$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: w2Yj+8dVEhcAwurgGoOB0ETaajyz0QZjni+R5zdUHsY= Subject key identifier: 95:2B:82:4A:8E:D4:97:F7:E8:E2:E2:33:BF:68:9D:9C:FE:1C:75:E8 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 0137 Signing time: Sat 13 Jun 2026 05:29:09 +0000 Manifest this update: Sat 13 Jun 2026 05:29:09 +0000 Manifest next update: Sat 20 Jun 2026 05:29:09 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: GIVeDZUQt9m+muaBGlDkofn7JzNlkpv1ci+Dvc/AaCw=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: XEgsmSONdO5QmyZ+W6pwM4gqDm2Ruw04W/Sgse84F1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 05:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Jun 13 05:29:09 2026 GMT Not After : Jun 20 05:29:09 2026 GMT Subject: CN=6a2ceaa5-b2db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4d:1d:62:3d:76:e3:88:8d:c2:d5:0c:94:f0: c9:b0:da:22:a1:e8:d3:64:c9:d2:2d:c4:fc:4c:5a: 8e:c4:af:fb:4b:fa:5b:c0:6d:fe:a0:95:16:4c:66: 93:be:9f:b5:22:f9:4c:8d:02:1b:c2:3c:b7:55:37: 74:32:dc:9c:46:10:e6:e8:d7:e2:28:23:ef:55:15: 68:fa:b7:09:a2:21:c2:9d:f4:08:8a:20:c8:db:af: 13:b2:69:8a:9f:d9:d7:01:f9:49:da:2b:da:ed:1f: 23:59:1e:7a:6f:25:e3:d7:89:1c:c7:bd:af:e4:c0: ac:58:70:f7:9a:c5:09:28:2b:fc:9c:4a:a9:f4:b3: 10:f8:6e:6c:24:56:dd:23:6b:42:eb:b7:c3:0c:ed: c1:d1:bc:66:6c:61:b7:a1:76:eb:b8:f0:2e:f2:1b: e6:2c:dc:56:fd:99:fa:f1:d0:ae:e9:f4:a9:f2:53: 85:22:79:65:11:f1:83:99:07:82:be:35:d4:3a:21: 34:73:20:1b:93:5c:1e:77:19:a5:79:bb:fc:0f:bc: 27:e9:8f:03:ef:bf:ca:f0:f8:22:8d:1e:31:b9:78: 0a:3b:dd:0d:f5:7f:66:4c:7c:b6:a4:95:3d:44:4e: f2:55:f4:3e:d0:09:7a:cf:9f:25:37:c0:1f:be:a2: 26:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2B:82:4A:8E:D4:97:F7:E8:E2:E2:33:BF:68:9D:9C:FE:1C:75:E8 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:99:11:3f:87:58:37:3a:de:55:2b:41:e5:25:9c:96:d1:42: 68:ff:5c:25:07:91:11:f0:0f:87:42:38:45:3a:e5:7d:b4:a3: d2:10:65:4a:b7:ca:9f:86:28:4f:2c:31:9c:88:83:48:8e:eb: ec:2f:07:55:04:59:b2:29:d2:06:62:0a:e9:75:9e:24:e3:ca: 8f:82:c9:b9:16:6f:7e:e0:a4:38:6f:c3:4c:b6:27:4a:2d:13: 3e:f4:64:2b:36:7b:01:7e:bc:08:05:43:fb:de:91:67:83:46: 63:9b:8c:b9:55:e2:a0:6b:a0:1a:69:2a:8d:7c:98:43:4c:1d: 9a:a3:96:48:0e:81:c5:bc:d5:8c:3b:09:ef:cd:94:3e:5c:09: eb:60:0b:5f:c8:82:ae:ea:64:8a:03:3b:73:79:19:16:df:dc: 4b:3b:db:0c:ca:73:e2:ce:4f:5a:fb:bd:94:5f:2a:ea:4c:fc: ab:b3:fc:1e:fb:d8:c3:29:ae:4c:db:74:86:cd:44:ef:84:3e: 32:4b:93:1a:da:31:a3:7c:56:ab:6b:1a:98:3b:99:c4:5d:67: 1e:d1:b8:9e:3d:f4:0c:e0:1f:2b:2d:25:30:72:0d:14:38:d2: 8d:8e:1d:2f:81:90:9d:2d:c2:c5:fd:4e:f5:bd:ee:77:db:1e: fa:56:83:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjYwNjEzMDUyOTA5WhcNMjYwNjIwMDUyOTA5WjAYMRYwFAYD VQQDEw02YTJjZWFhNS1iMmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn00dYj1244iNwtUMlPDJsNoioejTZMnSLcT8TFqOxK/7S/pbwG3+oJUWTGaT vp+1IvlMjQIbwjy3VTd0MtycRhDm6NfiKCPvVRVo+rcJoiHCnfQIiiDI268TsmmK n9nXAflJ2iva7R8jWR56byXj14kcx72v5MCsWHD3msUJKCv8nEqp9LMQ+G5sJFbd I2tC67fDDO3B0bxmbGG3oXbruPAu8hvmLNxW/Zn68dCu6fSp8lOFInllEfGDmQeC vjXUOiE0cyAbk1wedxmlebv8D7wn6Y8D77/K8PgijR4xuXgKO90N9X9mTHy2pJU9 RE7yVfQ+0Al6z58lN8AfvqImuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUrgkqO 1Jf36OLiM79onZz+HHXoMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUJkRP4dYNzreVStB5SWcltFCaP9cJQeREfAPh0I4RTrlfbSj0hBlSrfKn4Yo TywxnIiDSI7r7C8HVQRZsinSBmIK6XWeJOPKj4LJuRZvfuCkOG/DTLYnSi0TPvRk KzZ7AX68CAVD+96RZ4NGY5uMuVXioGugGmkqjXyYQ0wdmqOWSA6BxbzVjDsJ782U PlwJ62ALX8iCrupkigM7c3kZFt/cSzvbDMpz4s5PWvu9lF8q6kz8q7P8HvvYwymu TNt0hs1E74Q+MkuTGtoxo3xWq2samDuZxF1nHtG4nj30DOAfKy0lMHINFDjSjY4d L4GQnS3Cxf1O9b3ud9se+laDZA== -----END CERTIFICATE-----Generated at Sat Jun 13 19:28:23 2026 by rpki-client