$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: QQ+xa/xn6mZAdEqpApaI4tgp+R5kVSS2B7YDn8ULT7o= Subject key identifier: A0:79:25:B3:B0:C2:C8:B6:42:6B:DD:AD:B0:F9:5D:DF:D3:B4:14:E8 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 0149 Signing time: Sat 13 Jun 2026 05:17:52 +0000 Manifest this update: Sat 13 Jun 2026 05:17:52 +0000 Manifest next update: Sat 20 Jun 2026 05:17:52 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: k6A7imirkggciTpY9C10nKFkIgcNrKHH2UOji0lQHjU=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: VHajbTjmwkX2RW0fXipdm5sMeEnHYksBbQ58cyoCp5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Jun 13 05:17:52 2026 GMT Not After : Jun 20 05:17:52 2026 GMT Subject: CN=6a2ce800-2c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:a3:40:9d:0c:d0:8b:ad:38:24:b3:ea:90: f7:30:b0:c9:49:29:6c:d8:15:4a:9b:83:02:7a:92: 26:23:1b:3e:00:91:e6:4c:4c:a8:da:fc:ed:9d:e7: 71:f7:7f:dd:bd:62:27:c8:09:23:20:64:b9:f8:e6: c2:5b:3c:8c:36:36:b6:8e:cd:d4:eb:7d:fe:55:5f: e8:2b:07:2e:8d:6b:ec:24:ba:68:1b:53:ed:43:cd: d5:0f:32:55:c1:3f:1c:9f:c0:22:58:ec:da:bc:8e: 0a:99:60:b8:d1:2c:62:5b:b0:af:5f:ee:71:27:ea: cb:87:d2:fa:ea:b1:5d:f0:a7:37:23:0b:b7:3c:f2: b6:72:d3:f2:62:5b:84:a2:06:2d:38:23:25:61:bb: 97:c3:e9:1f:55:c9:73:4a:36:df:93:35:dc:15:cb: ff:29:bc:d4:f7:00:d0:71:17:fc:64:11:57:b9:15: ec:9e:b1:b8:e3:0f:c5:92:f8:2c:e3:e1:4d:78:cc: 2c:5d:38:aa:94:af:07:b7:4b:34:3c:cc:5c:2c:fa: fe:75:80:0c:41:d7:d8:27:f7:80:0f:3d:b9:dd:63: 1b:28:97:16:b8:28:85:0a:18:59:16:f1:26:0d:b3: 8d:f1:34:a4:ce:01:9a:a4:2f:c2:e2:4b:66:c2:53: 1c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:79:25:B3:B0:C2:C8:B6:42:6B:DD:AD:B0:F9:5D:DF:D3:B4:14:E8 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:5a:05:4a:79:f8:1e:0c:84:0a:57:cb:af:e5:54:0e:c5:1c: 81:ba:a1:d5:a6:03:21:08:42:bf:a7:46:62:4d:40:df:d2:c7: ee:70:64:6b:3e:76:99:06:b6:23:cd:6d:3e:39:34:e3:ef:84: b1:19:bf:e3:59:f0:fc:cb:bc:4b:77:44:2b:6c:11:08:4e:70: 6c:7d:ed:91:80:a0:1e:fb:4e:71:e9:dc:ec:ae:56:71:91:89: 0d:ea:bb:2b:a9:b9:12:90:5f:18:e9:75:0e:18:d4:a1:82:ab: 5b:bf:b0:28:7e:e2:60:b8:36:66:90:b6:36:7a:38:5c:94:87: 3a:1c:55:fd:d7:87:b3:0a:ae:a8:8e:b3:99:3f:33:bb:53:4a: df:cb:5d:16:19:48:e2:24:f0:1e:50:dd:93:98:2a:8d:89:3d: 58:9f:0a:4d:22:d3:6a:0b:ac:07:d6:e2:ff:71:b1:7e:a7:ab: 92:1e:c0:09:55:ea:81:48:6f:97:ac:9b:bb:8d:9f:d2:17:64: 13:a3:b2:59:57:26:89:76:d8:c0:03:08:47:14:8e:98:75:9e: cd:8c:07:a9:36:3e:62:06:ea:1a:59:7a:0b:aa:f3:21:bc:21: c0:0f:3a:f6:af:a6:dd:b6:11:e6:b1:ff:d2:bf:f8:96:c8:1c: 81:2a:ea:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwNjEzMDUxNzUyWhcNMjYwNjIwMDUxNzUyWjAYMRYwFAYD VQQDEw02YTJjZTgwMC0yYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOujQJ0M0IutOCSz6pD3MLDJSSls2BVKm4MCepImIxs+AJHmTEyo2vztnedx 93/dvWInyAkjIGS5+ObCWzyMNja2js3U633+VV/oKwcujWvsJLpoG1PtQ83VDzJV wT8cn8AiWOzavI4KmWC40SxiW7CvX+5xJ+rLh9L66rFd8Kc3Iwu3PPK2ctPyYluE ogYtOCMlYbuXw+kfVclzSjbfkzXcFcv/KbzU9wDQcRf8ZBFXuRXsnrG44w/Fkvgs 4+FNeMwsXTiqlK8Ht0s0PMxcLPr+dYAMQdfYJ/eADz253WMbKJcWuCiFChhZFvEm DbON8TSkzgGapC/C4ktmwlMcwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKB5JbOw wsi2QmvdrbD5Xd/TtBToMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAFoFSnn4HgyEClfLr+VUDsUcgbqh1aYDIQhCv6dGYk1A39LH7nBkaz52mQa2 I81tPjk04++EsRm/41nw/Mu8S3dEK2wRCE5wbH3tkYCgHvtOcenc7K5WcZGJDeq7 K6m5EpBfGOl1DhjUoYKrW7+wKH7iYLg2ZpC2Nno4XJSHOhxV/deHswquqI6zmT8z u1NK38tdFhlI4iTwHlDdk5gqjYk9WJ8KTSLTagusB9bi/3Gxfqerkh7ACVXqgUhv l6ybu42f0hdkE6OyWVcmiXbYwAMIRxSOmHWezYwHqTY+YgbqGll6C6rzIbwhwA86 9q+m3bYR5rH/0r/4lsgcgSrqYw== -----END CERTIFICATE-----Generated at Sat Jun 13 08:50:58 2026 by rpki-client