$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: s536rSRy70Vra/l8qXPcsVpEVU8TVpXjPQgWsXL4JDQ= Subject key identifier: 72:F9:05:1E:3B:E8:7A:9E:9B:88:EA:50:52:D1:90:96:A9:08:24:E1 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0850 Signing time: Fri 12 Jun 2026 20:55:28 +0000 Manifest this update: Fri 12 Jun 2026 20:55:28 +0000 Manifest next update: Fri 19 Jun 2026 20:55:28 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: loSPG5SfvCYQlf1MQFk76v+jXddgeGU54JPnJy975As=) 2: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: /CLRSnh9CYZydXvA+OqGb8vFSm9uhhWBDEam371xnzI=) 3: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: leO2JqGKVdqcNczUkd0IAjGki7oPjl2kK1j+hgCcFLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Jun 12 20:55:28 2026 GMT Not After : Jun 19 20:55:28 2026 GMT Subject: CN=6a2c7240-357e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:92:d7:a0:64:63:bf:90:f3:a2:0d:33:5e:53: cb:26:3d:c3:f2:79:66:d8:6b:0b:e6:b4:44:48:40: 7b:66:4d:32:b5:e2:41:ed:bb:50:c4:39:ee:08:25: d2:b5:54:e2:52:30:5b:c1:e8:71:e3:41:bf:22:82: 72:4f:59:6d:aa:da:ef:95:e6:12:45:41:1c:ef:ed: 87:27:e2:00:e5:05:b9:82:4f:da:17:41:f7:96:74: 93:4c:5b:67:cc:3d:1e:02:07:7b:3b:01:b1:c0:8e: 59:18:b2:35:2e:fd:42:73:ff:e9:4b:fe:38:20:ce: 46:07:2b:48:1b:fc:fd:47:a8:cc:18:0a:18:10:cc: 53:fa:bd:9a:21:13:52:7f:99:c9:aa:9e:ed:2f:77: 7a:a2:9c:c3:66:b4:01:10:46:d2:43:88:8a:52:08: 01:1a:e9:4b:13:e2:5d:cf:55:97:8f:7c:0f:6d:0d: 6d:cf:b9:27:31:71:ef:6a:39:9a:7c:55:3b:1a:54: e0:3d:59:7f:92:8a:29:62:03:2d:36:6b:5e:d5:a2: 8c:00:47:0d:43:85:a7:fe:34:02:c7:98:4e:5e:a4: f3:61:6c:f8:6f:80:21:b0:01:23:a5:e2:c5:8e:80: e8:53:d7:a0:67:e5:d9:3e:0a:01:dd:25:5b:6a:17: 94:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F9:05:1E:3B:E8:7A:9E:9B:88:EA:50:52:D1:90:96:A9:08:24:E1 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:4a:97:6b:57:09:c4:fa:46:32:4f:83:c9:fb:e0:fa:de:4e: dd:86:c2:80:7d:25:c2:91:65:dc:c4:b4:b7:10:37:de:b3:1d: 08:2d:2e:db:27:72:b4:89:6c:d8:4e:e0:22:11:17:22:b0:80: b5:ea:90:21:e9:1b:f7:05:be:3d:79:c2:38:1a:e9:22:bf:bc: 11:a0:78:68:25:91:e0:c8:d5:93:3f:45:cc:bc:75:3e:6b:3c: 70:e5:6a:8a:86:af:3b:64:9e:57:01:28:7b:05:7e:e8:c0:cf: dd:ae:d6:e1:b0:4c:2e:a9:a3:31:e3:f2:52:16:78:6b:fb:d2: 52:9c:a4:e7:f4:be:57:31:18:ee:96:2c:1b:95:29:72:20:1e: dd:02:d3:a3:94:f2:56:e2:3c:4f:ba:b6:22:27:13:87:d4:63: 9b:6a:f2:5d:9e:e1:e7:c5:5a:a9:38:65:4c:fe:4a:c8:54:16: 27:dc:1d:99:ce:ec:69:64:03:49:48:a5:a6:fa:8f:fd:84:c0: 91:d2:6a:fc:22:b5:23:ef:c4:36:16:8c:11:cd:6f:98:63:04: ef:ef:5c:97:d9:a3:38:67:ce:c5:b7:ee:bf:7c:3b:f5:ea:dc: c6:ac:f4:83:a6:82:cb:59:22:b9:bc:72:2c:0d:c9:6a:af:0c: 28:b0:fc:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjYwNjEyMjA1NTI4WhcNMjYwNjE5MjA1NTI4WjAYMRYwFAYD VQQDEw02YTJjNzI0MC0zNTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pLXoGRjv5Dzog0zXlPLJj3D8nlm2GsL5rRESEB7Zk0yteJB7btQxDnuCCXS tVTiUjBbwehx40G/IoJyT1ltqtrvleYSRUEc7+2HJ+IA5QW5gk/aF0H3lnSTTFtn zD0eAgd7OwGxwI5ZGLI1Lv1Cc//pS/44IM5GBytIG/z9R6jMGAoYEMxT+r2aIRNS f5nJqp7tL3d6opzDZrQBEEbSQ4iKUggBGulLE+Jdz1WXj3wPbQ1tz7knMXHvajma fFU7GlTgPVl/koopYgMtNmte1aKMAEcNQ4Wn/jQCx5hOXqTzYWz4b4AhsAEjpeLF joDoU9egZ+XZPgoB3SVbaheUswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHL5BR47 6Hqem4jqUFLRkJapCCThMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmUqXa1cJxPpGMk+Dyfvg+t5O3YbCgH0lwpFl3MS0txA33rMdCC0u2ydytIls 2E7gIhEXIrCAteqQIekb9wW+PXnCOBrpIr+8EaB4aCWR4MjVkz9FzLx1Pms8cOVq ioavO2SeVwEoewV+6MDP3a7W4bBMLqmjMePyUhZ4a/vSUpyk5/S+VzEY7pYsG5Up ciAe3QLTo5TyVuI8T7q2IicTh9Rjm2ryXZ7h58VaqThlTP5KyFQWJ9wdmc7saWQD SUilpvqP/YTAkdJq/CK1I+/ENhaMEc1vmGME7+9cl9mjOGfOxbfuv3w79ercxqz0 g6aCy1kiubxyLA3Jaq8MKLD8hQ== -----END CERTIFICATE-----Generated at Sun Jun 14 00:32:11 2026 by rpki-client