$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft File: KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft (raw, json) Hash identifier: Cncsq8HELrrseJWLaJH5Q/MnajdMjb2c/bQ43ECNurE= Subject key identifier: 67:1E:84:DE:B3:0C:97:56:80:56:05:E1:66:20:5D:5D:42:EF:AB:73 Authority key identifier: 28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 Certificate issuer: /CN=A915FE9F/serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft Manifest number: C5 Signing time: Thu 11 Jun 2026 09:21:53 +0000 Manifest this update: Thu 11 Jun 2026 09:21:52 +0000 Manifest next update: Thu 18 Jun 2026 09:21:52 +0000 Files and hashes: 1: KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl (hash: NZ+HjuLaCNkWMikBjJLg6PyRVEYfm5A8cQz+wCb/O4U=) 2: BA44C5C2FF3611F08F27381B8BEE528E.roa (hash: xTRiGomUlvw36ULHa1gsy9cQNKWIJENbJoJ/xOZCR7w=) 3: BB593434FF3611F08F27381B8BEE528E.roa (hash: Qapce3etNilI3Pu8k6Dr7+sFyVw5LEh0sJqZNNrb7as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 09:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE9F, serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Validity Not Before: Jun 11 09:21:52 2026 GMT Not After : Jun 18 09:21:52 2026 GMT Subject: CN=6a2a7e30-6661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:ba:30:31:2c:26:d4:fe:86:0c:db:f4:11: f5:6f:22:28:ac:98:c7:aa:a1:65:b1:a1:48:b9:45: d0:b0:7b:15:b3:df:95:bb:ee:b2:d7:b6:17:e7:9c: f0:da:fd:ac:6c:54:7a:39:cc:3b:4a:17:c0:c0:bc: ab:bb:a3:fc:0a:0b:e3:97:9e:ce:3a:9d:54:9b:d7: 6b:2e:1e:a5:20:27:74:5d:63:b0:2d:72:64:f6:24: 9f:82:89:84:c1:9f:67:c5:c8:c8:a1:86:6a:a3:22: 1d:05:c1:e8:76:cb:96:35:6b:4d:7d:03:7d:89:5a: 8a:22:6c:c2:1e:af:01:ba:ff:22:86:48:c3:e2:07: 04:d6:30:d8:30:5d:fc:07:6b:e4:2c:d0:53:5e:51: 14:60:31:e2:a6:dc:ed:11:c4:5f:85:8e:3c:85:93: 27:d3:26:82:c8:bc:0c:7c:b5:e1:46:8a:0d:7f:d2: e9:29:cf:ba:11:09:0b:46:7f:16:4e:ed:3a:fd:ce: 85:2c:ba:b6:01:f8:28:67:22:03:10:0b:ba:67:93: 16:73:e3:01:e6:6e:45:98:2f:60:44:4c:d8:8b:1b: 9b:49:6c:59:02:f3:9d:10:30:2b:1e:91:2c:5f:8f: 29:b7:05:b1:be:b1:fc:b9:dd:06:7b:98:8d:34:29: 16:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1E:84:DE:B3:0C:97:56:80:56:05:E1:66:20:5D:5D:42:EF:AB:73 X509v3 Authority Key Identifier: keyid:28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:6f:11:5a:87:e3:b2:b8:a1:e4:95:a4:04:9a:96:c1:8f:de: 44:6a:55:e5:88:a6:39:41:6d:c8:0c:b4:e7:8f:97:40:61:8b: ce:7d:51:8e:79:b2:4d:a5:82:47:aa:3d:ff:6f:b2:4c:70:5d: ed:ac:54:d0:27:35:52:3c:61:af:19:77:5a:be:1e:a3:3a:f1: 0e:75:37:c1:86:e4:8a:4e:5e:2f:7a:0b:2e:82:d0:a5:3d:e8: 2b:3c:c9:0a:68:31:1a:5d:0d:ee:18:e5:20:d4:30:8a:f4:a2: 7d:22:9f:5f:13:cf:ec:89:38:30:ee:86:a8:65:35:d2:d1:9b: a0:3b:19:89:4f:2d:7f:1d:9f:10:f3:94:a9:bf:a9:a3:4c:b9: 1b:2d:97:8c:0f:55:0a:57:7b:ce:a7:9d:5a:57:6a:84:39:9d: d0:12:0c:1b:72:8b:b3:76:05:3b:db:52:92:af:be:68:a6:3f: 6e:26:ef:9d:fd:7d:46:4a:1c:fe:c7:89:4d:0f:ff:3c:90:e3: 2f:48:60:42:04:81:85:8a:f4:27:72:6b:da:c9:be:ad:3f:b8: dd:ee:bd:2f:03:30:5f:ad:71:ea:0e:ba:3b:ca:2f:f6:39:b4: 46:63:a5:e1:c0:c5:ca:43:02:02:57:2a:5b:3c:c2:99:0d:08: 5f:f0:ea:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFOUYxMTAvBgNVBAUTKDI4REFEOEQ0Q0M2Rjc0MEZBMDAwRDQzNjg2OUFFMEYx NzZFQUU5MzMwHhcNMjYwNjExMDkyMTUyWhcNMjYwNjE4MDkyMTUyWjAYMRYwFAYD VQQDEw02YTJhN2UzMC02NjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDO6MDEsJtT+hgzb9BH1byIorJjHqqFlsaFIuUXQsHsVs9+Vu+6y17YX55zw 2v2sbFR6Ocw7ShfAwLyru6P8Cgvjl57OOp1Um9drLh6lICd0XWOwLXJk9iSfgomE wZ9nxcjIoYZqoyIdBcHodsuWNWtNfQN9iVqKImzCHq8Buv8ihkjD4gcE1jDYMF38 B2vkLNBTXlEUYDHiptztEcRfhY48hZMn0yaCyLwMfLXhRooNf9LpKc+6EQkLRn8W Tu06/c6FLLq2AfgoZyIDEAu6Z5MWc+MB5m5FmC9gREzYixubSWxZAvOdEDArHpEs X48ptwWxvrH8ud0Ge5iNNCkW5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGcehN6z DJdWgFYF4WYgXV1C76tzMB8GA1UdIwQYMBaAFCja2NTMb3QPoADUNoaa4PF26ukz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU5Ri8yMzAyNzEyNDUx NzAxMUYwQjlEQkNCODdDNEY5QUUwMi9LTnJZMU14dmRBLWdBTlEyaHByZzhYYnE2 VE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOclkxTXh2ZEEtZ0FOUTJocHJnOFhicTZUTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU5Ri8yMzAyNzEyNDUxNzAxMUYwQjlEQkNCODdDNEY5QUUwMi9LTnJZMU14dmRB LWdBTlEyaHByZzhYYnE2VE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT28RWofjsrih5JWkBJqWwY/eRGpV5YimOUFtyAy054+XQGGLzn1RjnmyTaWC R6o9/2+yTHBd7axU0Cc1Ujxhrxl3Wr4eozrxDnU3wYbkik5eL3oLLoLQpT3oKzzJ CmgxGl0N7hjlINQwivSifSKfXxPP7Ik4MO6GqGU10tGboDsZiU8tfx2fEPOUqb+p o0y5Gy2XjA9VCld7zqedWldqhDmd0BIMG3KLs3YFO9tSkq++aKY/bibvnf19Rkoc /seJTQ//PJDjL0hgQgSBhYr0J3Jr2sm+rT+43e69LwMwX61x6g66O8ov9jm0RmOl 4cDFykMCAlcqWzzCmQ0IX/DqEw== -----END CERTIFICATE-----Generated at Sat Jun 13 07:34:34 2026 by rpki-client