$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: tgezjqlPmfft2Tc1wBrr9jrrDxLopZVuRtSIJ6Tk2N4= Subject key identifier: 1B:8E:6A:CC:2A:25:4C:B2:8D:71:54:CD:BA:E3:91:D8:20:D8:F2:87 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0D09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CEC Signing time: Fri 12 Jun 2026 18:23:06 +0000 Manifest this update: Fri 12 Jun 2026 18:23:05 +0000 Manifest next update: Fri 19 Jun 2026 18:23:05 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: Qy0Ai+pQ89f83FvsSWZgyHwtG4LOPhso8FerTh//v0Y=) 2: 2BA0624C078511ED87041524C4F9AE02.roa (hash: ZcdBlD0cGDsdpulCv2fc2yReHhNwViqaBn++RZ5qJME=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: svlh2+vPV9FFZwbhD1Wgc1v2nG2kP+knUxNtCuCVjZk=) 4: 2D0509BC078511ED87041524C4F9AE02.roa (hash: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jun 12 18:23:05 2026 GMT Not After : Jun 19 18:23:05 2026 GMT Subject: CN=6a2c4e89-c0b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:e6:9f:73:7f:9b:a7:d1:ff:94:eb:0f:1c: ab:04:59:a2:0d:55:23:ae:ca:54:91:97:5c:b0:cd: c5:92:91:a5:ff:80:92:5a:90:3d:ed:8a:8f:de:37: 21:47:69:16:4f:81:b6:95:a8:d3:8f:ff:80:c0:1a: 52:30:20:f4:6f:a6:9c:cc:0a:91:33:51:fa:b0:aa: 8e:e2:07:fb:52:e6:b9:82:c0:34:f4:e2:f3:15:bb: 2c:36:91:e7:24:0d:40:f4:1c:78:90:cd:fc:37:5f: 55:fe:2d:fe:d6:08:62:ac:6f:7e:58:07:a7:e1:73: 3c:1d:cd:14:3d:1b:a2:2d:39:64:dc:cb:2d:db:c7: c6:db:11:5f:7d:81:f9:bc:fa:63:dd:0a:ed:ee:53: 52:2f:f8:8d:ab:9f:10:28:8c:b1:fb:9f:c1:35:5b: 4c:e4:4f:92:a4:46:85:da:d5:4f:0e:4b:56:5a:b8: d0:ad:2f:d9:55:b8:c9:88:6e:dc:f0:d3:69:47:90: 8e:54:c7:11:33:88:5b:1b:f0:ea:5c:c9:a4:fb:06: fd:7b:ad:b8:8b:b8:0f:06:30:5d:6e:46:60:91:30: 4a:eb:63:12:1e:27:29:e2:04:d8:f2:f2:38:48:b9: 5c:cd:f5:c5:17:9c:6b:5a:b2:2a:54:04:65:90:ea: bf:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8E:6A:CC:2A:25:4C:B2:8D:71:54:CD:BA:E3:91:D8:20:D8:F2:87 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d5:08:b4:4c:e8:57:9d:34:77:ed:ea:74:a0:40:46:3d:4c: 8d:94:85:da:b6:19:a7:16:a9:22:09:71:3b:f4:1e:17:5d:fe: 3e:0d:d2:43:b3:23:93:72:4f:b4:27:e3:cb:7b:fb:03:71:fc: 7f:35:a6:24:1d:c0:73:22:3f:39:b6:47:60:71:29:ec:de:2a: 6c:2b:97:c5:20:f0:8c:69:e9:28:58:a1:77:40:7b:52:58:2f: e8:71:c0:4c:c9:9e:a8:28:60:49:8a:7a:bb:e1:bf:8f:83:fe: 84:70:6b:39:bb:3d:bd:52:cd:b5:55:51:b5:36:53:43:af:4d: 92:ac:9b:cd:61:ef:ca:b9:45:7b:32:3f:08:47:5c:77:34:31: 1d:ee:38:f3:86:c4:5f:46:1f:49:a5:85:04:29:f1:e8:59:51: 4c:cd:5f:74:bd:ef:62:a1:35:98:3b:83:69:fc:19:ec:0f:f4: e7:e4:5f:17:04:ae:cc:0c:b5:2c:ae:ca:45:55:61:45:be:39: 35:f4:b6:6c:f9:8f:ee:4e:96:46:57:91:24:5a:f1:dd:52:a6: bb:74:07:42:69:45:3c:d7:ef:3f:89:d4:2d:54:53:94:3c:23: 02:93:fc:4e:9b:4d:6c:2b:fb:78:b4:5e:b9:a5:90:47:1c:35: b3:45:89:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwNjEyMTgyMzA1WhcNMjYwNjE5MTgyMzA1WjAYMRYwFAYD VQQDEw02YTJjNGU4OS1jMGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb3mn3N/m6fR/5TrDxyrBFmiDVUjrspUkZdcsM3FkpGl/4CSWpA97YqP3jch R2kWT4G2lajTj/+AwBpSMCD0b6aczAqRM1H6sKqO4gf7Uua5gsA09OLzFbssNpHn JA1A9Bx4kM38N19V/i3+1ghirG9+WAen4XM8Hc0UPRuiLTlk3Mst28fG2xFffYH5 vPpj3Qrt7lNSL/iNq58QKIyx+5/BNVtM5E+SpEaF2tVPDktWWrjQrS/ZVbjJiG7c 8NNpR5COVMcRM4hbG/DqXMmk+wb9e624i7gPBjBdbkZgkTBK62MSHicp4gTY8vI4 SLlczfXFF5xrWrIqVARlkOq/wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBuOaswq JUyyjXFUzbrjkdgg2PKHMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALNUItEzoV500d+3qdKBARj1MjZSF2rYZpxapIglxO/QeF13+Pg3SQ7Mjk3JP tCfjy3v7A3H8fzWmJB3AcyI/ObZHYHEp7N4qbCuXxSDwjGnpKFihd0B7Ulgv6HHA TMmeqChgSYp6u+G/j4P+hHBrObs9vVLNtVVRtTZTQ69NkqybzWHvyrlFezI/CEdc dzQxHe4484bEX0YfSaWFBCnx6FlRTM1fdL3vYqE1mDuDafwZ7A/05+RfFwSuzAy1 LK7KRVVhRb45NfS2bPmP7k6WRleRJFrx3VKmu3QHQmlFPNfvP4nULVRTlDwjApP8 TptNbCv7eLReuaWQRxw1s0WJAA== -----END CERTIFICATE-----Generated at Sat Jun 13 15:46:48 2026 by rpki-client