$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: lZ9fhzOEs/daACr8gUCUz2nI/HNlIWynPnFOTtmlr6w= Subject key identifier: D0:D9:BE:7D:53:39:43:32:2B:EC:14:A4:D1:D4:E9:D8:1E:87:89:5F Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0CC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0CB3 Signing time: Fri 12 Jun 2026 18:32:14 +0000 Manifest this update: Fri 12 Jun 2026 18:32:14 +0000 Manifest next update: Fri 19 Jun 2026 18:32:14 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: CVs7mNZ11cPqR8tDT1RIe7X+jsOcizUeA5ZekkwxV8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Jun 12 18:32:14 2026 GMT Not After : Jun 19 18:32:14 2026 GMT Subject: CN=6a2c50ae-f17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:55:1c:e7:8c:ac:76:85:69:0c:da:fe:42: 9c:46:ef:00:0a:53:41:cc:81:39:a5:61:7a:39:08: df:9f:59:08:2a:09:4f:9a:b1:43:d2:b5:2f:5c:9f: eb:fd:ae:b2:84:5c:4f:81:54:f0:b8:a7:91:0c:38: e1:6a:fb:e6:88:68:5f:63:b0:cd:a7:81:84:7e:55: 80:dc:2f:63:6a:c3:6e:3f:7e:a1:ad:ca:7f:7e:81: be:17:99:8f:25:aa:02:98:8e:c7:0d:fe:93:c0:5d: 52:86:f1:e3:68:97:fb:56:34:f7:08:90:01:ae:28: 6f:57:b1:e6:7d:13:1b:9a:99:d2:39:a6:fd:ee:a9: 46:cb:05:e7:cc:01:0a:ae:28:d4:fd:3b:f2:b5:17: ac:17:b3:9f:cd:db:65:c8:da:65:38:39:81:d1:b9: 71:70:31:b4:6a:c9:46:de:6c:fc:a7:c9:72:df:71: a3:6b:b7:38:61:ad:f8:b5:67:c8:e4:6c:a4:6e:4e: 23:9f:35:d3:bb:34:52:54:b5:c9:2a:4f:ac:7c:c6: 91:58:19:86:c0:1e:74:c6:bb:f7:c2:0f:0a:50:4d: 20:e6:02:5f:1c:eb:78:e8:b7:e4:7d:4d:49:d0:d7: ad:b5:02:03:ca:84:8c:24:d4:e8:af:33:c5:a0:93: 7e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D9:BE:7D:53:39:43:32:2B:EC:14:A4:D1:D4:E9:D8:1E:87:89:5F X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:53:7c:96:61:d2:fe:be:d4:17:ff:2d:aa:f3:01:f5:02:20: d3:a0:2b:7a:ac:ff:c2:c4:a5:c8:75:45:16:96:42:65:62:89: 8f:f1:d4:e1:86:f5:1b:18:b7:26:d6:a5:1c:8c:9f:03:63:58: 8b:b9:9e:ff:ec:ec:66:b8:31:48:3c:90:2e:eb:fa:62:e6:01: e7:bd:05:45:ec:6a:75:6f:73:7e:15:51:9e:69:3b:a2:b0:1a: 4b:0c:73:aa:9e:94:54:bc:ca:58:7a:c4:64:b6:a2:b4:03:94: 71:e5:ea:8c:f6:d9:2b:4a:29:a5:11:9c:4f:2f:0d:a1:4d:19: 29:80:c8:13:9a:65:ff:f1:a4:ab:42:0c:33:a5:11:25:f8:16: 54:c7:88:72:1c:4f:bf:ee:dd:c0:6f:ec:1a:5b:c0:00:ec:83: f1:62:8c:76:58:f0:bb:f2:25:e9:d6:14:52:8e:a7:43:66:b5: b4:f2:39:17:8a:30:63:ec:7b:7e:3b:e7:f4:7d:78:94:e3:8e: e4:94:27:62:74:1a:c2:39:16:ed:37:26:d9:f9:0a:8d:7d:e1: 17:11:61:07:55:55:aa:29:83:96:4e:0a:43:b9:6f:70:43:98: b9:64:5c:6b:02:18:78:f2:57:3f:58:8c:cb:c7:5d:49:af:fd: a7:6f:42:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjYwNjEyMTgzMjE0WhcNMjYwNjE5MTgzMjE0WjAYMRYwFAYD VQQDEw02YTJjNTBhZS1mMTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynBVHOeMrHaFaQza/kKcRu8AClNBzIE5pWF6OQjfn1kIKglPmrFD0rUvXJ/r /a6yhFxPgVTwuKeRDDjhavvmiGhfY7DNp4GEflWA3C9jasNuP36hrcp/foG+F5mP JaoCmI7HDf6TwF1ShvHjaJf7VjT3CJABrihvV7HmfRMbmpnSOab97qlGywXnzAEK rijU/TvytResF7OfzdtlyNplODmB0blxcDG0aslG3mz8p8ly33Gja7c4Ya34tWfI 5Gykbk4jnzXTuzRSVLXJKk+sfMaRWBmGwB50xrv3wg8KUE0g5gJfHOt46LfkfU1J 0NettQIDyoSMJNTorzPFoJN+bwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNDZvn1T OUMyK+wUpNHU6dgeh4lfMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN1N8lmHS/r7UF/8tqvMB9QIg06Areqz/wsSlyHVFFpZCZWKJj/HU4Yb1Gxi3 JtalHIyfA2NYi7me/+zsZrgxSDyQLuv6YuYB570FRexqdW9zfhVRnmk7orAaSwxz qp6UVLzKWHrEZLaitAOUceXqjPbZK0oppRGcTy8NoU0ZKYDIE5pl//Gkq0IMM6UR JfgWVMeIchxPv+7dwG/sGlvAAOyD8WKMdljwu/Il6dYUUo6nQ2a1tPI5F4owY+x7 fjvn9H14lOOO5JQnYnQawjkW7Tcm2fkKjX3hFxFhB1VVqimDlk4KQ7lvcEOYuWRc awIYePJXP1iMy8ddSa/9p29Cyw== -----END CERTIFICATE-----Generated at Sat Jun 13 19:49:15 2026 by rpki-client