$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft File: nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json) Hash identifier: V/wiPVOwLojp3WLEph9KgQRm7CdqZacJCrG15q3xyU4= Subject key identifier: 4C:20:8C:A8:73:11:26:83:D6:AF:0A:4C:9B:09:1B:91:D9:F9:65:6E Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft Manifest number: E0 Signing time: Sat 13 Jun 2026 06:39:59 +0000 Manifest this update: Sat 13 Jun 2026 06:39:58 +0000 Manifest next update: Sat 20 Jun 2026 06:39:58 +0000 Files and hashes: 1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: A7+qRQ1RtAf1vtxMREozvcWn1bhnGBj14EXxUpZGpJc=) 2: 4A3C802012A711F099020A73C4F9AE02.roa (hash: iEuV0+5znqF8f5T5Ps6WIUoKRiKa2jw2dHDVVLuYtWU=) 3: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: 73STUG9MRsTj+UMDTuA4X0z5fGUTYqhKS5W5S7xFgxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Jun 13 06:39:58 2026 GMT Not After : Jun 20 06:39:58 2026 GMT Subject: CN=6a2cfb3f-9bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:34:d7:14:cf:84:72:e7:81:89:91:d5:ff:28: d3:c5:7b:b3:f6:40:7e:f1:0e:58:45:75:95:cc:84: 91:f6:3c:78:1d:fc:4a:81:53:8e:88:cc:7d:60:84: 46:3b:e5:c8:cb:a9:5b:cb:a4:43:3f:5c:47:bb:84: 44:c8:8b:e5:49:5f:85:4b:1f:4c:a5:06:8d:10:7b: 88:15:62:34:21:5f:00:87:22:a8:f7:eb:a9:93:85: d2:5c:be:12:e8:c8:f9:05:41:d0:a9:33:b8:f5:8c: e9:ea:47:62:74:6d:fb:84:bf:f2:31:4a:20:0f:04: 39:e7:5f:96:ef:ed:5c:d1:37:9a:36:93:14:52:0b: 99:70:96:f8:f7:df:ee:11:cd:4d:3b:8c:a0:04:bf: 87:de:23:7f:97:f9:87:03:c1:c4:9b:3e:02:b5:47: 22:2f:65:0a:2c:89:66:73:2d:2d:16:11:21:cc:16: 90:9c:04:0c:44:61:b5:56:d9:70:53:50:7a:59:5f: da:b4:a6:41:cb:f4:2d:23:19:03:5e:27:73:1b:31: a8:d8:14:4f:e3:94:5d:1c:7e:e9:5e:a8:0c:77:60: a1:87:92:cb:cf:85:3b:0b:7b:7d:31:2f:79:76:55: ca:f1:6e:1c:6f:f5:7c:be:0e:f4:fa:5f:22:c7:5a: 55:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:20:8C:A8:73:11:26:83:D6:AF:0A:4C:9B:09:1B:91:D9:F9:65:6E X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d8:c3:d9:40:85:13:f0:7f:95:52:98:7f:bd:3f:0a:87:bc: bc:55:19:64:5d:24:2f:ef:c5:d0:ca:8e:04:01:a2:d4:53:4e: 97:7b:a4:48:d9:3c:e8:08:52:06:0f:21:52:8a:9b:59:2f:20: fb:75:fc:a9:9b:0f:84:2c:f7:8c:6b:ac:4b:2a:73:a1:17:d9: dd:0d:5e:fd:c6:cd:53:e3:ee:76:e5:3b:f4:56:45:d9:d9:33: a1:0b:4f:1b:d4:6b:c6:b6:b3:20:01:b3:ed:a6:6c:23:6a:2f: e7:c6:af:f4:70:a8:48:00:92:35:15:36:7d:3a:75:1b:44:0b: a9:dd:85:f3:64:aa:d1:76:0b:6f:07:d4:7a:13:67:00:1f:6c: cd:8f:4d:4c:b0:d2:68:32:ce:ef:8f:02:09:e6:35:35:b0:45: bc:bd:24:99:17:5c:c6:7b:3e:ee:d6:4e:60:37:8d:2d:31:bc: be:ac:e8:58:37:0e:02:7d:c6:6f:97:ef:db:fe:99:0d:77:f8: 14:b4:ca:c6:23:98:03:e4:82:24:e5:46:f8:47:a0:76:72:5f: 7c:b9:b0:ea:4d:d0:fa:cd:e4:fb:ce:bb:32:02:b6:81:f8:1f: ff:b4:3b:de:49:23:68:3d:fb:c2:08:d9:9a:ba:10:78:d0:fb: f2:e9:13:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD Njg1QzQwNkIwHhcNMjYwNjEzMDYzOTU4WhcNMjYwNjIwMDYzOTU4WjAYMRYwFAYD VQQDEw02YTJjZmIzZi05YmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zTXFM+EcueBiZHV/yjTxXuz9kB+8Q5YRXWVzISR9jx4HfxKgVOOiMx9YIRG O+XIy6lby6RDP1xHu4REyIvlSV+FSx9MpQaNEHuIFWI0IV8AhyKo9+upk4XSXL4S 6Mj5BUHQqTO49Yzp6kdidG37hL/yMUogDwQ551+W7+1c0TeaNpMUUguZcJb499/u Ec1NO4ygBL+H3iN/l/mHA8HEmz4CtUciL2UKLIlmcy0tFhEhzBaQnAQMRGG1Vtlw U1B6WV/atKZBy/QtIxkDXidzGzGo2BRP45RdHH7pXqgMd2Chh5LLz4U7C3t9MS95 dlXK8W4cb/V8vg70+l8ix1pVlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEwgjKhz ESaD1q8KTJsJG5HZ+WVuMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUYzRS8zMzlFREU2ODEwRTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hi b3VkOHQzV2pyWm5HaGNRR3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjdjD2UCFE/B/lVKYf70/Coe8vFUZZF0kL+/F0MqOBAGi1FNOl3ukSNk86AhS Bg8hUoqbWS8g+3X8qZsPhCz3jGusSypzoRfZ3Q1e/cbNU+PuduU79FZF2dkzoQtP G9RrxrazIAGz7aZsI2ov58av9HCoSACSNRU2fTp1G0QLqd2F82Sq0XYLbwfUehNn AB9szY9NTLDSaDLO748CCeY1NbBFvL0kmRdcxns+7tZOYDeNLTG8vqzoWDcOAn3G b5fv2/6ZDXf4FLTKxiOYA+SCJOVG+EegdnJffLmw6k3Q+s3k+867MgK2gfgf/7Q7 3kkjaD37wgjZmroQeND78ukTcQ== -----END CERTIFICATE-----Generated at Sun Jun 14 02:40:14 2026 by rpki-client