$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: I+VDxqnko9z7eFuVtyKIE3sXW7OQCwu45z01sdpdAV4= Subject key identifier: 20:FF:E7:D4:0C:79:0E:8C:2B:54:D6:93:CA:76:3A:3E:7D:B5:2C:2D Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0A5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0A4D Signing time: Fri 12 Jun 2026 19:43:27 +0000 Manifest this update: Fri 12 Jun 2026 19:43:26 +0000 Manifest next update: Fri 19 Jun 2026 19:43:26 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: ZIBKaF5XXhKgd4GBEcu9LEqsrtYGA7MZXbVGzHkR55k=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: AksdzM4PbXGL/XcGvbH1UmcYB82GNXMH4wOGUwrHV60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2650 (0xa5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Jun 12 19:43:26 2026 GMT Not After : Jun 19 19:43:26 2026 GMT Subject: CN=6a2c615f-66e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:db:d2:5d:ea:a1:38:92:5e:9b:f1:92:ce:a7: a2:83:2b:fe:a4:78:3b:00:e9:f6:ef:5c:5e:e7:86: d7:35:57:04:1c:66:16:c9:ac:19:d1:47:99:32:41: 6a:34:e7:c0:a8:aa:ab:75:ab:e8:48:83:97:17:99: 1b:2f:54:ac:5b:fb:32:e0:8d:69:a4:6f:95:4e:c6: b5:ab:71:f1:7d:e8:f5:b9:db:aa:7b:d1:9a:43:8a: d1:65:f0:bf:67:2b:86:b5:91:a3:b7:ff:53:5f:9d: cb:a4:c9:d7:f1:58:40:8a:b2:ce:9f:16:64:9a:6b: dc:cc:e3:b9:7a:ad:b3:44:d8:0b:94:3e:63:37:83: e4:4f:80:11:71:bc:49:6c:36:ce:49:e8:27:26:36: ee:d7:81:50:b9:55:ba:2a:43:d6:47:ae:fc:a9:eb: 68:40:19:e2:da:82:08:22:19:12:ee:9b:96:24:f3: 48:e3:58:08:a8:43:35:f4:48:0a:58:2a:9f:9c:44: 85:b9:97:01:1b:a8:c4:b1:9b:d4:3f:e5:f9:97:15: 59:4e:18:cb:62:67:d1:83:1d:d1:04:26:ef:1a:89: 29:2b:de:75:a0:32:48:d7:4f:1d:01:c9:cd:4d:73: ad:76:84:41:9a:ca:c5:b8:fc:17:df:8e:12:59:0d: 71:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FF:E7:D4:0C:79:0E:8C:2B:54:D6:93:CA:76:3A:3E:7D:B5:2C:2D X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:07:f4:51:de:3f:a1:c3:2c:89:10:d4:ad:07:66:d9:83:a1: fd:0e:f6:77:25:23:4b:9a:3a:04:19:a2:fa:18:50:12:9f:ee: 52:58:77:08:58:c8:e9:fb:a8:53:a9:56:5e:ed:d1:cf:87:81: 6c:a3:8a:b3:51:be:16:2d:f6:eb:44:77:77:8d:3e:9f:bc:a8: 56:e1:b8:25:ec:3e:2b:0a:fc:35:65:c1:2e:13:5a:5a:5c:0b: 80:06:1a:4f:38:7f:32:da:6f:03:4f:ea:1e:bc:a3:6e:fa:93: 7b:3f:32:bd:68:48:99:d7:84:77:76:91:4d:4c:bb:a5:b1:3a: 4f:d1:49:d5:6c:06:16:c0:b7:74:d8:6b:6a:ca:31:76:22:06: 22:18:b3:31:9b:31:0d:65:1f:b8:1b:ab:e5:53:66:92:39:6b: 53:d5:f1:d4:18:dc:32:2b:aa:49:d6:f0:29:6c:66:4c:42:03: f9:b2:66:a3:f7:bf:8d:ef:21:fd:a4:68:3f:e5:94:9d:31:4b: 49:63:f5:f4:eb:51:f6:a0:06:e5:43:4c:67:3f:8c:df:55:15: a7:ea:ff:73:36:89:6a:b2:ee:d3:a3:82:3f:d4:05:cd:0d:1f: b7:07:f9:49:21:f1:2f:7b:69:0f:42:07:f8:40:b6:02:f6:b1: 3f:4e:b0:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjYwNjEyMTk0MzI2WhcNMjYwNjE5MTk0MzI2WjAYMRYwFAYD VQQDEw02YTJjNjE1Zi02NmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9vSXeqhOJJem/GSzqeigyv+pHg7AOn271xe54bXNVcEHGYWyawZ0UeZMkFq NOfAqKqrdavoSIOXF5kbL1SsW/sy4I1ppG+VTsa1q3Hxfej1uduqe9GaQ4rRZfC/ ZyuGtZGjt/9TX53LpMnX8VhAirLOnxZkmmvczOO5eq2zRNgLlD5jN4PkT4ARcbxJ bDbOSegnJjbu14FQuVW6KkPWR678qetoQBni2oIIIhkS7puWJPNI41gIqEM19EgK WCqfnESFuZcBG6jEsZvUP+X5lxVZThjLYmfRgx3RBCbvGokpK951oDJI108dAcnN TXOtdoRBmsrFuPwX344SWQ1xdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCD/59QM eQ6MK1TWk8p2Oj59tSwtMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALQf0Ud4/ocMsiRDUrQdm2YOh/Q72dyUjS5o6BBmi+hhQEp/uUlh3CFjI6fuo U6lWXu3Rz4eBbKOKs1G+Fi3260R3d40+n7yoVuG4Jew+Kwr8NWXBLhNaWlwLgAYa Tzh/MtpvA0/qHryjbvqTez8yvWhImdeEd3aRTUy7pbE6T9FJ1WwGFsC3dNhrasox diIGIhizMZsxDWUfuBur5VNmkjlrU9Xx1BjcMiuqSdbwKWxmTEID+bJmo/e/je8h /aRoP+WUnTFLSWP19OtR9qAG5UNMZz+M31UVp+r/czaJarLu06OCP9QFzQ0ftwf5 SSHxL3tpD0IH+EC2AvaxP06w0A== -----END CERTIFICATE-----Generated at Sun Jun 14 00:23:21 2026 by rpki-client