$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: RTa0Iam0Z/oUF8zoAIZVxD8XRwfbzmbWADlqt4C1Gi8= Subject key identifier: 1B:A5:55:97:44:3A:E9:A8:D6:AD:7D:B9:0C:7C:4E:2F:92:D3:B6:29 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 022E Signing time: Sat 13 Jun 2026 02:43:25 +0000 Manifest this update: Sat 13 Jun 2026 02:43:25 +0000 Manifest next update: Sat 20 Jun 2026 02:43:25 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: HN/ioVkJGYBMw3jct95dMAlg3h5c77M7vvdlP/H+y44=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: 59D9zQ+RBL5Fvi3gvp0OtvuM1QHSjOAbItynN8Kr7yQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Jun 13 02:43:25 2026 GMT Not After : Jun 20 02:43:25 2026 GMT Subject: CN=6a2cc3cd-a276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b1:cd:46:65:06:2a:65:3e:ff:d7:7e:56:1a: 2f:2b:53:8f:31:f4:82:58:a8:fd:ac:ae:6c:1e:d1: a9:22:5c:9c:ec:89:45:01:b6:42:07:9b:62:43:a5: e4:fd:26:11:22:72:a1:1d:50:17:54:17:83:1f:06: 73:cb:48:4f:48:e6:24:cb:d0:28:f4:ba:00:e8:09: 1b:ab:33:c6:fb:e1:98:a4:46:3f:c8:d9:eb:c7:c8: a1:ed:15:0b:e7:cc:bc:6c:74:29:c8:28:c7:4c:8a: 2e:76:3f:06:92:05:4a:7d:db:4d:dd:b1:83:54:75: cc:18:59:a5:ac:05:7d:2a:e7:e4:2f:dd:d4:31:3f: e9:86:7e:65:a4:34:38:41:a3:bd:06:2f:e0:63:fc: 7b:c1:7e:bb:e1:eb:06:9f:6b:54:6f:9c:c8:d0:69: 36:e7:8f:b0:a5:c0:cc:17:8f:88:02:1d:32:58:81: 2f:83:ac:32:6b:4e:e1:02:d9:3e:ee:cd:ad:43:da: 49:7d:4c:78:5e:e3:91:84:1c:63:9f:17:e6:82:6a: dd:dc:a4:88:18:fd:6e:99:3b:29:b9:ce:6b:f9:2c: 25:a7:c0:fd:a0:84:c1:09:a6:c6:19:df:d6:61:f9: 0f:d1:05:98:b1:bb:8b:46:7a:54:ef:e2:01:a1:7a: c2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A5:55:97:44:3A:E9:A8:D6:AD:7D:B9:0C:7C:4E:2F:92:D3:B6:29 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:99:a5:db:3e:e9:ae:09:3c:0f:43:ff:da:87:be:64:07:aa: 0c:0e:41:1e:07:d4:48:37:4e:58:59:ea:ca:e4:86:48:f0:45: 38:55:18:cf:d3:3a:a1:39:f4:ed:cb:c9:ab:cc:1a:d5:3f:56: 68:09:97:01:c9:5c:08:46:40:42:90:09:03:de:38:d4:c3:58: 03:54:f1:d5:7a:d1:5a:58:06:f5:53:c3:ad:8d:8a:47:44:de: d3:d4:f4:5e:6f:26:a5:c9:b3:ea:f5:2f:48:b8:9a:d5:36:82: 18:b1:fc:39:19:54:ff:c0:60:8a:6a:a4:26:b1:c3:e7:18:0b: c7:cc:5b:c8:98:b3:af:84:7a:c4:34:20:eb:28:ec:6a:69:c9: 2f:06:36:ab:b0:ca:b0:89:6c:e8:41:b9:c5:a7:bc:83:0e:bf: 0f:50:42:b1:e5:70:56:3c:0e:11:31:da:3d:82:6a:46:b8:33: ef:80:e9:9c:22:e6:8f:24:a0:e6:cf:6b:12:57:7f:4d:3d:44: 4e:9b:90:b5:3f:46:a3:ed:f3:12:82:41:d0:fc:2d:fe:1c:e7: b6:1d:95:44:65:bd:5c:c9:fd:da:88:c0:50:1b:7f:79:3f:04: cb:79:cf:f0:ea:d1:6a:ff:e9:b3:9f:d6:1b:7e:b8:e3:b0:a9: 14:f7:31:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjYwNjEzMDI0MzI1WhcNMjYwNjIwMDI0MzI1WjAYMRYwFAYD VQQDEw02YTJjYzNjZC1hMjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7HNRmUGKmU+/9d+VhovK1OPMfSCWKj9rK5sHtGpIlyc7IlFAbZCB5tiQ6Xk /SYRInKhHVAXVBeDHwZzy0hPSOYky9Ao9LoA6AkbqzPG++GYpEY/yNnrx8ih7RUL 58y8bHQpyCjHTIoudj8GkgVKfdtN3bGDVHXMGFmlrAV9KufkL93UMT/phn5lpDQ4 QaO9Bi/gY/x7wX674esGn2tUb5zI0Gk254+wpcDMF4+IAh0yWIEvg6wya07hAtk+ 7s2tQ9pJfUx4XuORhBxjnxfmgmrd3KSIGP1umTspuc5r+Swlp8D9oITBCabGGd/W YfkP0QWYsbuLRnpU7+IBoXrCFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBulVZdE Oumo1q19uQx8Ti+S07YpMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ5ml2z7prgk8D0P/2oe+ZAeqDA5BHgfUSDdOWFnqyuSGSPBFOFUYz9M6oTn0 7cvJq8wa1T9WaAmXAclcCEZAQpAJA9441MNYA1Tx1XrRWlgG9VPDrY2KR0Te09T0 Xm8mpcmz6vUvSLia1TaCGLH8ORlU/8BgimqkJrHD5xgLx8xbyJizr4R6xDQg6yjs amnJLwY2q7DKsIls6EG5xae8gw6/D1BCseVwVjwOETHaPYJqRrgz74DpnCLmjySg 5s9rEld/TT1ETpuQtT9Go+3zEoJB0Pwt/hznth2VRGW9XMn92ojAUBt/eT8Ey3nP 8OrRav/ps5/WG36447CpFPcxAA== -----END CERTIFICATE-----Generated at Sun Jun 14 00:55:16 2026 by rpki-client