:6a:47:ee:79:82:eb: 54:26:6e:2b:74:9a:0b:4b:a1:85:e3:26:11:17:a0: e8:25:20:4c:7d:a2:0a:3d:f5:38:ba:76:b5:7a:cc: 67:ae:0d:96:04:54:2d:f2:a5:28:c8:51:81:a7:02: 17:22:d2:1c:3d:52:7c:f1:0e:74:31:50:ac:51:f4: 58:c2:96:19:3e:52:ff:49:29:7e:aa:66:b8:bf:26: 87:a3:6c:42:cb:2d:76:a0:fe:92:3c:24:e0:4a:2a: 5b:14:7a:ef:5a:d2:0e:fe:ed:43:d6:31:de:e7:79: af:cf:36:95:06:98:e1:d8:c0:84:56:d2:87:47:ec: 40:5b:1d:fc:8b:fa:f9:fb:a1:67:86:6e:ee:ce:11: be:3d:37:95:51:02:93:fe:21:32:69:21:0f:e2:31: d9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AC:44:39:02:E7:21:59:63:B9:A5:06:63:E8:FA:24:B7:AD:EA:69 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:a5:7a:63:f8:51:d4:a1:d8:ce:f7:ee:f1:ad:d8:69:6c:be: ec:c5:ee:89:d3:9a:a6:a4:c3:f3:62:eb:81:c5:ec:3c:bb:de: 5f:2f:b0:39:f6:0b:90:2f:f1:93:1c:72:0d:b0:39:d6:1e:3b: 6b:d0:a2:ca:73:dc:69:b5:21:ed:c5:d4:ff:d0:0c:1b:00:4c: c5:c3:d3:a6:f9:d3:41:52:00:c0:05:07:c9:13:b0:37:5e:b0: 13:53:05:ec:4c:bd:8f:62:19:d7:0e:41:a6:a2:e6:21:75:51: d3:18:d1:bf:9c:a9:8e:12:cb:48:6a:0f:d5:43:c3:98:0f:11: d5:cf:1d:b6:3c:6c:6c:2c:f1:6b:76:3d:f8:b3:c0:0e:6c:a0: 4b:72:eb:0a:bd:17:d1:c6:2a:d6:cf:91:ed:50:1c:cb:6b:0b: 9f:93:46:2c:01:f0:bb:58:79:06:13:45:20:56:20:b0:e0:e5: c9:31:1e:21:a6:cd:bb:9b:e6:0f:19:ed:a2:95:d5:86:0a:fc: b9:11:bc:6a:35:be:08:41:01:68:41:ef:d9:8c:49:26:d7:49: 47:d0:55:1b:59:b9:1a:c4:93:47:a5:c0:07:73:df:d0:83:55: 93:dd:33:fa:d4:f0:76:40:a2:e3:ce:04:37:8e:bf:2a:1c:d5: ba:a7:7c:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjYwNjEyMjIwMTI2WhcNMjYwNjE5MjIwMTI2WjAYMRYwFAYD VQQDEw02YTJjODFiNi0zMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKtPglDxQ3BaTL8JA9tQPEFA2jKh7+gXx5xXcpsWr2fwZDCpqIhCio6s7edC ZeDHg2wueWNy2OhU7Ve+yvDdiLC7OvxecFbYnvS/TjVu9bwz+Nv4U2NxDso2sq4h Qnn/LX1qR+55gutUJm4rdJoLS6GF4yYRF6DoJSBMfaIKPfU4una1esxnrg2WBFQt 8qUoyFGBpwIXItIcPVJ88Q50MVCsUfRYwpYZPlL/SSl+qma4vyaHo2xCyy12oP6S PCTgSipbFHrvWtIO/u1D1jHe53mvzzaVBpjh2MCEVtKHR+xAWx38i/r5+6Fnhm7u zhG+PTeVUQKT/iEyaSEP4jHZlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqsRDkC 5yFZY7mlBmPo+iS3reppMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD6V6Y/hR1KHYzvfu8a3YaWy+7MXuidOapqTD82LrgcXsPLveXy+wOfYLkC/x kxxyDbA51h47a9CiynPcabUh7cXU/9AMGwBMxcPTpvnTQVIAwAUHyROwN16wE1MF 7Ey9j2IZ1w5BpqLmIXVR0xjRv5ypjhLLSGoP1UPDmA8R1c8dtjxsbCzxa3Y9+LPA DmygS3LrCr0X0cYq1s+R7VAcy2sLn5NGLAHwu1h5BhNFIFYgsODlyTEeIabNu5vm DxntopXVhgr8uRG8ajW+CEEBaEHv2YxJJtdJR9BVG1m5GsSTR6XAB3Pf0INVk90z +tTwdkCi484EN46/KhzVuqd8Uw== -----END CERTIFICATE-----Generated at Sun Jun 14 09:13:08 2026 by rpki-client