$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft File: tZsFZqgqmDvebfHF3kxYLJvKg5I.mft (raw, json) Hash identifier: bimh9Gox0Bd51jM8EH455di7CcR1hD/UmZfeKb1Cpb0= Subject key identifier: F8:4A:D6:45:6C:BD:3F:32:8F:85:72:41:06:B0:33:E6:3C:B6:59:5E Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0CC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft Manifest number: 0CA5 Signing time: Fri 12 Jun 2026 18:36:25 +0000 Manifest this update: Fri 12 Jun 2026 18:36:25 +0000 Manifest next update: Fri 19 Jun 2026 18:36:25 +0000 Files and hashes: 1: tZsFZqgqmDvebfHF3kxYLJvKg5I.crl (hash: Hj7aVko3eRx3rbsTXYfxBBHWzrEldm4OjexsWlCh+ig=) 2: CFF8393A232C11F0B9CB2044C4F9AE02.roa (hash: nEmNA11Dyl7nTFmnZC9S6fy/8rzvC71ench9nRz81iE=) 3: CB46AC50509111EF9E40402FC4F9AE02.roa (hash: J2Vubqi8ic0NqlP+qdXl9htU+adGeTvh1ITR3W4ptX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3268 (0xcc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Jun 12 18:36:25 2026 GMT Not After : Jun 19 18:36:25 2026 GMT Subject: CN=6a2c51a9-5780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:74:61:d2:ec:80:16:33:e2:de:4e:b8:ea:cd: 94:57:52:ee:03:4d:77:14:26:37:22:d9:f6:98:a2: 2e:ce:33:71:d7:70:89:e6:23:88:5f:7e:33:2b:32: 3c:2a:bc:ee:a4:ba:a1:fa:1d:8f:39:48:22:42:6e: 73:cf:ef:5f:cd:33:43:9d:07:e7:6f:6d:4f:a9:9e: 22:60:c6:29:cf:be:15:39:d7:ce:0a:81:6d:9f:86: cb:b3:de:67:7d:d3:1f:11:0b:99:a3:99:d1:78:b8: 7a:19:5e:57:dd:7e:75:1e:d2:f9:24:ee:9b:8b:3c: 13:ca:c0:ec:88:aa:88:4b:1d:6a:4f:1c:44:3b:24: 3e:2f:0a:46:3a:2c:f4:76:f3:0c:4b:7f:76:8e:d8: 88:e6:55:d9:fa:4e:a2:11:d4:74:10:ea:7a:58:d6: f6:ad:ce:59:d1:86:1c:4f:82:1a:0d:a0:af:a8:89: f2:85:03:0a:b6:9c:4b:01:2b:84:c3:81:a1:43:4a: 5a:4b:a6:a7:2e:87:8d:0b:88:83:33:76:7e:78:fc: 98:70:b6:af:7e:08:ef:28:f9:ec:14:44:b8:01:9e: 3b:f5:42:13:23:62:09:ab:ab:5a:c0:1f:67:01:84: 2a:b1:c4:b1:88:f8:00:7c:e2:db:32:22:6d:9c:c2: d4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4A:D6:45:6C:BD:3F:32:8F:85:72:41:06:B0:33:E6:3C:B6:59:5E X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:9d:6c:52:6b:f6:4a:4c:ea:e7:79:40:08:aa:a9:72:fe:4b: 2e:d4:f2:a6:e2:62:55:6a:33:14:e8:32:e4:9b:39:7b:c7:89: 9e:60:bd:c7:8c:f2:02:c4:e2:db:a2:1e:e3:72:aa:b5:13:21: 57:d7:42:e3:ac:1e:38:e2:c6:6d:53:97:83:b3:41:b5:52:aa: 8b:e1:fc:2d:06:1c:3e:8e:97:63:c3:d1:2a:1f:8d:64:2e:1e: 76:48:56:d1:ee:1f:45:9e:a4:a7:cd:8a:a2:27:54:4c:64:2b: f7:14:c9:44:09:d8:c1:fc:49:b6:91:9b:16:25:36:83:df:fd: a6:38:f8:45:bb:e9:dd:3b:da:37:a6:8e:02:14:32:af:bc:2b: 9f:01:83:a8:78:04:7e:e8:40:7a:e0:8e:d3:a3:dd:72:36:21: e5:4b:d3:72:ed:0d:ad:13:4c:8d:df:94:b7:91:b8:f9:86:04: 44:81:24:af:d5:37:9d:2c:2c:02:2b:38:ee:b0:c3:46:ff:12: 41:8f:17:81:04:a5:bd:ef:5c:1f:a1:78:2c:e4:ab:7a:34:f7: b6:df:3c:55:0e:ac:93:de:82:08:f9:a2:99:6e:39:df:56:8f: 59:9c:77:0c:af:2a:95:65:20:33:0a:c4:b5:55:ec:de:0a:39: 0c:a1:18:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjYwNjEyMTgzNjI1WhcNMjYwNjE5MTgzNjI1WjAYMRYwFAYD VQQDEw02YTJjNTFhOS01NzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3Rh0uyAFjPi3k646s2UV1LuA013FCY3Itn2mKIuzjNx13CJ5iOIX34zKzI8 KrzupLqh+h2POUgiQm5zz+9fzTNDnQfnb21PqZ4iYMYpz74VOdfOCoFtn4bLs95n fdMfEQuZo5nReLh6GV5X3X51HtL5JO6bizwTysDsiKqISx1qTxxEOyQ+LwpGOiz0 dvMMS392jtiI5lXZ+k6iEdR0EOp6WNb2rc5Z0YYcT4IaDaCvqInyhQMKtpxLASuE w4GhQ0paS6anLoeNC4iDM3Z+ePyYcLavfgjvKPnsFES4AZ479UITI2IJq6tawB9n AYQqscSxiPgAfOLbMiJtnMLUdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPhK1kVs vT8yj4VyQQawM+Y8tlleMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxRS9DNzhFNEE3MjFDQTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1E dmViZkhGM2t4WUxKdktnNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW51sUmv2Skzq53lACKqpcv5LLtTypuJiVWozFOgy5Js5e8eJnmC9x4zyAsTi 26Ie43KqtRMhV9dC46weOOLGbVOXg7NBtVKqi+H8LQYcPo6XY8PRKh+NZC4edkhW 0e4fRZ6kp82KoidUTGQr9xTJRAnYwfxJtpGbFiU2g9/9pjj4Rbvp3TvaN6aOAhQy r7wrnwGDqHgEfuhAeuCO06PdcjYh5UvTcu0NrRNMjd+Ut5G4+YYERIEkr9U3nSws Ais47rDDRv8SQY8XgQSlve9cH6F4LOSrejT3tt88VQ6sk96CCPmimW4531aPWZx3 DK8qlWUgMwrEtVXs3go5DKEY4Q== -----END CERTIFICATE-----Generated at Sun Jun 14 01:44:35 2026 by rpki-client