$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft File: It8xdbHdMjEX4MGfP21qHncfnB8.mft (raw, json) Hash identifier: FEIbF/42VUiLeNK1JsjL4A0s+nrIHPqqLnaTWIw21ws= Subject key identifier: 97:B6:C2:03:EB:98:3B:BB:9E:1D:32:6E:C2:6A:65:3F:06:88:71:79 Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0CFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft Manifest number: 0CF4 Signing time: Fri 12 Jun 2026 18:17:58 +0000 Manifest this update: Fri 12 Jun 2026 18:17:58 +0000 Manifest next update: Fri 19 Jun 2026 18:17:58 +0000 Files and hashes: 1: It8xdbHdMjEX4MGfP21qHncfnB8.crl (hash: eAXbsI0zgufqHFzMTRfdl+H0mkb7+Hy4FBFgb9rFG0Q=) 2: D725AC5C091411EABBFC8739C4F9AE02.roa (hash: zDxsuRndlq0lJuspimIYJwOxaHSsP7u9+ZEkGQ4K8fQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3326 (0xcfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B, serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Jun 12 18:17:58 2026 GMT Not After : Jun 19 18:17:58 2026 GMT Subject: CN=6a2c4d56-db8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2b:19:bb:84:45:2a:b2:50:3f:70:97:84:3f: 21:69:0e:3c:73:d2:e7:9c:c7:9b:fd:74:43:44:98: 89:f4:22:a8:c3:8a:68:f8:42:ad:03:82:2a:3d:5d: df:f2:62:08:38:fa:bc:26:eb:a8:27:c1:44:61:10: df:d9:0f:4b:c1:4f:b9:70:46:44:17:ed:67:de:d9: 7d:64:8f:2f:ed:b2:70:a3:fa:d6:b0:10:1a:e1:bb: bb:28:f3:f6:ed:03:b6:b5:3b:76:21:23:b8:ee:99: d0:04:3d:f2:4e:b2:11:74:cf:5f:40:37:82:2a:d3: ea:40:61:0c:f2:6e:de:a2:6c:23:25:88:39:fc:0f: 88:0b:bd:d8:0e:0e:ab:e7:af:d9:2f:d6:3e:1e:8c: a3:f6:62:49:42:07:ec:4c:ad:a2:af:98:75:bc:81: f3:a0:e0:64:dd:cf:ef:b8:89:8d:be:9a:92:7d:6a: ca:01:b2:b7:81:e9:3f:e1:e8:29:4f:40:6f:83:be: 20:15:c0:6c:3f:4b:0f:a7:16:b3:3b:07:df:9d:e8: 4f:fb:ed:7a:37:46:8e:30:56:0a:bc:77:49:1c:8c: ed:ff:52:9b:1b:c8:53:78:04:e0:57:49:30:2d:4d: b8:30:90:2d:f6:64:c6:dd:76:e9:c9:a0:ed:b5:19: b1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B6:C2:03:EB:98:3B:BB:9E:1D:32:6E:C2:6A:65:3F:06:88:71:79 X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:16:5f:45:56:83:11:d3:ef:1f:51:90:ab:87:d4:9a:8b:ed: f6:36:d1:86:8f:e8:19:19:40:53:41:a7:b9:7d:55:54:f0:9b: fb:f9:27:e2:b7:f7:51:68:79:97:2a:20:6e:13:3f:c4:85:ec: 34:b7:04:84:e1:50:02:a8:62:2d:b4:40:26:2a:a3:d9:73:4b: 4f:b9:20:c4:4e:b4:c2:c1:64:c7:46:2f:bb:2c:6e:a4:62:9b: 7d:6d:93:c0:f8:5f:19:41:62:4e:56:9a:31:53:1a:69:a3:5c: bc:11:c5:36:d4:f2:89:51:02:db:d8:b9:42:6c:de:59:28:cb: 30:1b:eb:a9:5c:b4:af:75:11:e3:71:e3:e4:0f:41:0e:8f:bb: 81:fb:3d:27:90:fe:fb:d4:4c:ce:83:b0:33:55:b2:13:84:98: 2d:85:35:90:5d:97:15:01:06:cc:db:32:ef:98:de:7f:77:36: fa:7d:f7:37:f4:01:41:d5:7b:99:ae:a1:b7:4f:fb:4d:13:fe: 59:44:4b:2d:b5:05:26:49:ed:f4:c4:fe:33:ca:62:09:ef:49: e5:89:79:c0:e7:5c:b6:93:33:9b:2c:46:5f:ca:a8:d0:64:5d: f2:8b:ab:78:47:c8:87:5c:bf:2f:d2:5d:e0:a6:99:dc:3d:ab: 31:67:d9:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjYwNjEyMTgxNzU4WhcNMjYwNjE5MTgxNzU4WjAYMRYwFAYD VQQDEw02YTJjNGQ1Ni1kYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSsZu4RFKrJQP3CXhD8haQ48c9LnnMeb/XRDRJiJ9CKow4po+EKtA4IqPV3f 8mIIOPq8JuuoJ8FEYRDf2Q9LwU+5cEZEF+1n3tl9ZI8v7bJwo/rWsBAa4bu7KPP2 7QO2tTt2ISO47pnQBD3yTrIRdM9fQDeCKtPqQGEM8m7eomwjJYg5/A+IC73YDg6r 56/ZL9Y+Hoyj9mJJQgfsTK2ir5h1vIHzoOBk3c/vuImNvpqSfWrKAbK3gek/4egp T0Bvg74gFcBsP0sPpxazOwffnehP++16N0aOMFYKvHdJHIzt/1KbG8hTeATgV0kw LU24MJAt9mTG3XbpyaDttRmxGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJe2wgPr mDu7nh0ybsJqZT8GiHF5MB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTQ4Qi8wNDk0MTBBRTA5MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1q RVg0TUdmUDIxcUhuY2ZuQjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYxZfRVaDEdPvH1GQq4fUmovt9jbRho/oGRlAU0GnuX1VVPCb+/kn4rf3UWh5 lyogbhM/xIXsNLcEhOFQAqhiLbRAJiqj2XNLT7kgxE60wsFkx0YvuyxupGKbfW2T wPhfGUFiTlaaMVMaaaNcvBHFNtTyiVEC29i5QmzeWSjLMBvrqVy0r3UR43Hj5A9B Do+7gfs9J5D++9RMzoOwM1WyE4SYLYU1kF2XFQEGzNsy75jef3c2+n33N/QBQdV7 ma6ht0/7TRP+WURLLbUFJknt9MT+M8piCe9J5Yl5wOdctpMzmyxGX8qo0GRd8our eEfIh1y/L9Jd4KaZ3D2rMWfZJw== -----END CERTIFICATE-----Generated at Sat Jun 13 10:06:10 2026 by rpki-client