$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: 7nRL9tem29LLClvxVlqBB4kGCFR/F8o1zT9EPfSnegU= Subject key identifier: 9D:F7:B4:AA:39:41:CC:F6:D2:B7:99:73:A0:CA:A1:9D:3E:5A:36:3E Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0670 Signing time: Fri 12 Jun 2026 22:38:01 +0000 Manifest this update: Fri 12 Jun 2026 22:38:01 +0000 Manifest next update: Fri 19 Jun 2026 22:38:01 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: aEpSl2NfQIZvVeNJwJf9G/XSsvaVZTHsZ4UwjmVmTW4=) 2: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: kYZQI102gULrlo6M+q/iNg80nEai3K/GkCEv6GP+lLg=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: S1RgP1sPgVzK9sEPPWrODClUauDomS2mHohtTS+ssYc=) 4: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: +HKXGlrTWculTJ/ZbtVGZJnoqCsus/FX3Sf4l+Mr3Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Jun 12 22:38:01 2026 GMT Not After : Jun 19 22:38:01 2026 GMT Subject: CN=6a2c8a49-70fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:23:43:a5:99:16:ce:43:90:04:7d:24:e5:cc: 07:0b:28:93:f4:a8:62:f8:08:30:e6:b3:36:7b:31: 02:51:11:e0:41:6f:22:d1:50:bd:15:16:b4:10:d2: d2:bc:17:08:a8:9e:7a:07:03:a9:bf:d4:ae:fa:52: 9f:cc:dc:5b:e8:57:ec:16:a9:d0:e4:de:96:b2:fb: b6:27:92:cd:9f:13:fc:c1:b5:d2:d0:c3:7e:0a:06: d8:01:8e:12:31:ce:6a:c5:d6:ab:46:e0:37:c3:3f: 50:c1:97:c7:b5:8c:01:0a:f8:62:93:5f:98:ee:12: f2:23:7e:19:a2:ce:e3:a0:d9:c8:4f:47:8a:c0:d9: d0:eb:eb:11:27:d8:63:c9:b3:c5:38:8d:46:ab:47: ee:aa:2f:d8:52:85:a7:45:05:e1:69:08:77:3c:9c: b2:73:79:c2:37:6f:92:d8:85:50:03:53:bf:8f:cf: ba:0b:c1:0c:da:27:5f:41:63:4b:92:d2:15:57:3c: 4a:94:fc:19:cc:be:4b:c6:c2:da:30:52:0a:63:0d: 96:c0:0d:4e:b1:db:3e:c4:39:f3:f7:9f:74:43:98: 9c:d3:de:6c:c2:70:76:45:1e:d5:20:dd:74:19:6d: ae:19:0d:ef:cd:be:3d:56:32:83:e2:1e:f1:c1:43: 49:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F7:B4:AA:39:41:CC:F6:D2:B7:99:73:A0:CA:A1:9D:3E:5A:36:3E X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:9c:24:3e:48:32:86:43:ce:8b:5f:c1:14:85:90:70:53:3f: dd:96:3e:3b:d2:22:b4:03:0e:e1:0c:60:f2:80:f2:42:c5:76: ea:32:db:4d:45:d9:a6:96:aa:07:65:74:ad:2c:c7:20:09:53: 1e:ae:b1:4e:01:16:ca:7b:25:88:97:40:d7:4e:ac:7a:99:53: a4:17:75:9e:4f:cb:ff:bf:84:ca:cb:7e:bc:c7:62:4f:18:8f: 10:9b:ad:7e:aa:d1:25:e7:23:60:1c:91:1e:cd:3e:5c:1f:69: 81:3e:4d:0d:92:66:67:62:c5:c0:9f:c6:23:db:0d:ff:cd:c8: c4:d4:1b:f9:f7:55:32:93:34:38:be:be:b1:04:1c:b3:8a:ff: 88:51:1a:98:25:f5:6b:6b:b3:0e:09:dd:15:1b:91:e7:4b:55: 1f:85:cc:4d:4b:7c:06:5d:5e:62:2f:31:86:54:0e:c9:07:45: 1e:21:67:ea:8e:9b:9e:ce:f2:1a:8d:d1:69:b5:d2:0c:c7:45: 06:98:5e:81:38:21:fd:40:0e:e6:94:a8:f6:c0:7b:b9:ce:c2: 9a:3f:48:34:55:5f:61:93:47:3b:75:88:31:72:89:fa:fe:58: f7:e8:42:1c:fc:51:39:bf:57:87:65:68:2a:5b:43:29:98:39: 52:87:ad:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwNjEyMjIzODAxWhcNMjYwNjE5MjIzODAxWjAYMRYwFAYD VQQDEw02YTJjOGE0OS03MGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAliNDpZkWzkOQBH0k5cwHCyiT9Khi+Agw5rM2ezECURHgQW8i0VC9FRa0ENLS vBcIqJ56BwOpv9Su+lKfzNxb6FfsFqnQ5N6Wsvu2J5LNnxP8wbXS0MN+CgbYAY4S Mc5qxdarRuA3wz9QwZfHtYwBCvhik1+Y7hLyI34Zos7joNnIT0eKwNnQ6+sRJ9hj ybPFOI1Gq0fuqi/YUoWnRQXhaQh3PJyyc3nCN2+S2IVQA1O/j8+6C8EM2idfQWNL ktIVVzxKlPwZzL5LxsLaMFIKYw2WwA1Osds+xDnz9590Q5ic095swnB2RR7VIN10 GW2uGQ3vzb49VjKD4h7xwUNJ4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ33tKo5 Qcz20reZc6DKoZ0+WjY+MB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqpwkPkgyhkPOi1/BFIWQcFM/3ZY+O9IitAMO4Qxg8oDyQsV26jLbTUXZppaq B2V0rSzHIAlTHq6xTgEWynsliJdA106seplTpBd1nk/L/7+Eyst+vMdiTxiPEJut fqrRJecjYByRHs0+XB9pgT5NDZJmZ2LFwJ/GI9sN/83IxNQb+fdVMpM0OL6+sQQc s4r/iFEamCX1a2uzDgndFRuR50tVH4XMTUt8Bl1eYi8xhlQOyQdFHiFn6o6bns7y Go3RabXSDMdFBphegTgh/UAO5pSo9sB7uc7Cmj9INFVfYZNHO3WIMXKJ+v5Y9+hC HPxROb9Xh2VoKltDKZg5UoeteQ== -----END CERTIFICATE-----Generated at Sat Jun 13 08:31:57 2026 by rpki-client