$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: 4L+FcFzTAvGJ67fRTbhiIQ3gEnE7abW8vHivjRjR45c= Subject key identifier: 6F:F2:38:DD:3B:7C:32:C3:C4:8B:5D:06:B8:38:54:2C:1C:D6:78:BA Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 0154 Signing time: Sat 13 Jun 2026 05:13:07 +0000 Manifest this update: Sat 13 Jun 2026 05:13:07 +0000 Manifest next update: Sat 20 Jun 2026 05:13:07 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: BmsxglD5FrhWdIYQHvGWJCbtCVQoilbLTV0LgUkG+4w=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: GxPDZkNh8z2WUss9dJUvSPDera09jYCHZ5i3DQqj99E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 05:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Jun 13 05:13:07 2026 GMT Not After : Jun 20 05:13:07 2026 GMT Subject: CN=6a2ce6e3-d2b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5c:b6:65:47:e5:b7:f5:70:33:21:9f:5a:89: bb:07:b8:c6:26:36:c8:e0:e1:f9:a5:c2:ad:c5:4f: a3:ea:92:49:96:e8:fa:4c:6a:6b:aa:41:3c:d9:e6: ae:5c:a0:28:a4:a8:31:fb:a4:fd:ed:ef:8c:89:1b: 8b:0f:04:68:d5:ba:52:0f:bc:83:6f:a7:ae:04:6a: 6f:c2:90:ce:11:3b:11:a2:d5:17:e4:9b:bc:4a:c8: b8:2d:ac:46:95:99:b3:6a:da:b7:5b:c1:59:1b:db: 0b:66:fb:03:26:da:25:83:38:45:93:95:e1:6f:58: 60:a5:ff:f7:90:b1:29:c2:1a:be:b3:79:1b:c7:c8: 4e:5f:62:e1:18:0d:c4:21:a5:f1:fc:bd:c3:63:3c: 6c:84:f0:49:b9:b5:a7:1c:5f:17:15:b8:9f:86:ef: 86:61:f1:11:c9:d2:58:88:1b:ff:07:68:46:5a:9b: ef:bd:63:51:ae:64:e9:12:73:09:1c:ca:0c:82:f3: 7f:1d:ed:b7:b8:ab:d2:25:be:80:ed:4d:35:c8:0c: bf:45:2f:3c:32:4c:6e:a6:d6:60:60:8d:59:fb:6a: 7b:1c:ba:87:14:6a:e4:4a:e6:6a:5e:64:14:cf:d4: 33:55:b2:83:fb:1f:6e:50:87:c1:d7:c5:02:a2:af: 62:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F2:38:DD:3B:7C:32:C3:C4:8B:5D:06:B8:38:54:2C:1C:D6:78:BA X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ab:e2:24:6f:58:61:b2:7f:40:c3:a5:18:28:c6:37:d5:85: e6:cc:a3:ad:d3:cf:03:d5:ec:28:80:29:5a:00:01:55:11:5f: b0:85:44:57:69:96:86:e8:e4:a6:43:09:6e:d3:28:5b:14:5c: 5e:4e:cf:6c:ed:65:8d:d5:c5:c1:77:87:c4:df:47:de:0f:15: 61:99:f2:10:2f:ab:b6:89:c5:49:a3:5f:ec:e4:8b:ad:4e:38: d1:71:a9:19:21:23:94:5d:69:6e:e6:a7:16:b5:16:dd:07:06: 60:e4:89:ac:42:6c:94:79:8d:4a:75:0e:ed:e6:c0:19:0c:81: d2:e5:4c:68:c4:34:ec:72:59:df:74:fc:fd:4d:48:d1:f4:f8: 69:a1:aa:29:50:51:78:cd:d9:95:bd:e2:4a:e3:09:6b:b9:5e: 82:6a:a1:9d:a0:a5:a9:4d:6d:22:33:16:33:83:16:b8:c4:41: ce:f1:db:85:70:2b:2d:fb:50:32:cd:aa:ad:f3:3f:e1:57:4d: be:99:3f:19:64:6a:e5:a4:c7:cd:da:9a:58:ae:83:63:f3:64: d9:96:11:6e:e6:e2:04:d8:a3:fb:2e:10:78:57:c5:14:5b:f6: b0:b4:1f:c7:cd:fc:6c:0a:2a:70:8f:90:89:e2:26:4f:88:bf: 99:77:62:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjYwNjEzMDUxMzA3WhcNMjYwNjIwMDUxMzA3WjAYMRYwFAYD VQQDEw02YTJjZTZlMy1kMmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1y2ZUflt/VwMyGfWom7B7jGJjbI4OH5pcKtxU+j6pJJluj6TGprqkE82eau XKAopKgx+6T97e+MiRuLDwRo1bpSD7yDb6euBGpvwpDOETsRotUX5Ju8Ssi4LaxG lZmzatq3W8FZG9sLZvsDJtolgzhFk5Xhb1hgpf/3kLEpwhq+s3kbx8hOX2LhGA3E IaXx/L3DYzxshPBJubWnHF8XFbifhu+GYfERydJYiBv/B2hGWpvvvWNRrmTpEnMJ HMoMgvN/He23uKvSJb6A7U01yAy/RS88MkxuptZgYI1Z+2p7HLqHFGrkSuZqXmQU z9QzVbKD+x9uUIfB18UCoq9iiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG/yON07 fDLDxItdBrg4VCwc1ni6MB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbaviJG9YYbJ/QMOlGCjGN9WF5syjrdPPA9XsKIApWgABVRFfsIVEV2mWhujk pkMJbtMoWxRcXk7PbO1ljdXFwXeHxN9H3g8VYZnyEC+rtonFSaNf7OSLrU440XGp GSEjlF1pbuanFrUW3QcGYOSJrEJslHmNSnUO7ebAGQyB0uVMaMQ07HJZ33T8/U1I 0fT4aaGqKVBReM3Zlb3iSuMJa7legmqhnaClqU1tIjMWM4MWuMRBzvHbhXArLftQ Ms2qrfM/4VdNvpk/GWRq5aTHzdqaWK6DY/Nk2ZYRbubiBNij+y4QeFfFFFv2sLQf x838bAoqcI+QieImT4i/mXdiFw== -----END CERTIFICATE-----Generated at Sat Jun 13 22:04:32 2026 by rpki-client