$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: hKVu4iqZO/1c+u1YGXOlop1JN16LiFKJd39TFIMTUPM= Subject key identifier: 6B:39:E7:B7:FC:6C:AA:BD:DB:47:EB:92:5C:C9:EB:0C:DA:D1:0A:C2 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 02CB Signing time: Sat 13 Jun 2026 01:24:15 +0000 Manifest this update: Sat 13 Jun 2026 01:24:14 +0000 Manifest next update: Sat 20 Jun 2026 01:24:14 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: ctqKd6i+Wa2W+MMZHT3citah+f0XtZAjNJiYAwJC7ZE=) 2: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (hash: zqFlnoiRJ96ipkTg+cLy44fvbC4N/hd7GgD9UC/f7t4=) 3: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (hash: ldho/4dcBhvMSFZNQSotx0OQwqa0gAe9if7fkQE4P7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Jun 13 01:24:14 2026 GMT Not After : Jun 20 01:24:14 2026 GMT Subject: CN=6a2cb13e-9d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1a:00:b1:e5:de:51:c4:7d:06:d0:f0:c6:c9: ce:3e:a3:e5:f9:d9:b9:65:d8:0d:46:7d:41:ad:c9: c5:b0:be:c0:1d:7f:04:8e:58:1f:c5:17:82:05:62: 7d:16:af:58:75:15:4d:d7:11:f6:c5:a8:ef:d5:e4: 21:ef:2d:f6:5c:f5:41:6b:78:55:b4:0c:17:6f:c0: 1b:88:e2:40:bc:49:45:65:78:af:58:19:2b:b0:c8: dc:02:5f:0e:dd:7b:7e:26:5f:73:b3:12:00:98:29: 22:fd:d5:15:dd:ea:11:31:bb:36:5b:d9:a2:b6:10: 9e:b6:28:5f:cb:c8:c8:49:0d:3a:a1:50:6b:9f:ba: 88:95:64:a6:f8:b1:75:ae:eb:97:6c:3e:7d:3a:7d: 12:2d:d3:04:ae:7b:25:4f:64:14:73:47:5a:61:8a: 72:ef:a0:ed:37:63:42:98:ad:38:43:ca:79:59:78: ed:22:30:7c:c5:e0:f2:7d:b5:33:8e:97:9e:07:27: 47:c7:91:1f:10:45:f0:33:8d:18:b0:26:e2:a0:01: 21:f4:bb:38:95:d7:86:31:fb:91:fb:b3:e3:71:fb: 62:32:bd:2a:da:45:af:11:ba:ce:f7:94:70:c4:f0: 21:32:60:80:89:7a:7f:ff:17:e8:84:fd:b2:3d:c8: 6f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:39:E7:B7:FC:6C:AA:BD:DB:47:EB:92:5C:C9:EB:0C:DA:D1:0A:C2 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:14:35:14:c6:5b:b5:f3:f7:0d:61:f4:ab:ac:b1:09:8a:5a: ec:22:7d:f2:5a:44:51:4d:76:66:36:64:8f:65:e0:69:79:1d: 10:df:bb:b2:11:a8:dc:8a:02:90:fd:cf:ec:3c:5f:f7:08:22: b9:c9:1b:82:a1:87:0a:f9:ba:6e:53:53:8f:2d:14:ca:1e:34: 54:cf:36:ee:97:c7:27:20:d8:90:a6:19:2a:88:b5:e4:75:b2: c2:d2:be:53:d9:7d:30:3d:ee:8f:cd:91:ae:87:fe:46:db:9f: 3b:5d:79:06:ce:c1:e6:69:18:4c:9c:a0:5e:c5:a6:e3:8a:92: 5e:22:81:a0:b1:f0:30:fa:89:4a:3e:61:03:f9:ec:0a:ce:ae: 27:79:4d:be:56:2d:69:a1:fc:1c:e0:57:b6:37:37:72:44:04: 86:88:8b:a9:5e:d1:d9:91:94:b0:1d:11:de:6c:d0:95:ac:42: 54:30:02:24:e5:15:37:13:6a:b7:66:31:e0:cf:0d:97:46:5b: 63:0e:7e:e2:f4:20:d8:63:74:d5:62:1a:76:52:cd:b5:cc:35: 53:ea:43:db:f3:91:21:0d:ef:84:c9:79:78:7c:be:d6:40:85: 7c:72:64:3f:53:59:1d:48:c4:8a:2f:91:dd:5f:87:23:b7:64: 5f:61:7e:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjYwNjEzMDEyNDE0WhcNMjYwNjIwMDEyNDE0WjAYMRYwFAYD VQQDEw02YTJjYjEzZS05ZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBoAseXeUcR9BtDwxsnOPqPl+dm5ZdgNRn1BrcnFsL7AHX8EjlgfxReCBWJ9 Fq9YdRVN1xH2xajv1eQh7y32XPVBa3hVtAwXb8AbiOJAvElFZXivWBkrsMjcAl8O 3Xt+Jl9zsxIAmCki/dUV3eoRMbs2W9mithCetihfy8jISQ06oVBrn7qIlWSm+LF1 ruuXbD59On0SLdMErnslT2QUc0daYYpy76DtN2NCmK04Q8p5WXjtIjB8xeDyfbUz jpeeBydHx5EfEEXwM40YsCbioAEh9Ls4ldeGMfuR+7PjcftiMr0q2kWvEbrO95Rw xPAhMmCAiXp//xfohP2yPchveQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGs557f8 bKq920frklzJ6wza0QrCMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfxQ1FMZbtfP3DWH0q6yxCYpa7CJ98lpEUU12ZjZkj2XgaXkdEN+7shGo3IoC kP3P7Dxf9wgiuckbgqGHCvm6blNTjy0Uyh40VM827pfHJyDYkKYZKoi15HWywtK+ U9l9MD3uj82Rrof+RtufO115Bs7B5mkYTJygXsWm44qSXiKBoLHwMPqJSj5hA/ns Cs6uJ3lNvlYtaaH8HOBXtjc3ckQEhoiLqV7R2ZGUsB0R3mzQlaxCVDACJOUVNxNq t2Yx4M8Nl0ZbYw5+4vQg2GN01WIadlLNtcw1U+pD2/ORIQ3vhMl5eHy+1kCFfHJk P1NZHUjEii+R3V+HI7dkX2F+Qg== -----END CERTIFICATE-----Generated at Sat Jun 13 13:20:06 2026 by rpki-client