$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: W0PU9ciQu+4a+mzZu1Dzy/g0Kluw+WyeyEsNsT29+L4= Subject key identifier: D6:CF:72:D8:01:33:41:1E:A9:02:20:FD:97:FD:D5:80:FE:76:1F:C2 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0455 Signing time: Sat 13 Jun 2026 00:20:08 +0000 Manifest this update: Sat 13 Jun 2026 00:20:07 +0000 Manifest next update: Sat 20 Jun 2026 00:20:07 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: 3RMKwjlMureNadb7svrrXZBnEudWwy2NuwTcr6NUxbA=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: W4goqtPYzyLcCdBI7xc2Qn8MqCV+FsXgvw4MFdwTxhk=) 3: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: Xwopv44IWtrA47h99nFS1HcICRmL98rRNkBLnVkufOs=) 4: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: htWOUsGCluqo+bDLkY52m9kGHamjAwjskMqRyVdOAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Jun 13 00:20:07 2026 GMT Not After : Jun 20 00:20:07 2026 GMT Subject: CN=6a2ca238-bff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:29:38:e6:52:a6:d4:e3:09:a1:02:a9:78: d2:70:d1:da:5f:d8:60:e4:b6:9b:cd:6c:80:a9:ab: 2e:81:68:77:6e:c6:43:60:10:ec:81:4d:3b:7e:e9: b7:e7:10:43:0e:28:c5:6f:80:c3:61:b1:90:75:19: cc:43:7f:fb:a5:a0:73:89:78:67:17:24:d7:fa:23: 1f:ca:da:c6:74:32:ec:10:a1:8f:83:88:93:9e:00: 61:f5:1a:30:ff:81:50:2b:89:ff:6f:76:b7:0b:f7: 64:f3:9a:73:23:b7:65:f2:e8:63:b2:37:1a:ac:27: 1e:73:d1:33:30:d1:c6:3f:51:12:f1:4e:4f:9d:c5: 00:a8:c3:70:e7:fb:62:3c:78:9e:34:f8:10:b0:2a: 47:87:2f:7f:31:fd:22:b0:55:cb:e5:20:85:39:e8: c0:17:36:16:1c:29:0c:c7:79:57:d3:0b:44:3c:37: 95:93:8a:5b:21:bc:36:ce:51:07:9b:65:91:8b:72: 10:ca:9c:e3:6e:2b:f1:79:09:af:22:a1:70:a7:06: a7:d0:91:21:6b:a1:d3:75:53:d6:c6:9e:6a:59:8e: 06:61:21:6b:07:a8:e2:78:5f:4f:9a:b6:24:79:d1: b4:a3:14:61:9d:5d:1b:6e:57:cc:7c:97:93:3b:a5: 0a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:CF:72:D8:01:33:41:1E:A9:02:20:FD:97:FD:D5:80:FE:76:1F:C2 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:1c:e3:ea:6a:35:92:79:8e:00:6a:0b:d6:df:f4:7a:19:2e: 7e:c4:de:cb:a8:3e:37:fa:6d:eb:2c:78:01:ca:24:94:e1:7f: f3:9e:04:de:ca:f6:31:c0:fe:34:fb:2a:10:13:95:94:4d:57: b5:cc:5d:ea:54:56:df:fc:7e:2d:a8:53:c3:8e:19:00:a7:b9: 0c:e8:92:e8:70:34:5b:e7:06:80:25:4f:2e:2f:4e:9b:ef:5a: 63:e0:b3:0d:a3:6a:21:51:e0:c7:87:1b:47:c0:04:ad:c7:04: 5b:69:5c:13:9a:d4:0b:43:1c:44:69:f3:fe:8c:c3:c3:8d:3c: a1:ce:e9:18:61:5d:7e:39:4a:d0:9f:a3:35:75:08:2a:4a:a4: ea:92:69:ad:6c:64:99:3f:7d:56:14:23:79:91:7f:b3:85:cf: 4c:d7:05:40:c4:0f:56:0d:b4:2f:60:c0:d9:59:d4:2e:67:d6: df:e1:5c:7a:de:4c:71:92:2a:e0:5e:26:31:8f:65:98:22:75: 54:6d:5b:c2:cf:2d:7d:ea:d9:03:86:74:47:9e:f3:d6:1d:fe: 1f:ae:50:8a:5d:40:36:ca:67:90:d9:68:67:19:f9:39:34:40: c5:fc:ba:8a:06:d2:7d:f0:cc:04:d1:be:91:7a:92:eb:1d:ac: ca:50:5b:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwNjEzMDAyMDA3WhcNMjYwNjIwMDAyMDA3WjAYMRYwFAYD VQQDEw02YTJjYTIzOC1iZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtccpOOZSptTjCaECqXjScNHaX9hg5LabzWyAqasugWh3bsZDYBDsgU07fum3 5xBDDijFb4DDYbGQdRnMQ3/7paBziXhnFyTX+iMfytrGdDLsEKGPg4iTngBh9Row /4FQK4n/b3a3C/dk85pzI7dl8uhjsjcarCcec9EzMNHGP1ES8U5PncUAqMNw5/ti PHieNPgQsCpHhy9/Mf0isFXL5SCFOejAFzYWHCkMx3lX0wtEPDeVk4pbIbw2zlEH m2WRi3IQypzjbivxeQmvIqFwpwan0JEha6HTdVPWxp5qWY4GYSFrB6jieF9PmrYk edG0oxRhnV0bblfMfJeTO6UKowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNbPctgB M0EeqQIg/Zf91YD+dh/CMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAShzj6mo1knmOAGoL1t/0ehkufsTey6g+N/pt6yx4AcoklOF/854E3sr2McD+ NPsqEBOVlE1Xtcxd6lRW3/x+LahTw44ZAKe5DOiS6HA0W+cGgCVPLi9Om+9aY+Cz DaNqIVHgx4cbR8AErccEW2lcE5rUC0McRGnz/ozDw408oc7pGGFdfjlK0J+jNXUI Kkqk6pJprWxkmT99VhQjeZF/s4XPTNcFQMQPVg20L2DA2VnULmfW3+Fcet5McZIq 4F4mMY9lmCJ1VG1bws8tferZA4Z0R57z1h3+H65Qil1ANspnkNloZxn5OTRAxfy6 igbSffDMBNG+kXqS6x2sylBbnA== -----END CERTIFICATE-----Generated at Sat Jun 13 23:06:29 2026 by rpki-client