$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: xpP3kpm4FPul5uwx9PT0palvU4ME5Ozub0B46hsdJxA= Subject key identifier: A0:D9:29:B4:90:32:1B:07:1A:A8:57:59:BF:5D:C3:EF:5D:90:FB:D4 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2E6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2DED Signing time: Fri 12 Jun 2026 15:29:03 +0000 Manifest this update: Fri 12 Jun 2026 15:29:03 +0000 Manifest next update: Fri 19 Jun 2026 15:29:03 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: ssxzNVC852E70nDsnuSWqGg7KUGc6kLabeM8SSdYe20=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11885 (0x2e6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Jun 12 15:29:03 2026 GMT Not After : Jun 19 15:29:03 2026 GMT Subject: CN=6a2c25bf-7594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:15:be:f8:e8:79:63:c6:19:28:1e:f6:9b:6b: f5:6b:22:2a:f7:57:d9:ca:45:8a:14:f3:9e:6f:67: 05:ec:8a:33:ee:1e:f5:1f:fd:54:d5:8d:67:b5:0f: 46:d3:ef:d1:07:36:5b:38:6a:8c:0d:af:43:ae:28: b1:6f:a7:73:18:d0:3c:3f:00:d1:c1:cd:8c:9e:30: 03:b6:af:e7:d3:6e:22:d7:ac:bc:a0:f2:b5:13:71: 3a:e0:c2:ee:75:14:a7:19:73:e7:72:91:1b:9f:ac: ab:19:92:9e:9f:0d:98:4f:6f:75:59:cb:7d:4c:07: e5:de:6a:fc:e8:0e:d3:17:ed:af:14:3b:64:37:c3: 78:a3:94:d4:d4:9f:e7:ff:54:48:0d:a5:4b:f0:45: 30:37:27:52:8c:23:d9:6d:63:25:30:17:f4:72:14: 00:36:28:ce:de:95:11:0e:56:b0:db:30:53:57:06: 8b:59:9a:5b:d0:a4:06:33:1d:ef:87:2b:80:14:2f: 5a:04:81:1f:8b:0e:05:6f:a5:c2:5e:38:bf:e9:02: 94:05:fa:92:01:b4:f6:a7:44:da:c4:c5:55:33:74: ac:ca:60:c0:7d:a6:ba:80:10:a4:07:0c:37:cd:a8: 0e:9b:3a:1b:c4:c8:e5:fb:c8:b9:e9:c6:60:ae:c5: 44:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D9:29:B4:90:32:1B:07:1A:A8:57:59:BF:5D:C3:EF:5D:90:FB:D4 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:7b:a4:83:15:10:99:f1:ee:1f:3d:9f:7b:cd:8c:77:1f:4f: f3:55:eb:27:84:e4:f3:d5:a4:a8:21:45:3f:94:cd:9d:13:e3: 94:66:b6:68:a7:ed:b6:41:b6:69:5c:fc:fa:90:af:50:17:12: 05:0b:26:74:0e:5d:52:b2:b8:38:52:d2:d0:8f:6c:7f:64:d6: 2f:f5:46:6b:a1:06:fc:85:5f:9d:6e:47:33:91:13:be:0e:23: 6b:09:c9:4b:54:cd:0b:93:56:78:90:ee:de:6f:60:d7:67:16: 89:71:4f:8f:47:f8:ac:41:71:3a:92:fe:3f:c0:83:ce:df:e6: 11:b0:11:3a:5f:e9:0c:6b:ee:c4:53:8d:20:e7:5a:d4:a1:1a: 05:79:94:be:47:20:24:7d:8e:68:fd:29:15:79:e3:dd:36:3c: 20:70:6b:ca:bc:33:94:20:fc:25:17:74:38:7d:fe:48:00:84: f2:fe:8b:cc:20:a9:2c:c9:6b:84:7e:b9:c1:17:41:7d:b9:db: b3:ff:4f:48:a5:93:3f:3a:1c:0c:da:0f:b9:41:04:6f:b2:26: 48:52:ba:97:b9:03:7c:60:3e:fb:22:06:96:1d:c8:cb:e9:60: 15:75:0e:1c:e9:a4:ea:50:14:dd:51:d4:a8:28:07:74:f2:1b: 30:7a:8c:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjYwNjEyMTUyOTAzWhcNMjYwNjE5MTUyOTAzWjAYMRYwFAYD VQQDEw02YTJjMjViZi03NTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xW++Oh5Y8YZKB72m2v1ayIq91fZykWKFPOeb2cF7Ioz7h71H/1U1Y1ntQ9G 0+/RBzZbOGqMDa9Driixb6dzGNA8PwDRwc2MnjADtq/n024i16y8oPK1E3E64MLu dRSnGXPncpEbn6yrGZKenw2YT291Wct9TAfl3mr86A7TF+2vFDtkN8N4o5TU1J/n /1RIDaVL8EUwNydSjCPZbWMlMBf0chQANijO3pURDlaw2zBTVwaLWZpb0KQGMx3v hyuAFC9aBIEfiw4Fb6XCXji/6QKUBfqSAbT2p0TaxMVVM3SsymDAfaa6gBCkBww3 zagOmzobxMjl+8i56cZgrsVECwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKDZKbSQ MhsHGqhXWb9dw+9dkPvUMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASnukgxUQmfHuHz2fe82Mdx9P81XrJ4Tk89WkqCFFP5TNnRPjlGa2aKfttkG2 aVz8+pCvUBcSBQsmdA5dUrK4OFLS0I9sf2TWL/VGa6EG/IVfnW5HM5ETvg4jawnJ S1TNC5NWeJDu3m9g12cWiXFPj0f4rEFxOpL+P8CDzt/mEbAROl/pDGvuxFONIOda 1KEaBXmUvkcgJH2OaP0pFXnj3TY8IHBryrwzlCD8JRd0OH3+SACE8v6LzCCpLMlr hH65wRdBfbnbs/9PSKWTPzocDNoPuUEEb7ImSFK6l7kDfGA++yIGlh3Iy+lgFXUO HOmk6lAU3VHUqCgHdPIbMHqMiQ== -----END CERTIFICATE-----Generated at Sun Jun 14 09:31:21 2026 by rpki-client