$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: wkEXKh49dbM0YWBW8h71kJRLyuPUFlTQ/nWNeSgyf7k= Subject key identifier: 7C:07:84:C2:BA:7E:91:E1:4F:2E:0B:27:FD:8A:22:1F:C5:D4:34:EC Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 0517 Signing time: Fri 12 Jun 2026 16:58:41 +0000 Manifest this update: Fri 12 Jun 2026 16:58:40 +0000 Manifest next update: Fri 19 Jun 2026 16:58:40 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: VQe4bXIDXTPXU1ghEqxczIqMxeqw5XbwfdRFLB64Ieg=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: 5Z7fKb2b95O7xf2REenK7dbH8KrSrAmTwTpVkXBeeOI=) 3: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Ylv7wHI65XMnQYhoDyQSygUwHrURYMjzNieL/UaPiGU=) 4: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: bjkkedoEzbUfC4GQvKwdaQZgxgq0YTl5qOigfpRvGaU=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HtAUxiV2GGFLsnw5Ftue8AlO9jul/mJwmhYMXTb/CeY=) 6: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: 76p1LWBSiAURuIgRIP/lu1qZCJd79sZFpOsF7Mk4V7g=) 7: 1479C514596A11ECB1394271C4F9AE02.roa (hash: wpAJJYnFAicDNwa71hcmrPmPcdiAdvkl0r/mHo7+0do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Jun 12 16:58:40 2026 GMT Not After : Jun 19 16:58:40 2026 GMT Subject: CN=6a2c3ac1-5b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:35:85:c8:b2:42:5a:29:ab:0b:15:45:68:52: 33:d2:79:99:ba:07:fe:95:c6:be:66:4e:00:f8:d3: ee:39:42:68:08:eb:bd:a6:52:01:4c:a2:d5:78:a2: 17:d6:93:f0:be:4b:d5:3f:81:17:95:79:d2:97:0e: 1a:e4:8f:b0:15:da:fd:e4:61:7b:af:03:6b:66:74: d7:a9:6f:1d:85:59:ab:ba:8a:fe:86:2b:8a:9b:ce: 38:93:ec:4c:49:6c:e3:9f:d2:40:45:32:e0:92:5b: 7f:09:4a:fd:63:7e:e3:a1:86:de:1d:aa:a2:14:3f: 45:9e:c0:99:74:78:83:80:1a:0a:52:a2:5a:ba:57: a4:11:71:b6:09:ea:e9:11:c4:92:ea:e4:f9:4e:3d: 5c:1d:16:8f:ae:3d:ff:d2:7b:b8:65:97:84:c7:f8: 9e:ac:33:6e:49:22:a2:40:7c:4b:b4:00:0a:6f:6c: 0b:97:3f:36:bc:63:b5:e2:bd:df:6e:fb:a8:1d:79: d4:0a:ac:82:1e:15:64:f3:1e:76:7e:be:68:5c:7f: f3:b7:c3:28:70:e3:df:65:0a:a3:7d:7e:b9:6c:5f: 0f:b0:7d:3e:95:72:11:47:29:11:a4:77:8f:a2:80: f2:87:84:56:0b:f9:3b:c0:3d:79:a9:0c:d2:cc:99: fc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:07:84:C2:BA:7E:91:E1:4F:2E:0B:27:FD:8A:22:1F:C5:D4:34:EC X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:fc:8f:d1:9a:c6:10:e2:ce:e0:9d:35:89:6b:77:0a:04:b3: 3e:ef:7a:39:8c:aa:70:4e:fc:bd:e4:54:75:74:a5:c9:58:ff: 13:e2:de:23:45:62:0c:27:fd:75:9b:57:3d:68:63:5f:65:ae: 0f:09:61:ab:6c:47:42:3b:69:93:33:04:c7:33:39:9b:1a:68: 04:cc:2a:4e:ca:a1:34:f6:42:9b:da:df:75:b6:b0:65:69:ad: 6b:e4:6e:f0:15:a0:f4:82:31:56:12:e2:85:e0:ec:bf:8f:80: b9:57:96:5e:46:a5:b2:f6:2d:10:0c:32:ab:3e:b6:17:08:ad: 08:73:3d:d9:f8:0e:f4:77:48:11:bb:af:72:6e:ef:67:4f:37: 5b:7c:9a:dc:91:dc:9a:9c:69:0d:8e:30:c2:fb:66:f9:fe:e6: 0e:a2:67:ad:20:d4:80:2c:ae:77:e0:43:78:60:a2:ec:22:8f: b6:0a:cd:ca:02:91:67:1b:35:d5:4a:d8:e0:be:a2:9a:77:85: 80:f1:e6:7b:91:85:d6:9a:bd:2a:97:5d:77:20:20:f8:7d:be: 2b:e0:e1:80:55:76:9e:70:b8:c3:d6:aa:3a:3b:b9:f0:1d:e1: fa:e3:5f:68:62:8b:72:66:f1:a8:65:6e:58:a5:3b:9a:be:f5: c1:79:f7:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjYwNjEyMTY1ODQwWhcNMjYwNjE5MTY1ODQwWjAYMRYwFAYD VQQDEw02YTJjM2FjMS01YjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTWFyLJCWimrCxVFaFIz0nmZugf+lca+Zk4A+NPuOUJoCOu9plIBTKLVeKIX 1pPwvkvVP4EXlXnSlw4a5I+wFdr95GF7rwNrZnTXqW8dhVmruor+hiuKm844k+xM SWzjn9JARTLgklt/CUr9Y37joYbeHaqiFD9FnsCZdHiDgBoKUqJaulekEXG2Cerp EcSS6uT5Tj1cHRaPrj3/0nu4ZZeEx/ierDNuSSKiQHxLtAAKb2wLlz82vGO14r3f bvuoHXnUCqyCHhVk8x52fr5oXH/zt8MocOPfZQqjfX65bF8PsH0+lXIRRykRpHeP ooDyh4RWC/k7wD15qQzSzJn8twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHwHhMK6 fpHhTy4LJ/2KIh/F1DTsMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiPyP0ZrGEOLO4J01iWt3CgSzPu96OYyqcE78veRUdXSlyVj/E+LeI0ViDCf9 dZtXPWhjX2WuDwlhq2xHQjtpkzMExzM5mxpoBMwqTsqhNPZCm9rfdbawZWmta+Ru 8BWg9IIxVhLiheDsv4+AuVeWXkalsvYtEAwyqz62FwitCHM92fgO9HdIEbuvcm7v Z083W3ya3JHcmpxpDY4wwvtm+f7mDqJnrSDUgCyud+BDeGCi7CKPtgrNygKRZxs1 1UrY4L6imneFgPHme5GF1pq9KpdddyAg+H2+K+DhgFV2nnC4w9aqOju58B3h+uNf aGKLcmbxqGVuWKU7mr71wXn3+A== -----END CERTIFICATE-----Generated at Sat Jun 13 14:18:38 2026 by rpki-client