$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: o1cg6iYW/1sW/bSh6zz6Wq+AEpFPUIziIVC10zPk2YI= Subject key identifier: 9D:DA:95:32:74:6E:4C:54:40:91:1F:E3:44:E3:C5:B6:6C:2E:A7:CE Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0B90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0B84 Signing time: Fri 12 Jun 2026 19:09:25 +0000 Manifest this update: Fri 12 Jun 2026 19:09:24 +0000 Manifest next update: Fri 19 Jun 2026 19:09:24 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: KhRpBBwX5DUSmVizDUIfsGYmzHGlMyfWiHRGDHZoFlQ=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: ShVKBDsZHucxua11jITqEB/zC8bAit+Mc5m8VG1vvj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Jun 12 19:09:24 2026 GMT Not After : Jun 19 19:09:24 2026 GMT Subject: CN=6a2c5965-e80b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:d6:87:64:80:86:33:f5:0c:22:1c:dc:79: 5f:f2:7b:4a:be:ed:91:ed:62:1a:1a:5f:22:a8:05: 87:ce:fb:3d:de:8e:9f:e2:03:3a:f2:fb:d8:b1:97: a9:2a:bb:a1:b6:a3:64:16:2a:21:30:53:5a:dc:23: 4b:1c:e4:34:a3:a8:4d:4f:9d:36:03:3e:fa:86:58: b7:a2:f0:26:35:3d:0a:b3:a9:99:09:7f:79:ce:f9: 12:59:3e:95:52:c4:6e:a7:fd:b0:53:68:58:44:32: 05:15:30:fb:a3:04:93:c5:c1:c7:cb:5e:e5:c9:4b: b2:4f:95:19:2c:1f:ea:68:70:dc:dd:f6:ef:12:9c: 26:d7:6c:ae:de:26:d6:f5:9a:5d:a3:1b:cc:dd:44: fc:f4:e2:79:b9:c0:ea:17:b2:f4:12:5f:c9:4a:bb: 73:d0:3e:70:f3:53:66:87:35:5e:0d:95:e1:6a:a2: 5e:1b:2a:ee:aa:8b:3a:e1:ef:09:37:c9:c9:05:40: 96:dd:dd:8b:3b:13:f1:b3:0a:bd:b3:62:47:6b:e4: 44:fa:a0:52:1e:2c:a6:9b:46:41:14:5c:a4:39:a9: 5d:30:75:64:3a:54:84:4c:dd:2f:4f:ce:7a:31:5f: c0:6e:72:fc:b8:ce:85:f0:c5:da:5d:0e:86:0d:82: 44:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DA:95:32:74:6E:4C:54:40:91:1F:E3:44:E3:C5:B6:6C:2E:A7:CE X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b9:cf:54:cb:5b:42:ee:fc:f7:dc:90:ed:2a:00:d1:f3:24: 6f:0a:72:75:73:ff:95:ec:b6:96:82:ab:99:a5:18:6e:c9:3a: 5b:79:76:08:cb:ec:0e:04:b6:9e:59:24:6c:d9:77:30:af:e5: 90:2e:00:a2:27:e1:d3:50:20:35:0a:d8:cc:10:08:c2:68:d0: cb:99:ef:8a:77:ab:7e:4e:39:6b:b6:d6:de:8a:4a:55:a2:24: 16:81:2c:4c:a9:55:51:4a:6b:c3:08:74:1d:be:6c:09:29:9e: 7c:97:76:86:52:85:40:0d:8f:a6:a4:3b:09:be:10:03:34:09: 4e:34:10:dd:a0:47:4f:c3:fc:2a:22:96:33:d3:85:47:80:c6: 61:13:f8:8b:84:a0:c2:0f:f7:4e:35:28:d9:ea:95:ce:73:c4: 73:7a:6a:df:d2:99:b2:bb:bd:8f:31:20:a5:30:45:fd:03:02: 11:23:47:fa:7e:0f:24:10:91:d1:f2:92:70:1b:80:92:5f:7e: 72:50:56:7b:51:bb:66:08:dc:b4:3d:64:af:01:a3:cc:75:09: 9c:a6:34:b9:49:3a:45:3e:61:94:f9:1e:b4:ba:78:7a:5d:ed: bf:28:0b:e0:8d:da:b8:06:e8:7e:1f:66:15:8c:56:a4:04:7a: 03:1b:f9:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjYwNjEyMTkwOTI0WhcNMjYwNjE5MTkwOTI0WjAYMRYwFAYD VQQDEw02YTJjNTk2NS1lODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfbWh2SAhjP1DCIc3Hlf8ntKvu2R7WIaGl8iqAWHzvs93o6f4gM68vvYsZep KruhtqNkFiohMFNa3CNLHOQ0o6hNT502Az76hli3ovAmNT0Ks6mZCX95zvkSWT6V UsRup/2wU2hYRDIFFTD7owSTxcHHy17lyUuyT5UZLB/qaHDc3fbvEpwm12yu3ibW 9ZpdoxvM3UT89OJ5ucDqF7L0El/JSrtz0D5w81NmhzVeDZXhaqJeGyruqos64e8J N8nJBUCW3d2LOxPxswq9s2JHa+RE+qBSHiymm0ZBFFykOaldMHVkOlSETN0vT856 MV/AbnL8uM6F8MXaXQ6GDYJEGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ3alTJ0 bkxUQJEf40TjxbZsLqfOMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP7nPVMtbQu7899yQ7SoA0fMkbwpydXP/ley2loKrmaUYbsk6W3l2CMvsDgS2 nlkkbNl3MK/lkC4Aoifh01AgNQrYzBAIwmjQy5nvinerfk45a7bW3opKVaIkFoEs TKlVUUprwwh0Hb5sCSmefJd2hlKFQA2PpqQ7Cb4QAzQJTjQQ3aBHT8P8KiKWM9OF R4DGYRP4i4Sgwg/3TjUo2eqVznPEc3pq39KZsru9jzEgpTBF/QMCESNH+n4PJBCR 0fKScBuAkl9+clBWe1G7ZgjctD1krwGjzHUJnKY0uUk6RT5hlPketLp4el3tvygL 4I3auAbofh9mFYxWpAR6Axv5HA== -----END CERTIFICATE-----Generated at Sat Jun 13 17:02:59 2026 by rpki-client