$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: EhIqRAC/JMsc1ZWcLesQOV+gK3zrPyTfGYEHRTKXlDY= Subject key identifier: 3B:65:B4:E4:D6:BE:EC:FC:EE:B7:AD:B2:13:9C:EC:BD:88:39:4C:4B Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 35E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 35A3 Signing time: Fri 12 Jun 2026 14:27:13 +0000 Manifest this update: Fri 12 Jun 2026 14:27:13 +0000 Manifest next update: Fri 19 Jun 2026 14:27:13 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: Lijd8jP8xirtjpxKzp6KX3dC4L5wD1jjZd0D6S0nHFo=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: ZbvAqdZRdRlZ0nK19Soo+W7fZP+M1TyK82wvNdqV5u4=) 3: B16ED608D4A311F09760561DC4F9AE02.roa (hash: KTE/5UmLg1Jx7p3qXHkj9a3Zu722Q28ccyfvFDypscA=) 4: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: 8+OhuWCy2Q/+5EOFBaBhHTBOjwb6o2MiQFSjk3LYjzg=) 5: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: Ix+QmO0rSCT4pyJs1dGC/MTdKFeZNsFKd69IpQPvvRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13800 (0x35e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Jun 12 14:27:13 2026 GMT Not After : Jun 19 14:27:13 2026 GMT Subject: CN=6a2c1741-c22c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:40:e3:a4:71:03:b9:34:a2:67:cf:d4:3f:e0: 77:8d:56:a7:73:a3:ea:d0:03:d8:d2:bb:3a:0d:37: 17:38:9f:43:dd:ff:fc:c9:5f:0e:0e:51:66:67:3c: e1:96:24:d0:20:f2:8d:a1:0e:b1:cd:82:04:63:1f: 58:3b:83:43:26:8d:1c:a5:21:5f:9e:41:95:dd:df: a7:ba:74:66:18:5d:b5:23:6a:5e:fb:1d:7b:cc:66: 23:39:36:22:7a:87:57:26:a3:f3:a2:fb:7a:2d:d1: 67:12:0a:48:98:18:ab:33:b0:ca:27:ab:7e:e5:eb: 09:53:f0:70:8d:68:5d:26:39:d8:ae:3b:d4:d3:92: 12:bc:9b:56:11:f7:ab:81:9c:8b:19:15:e0:1d:9c: c7:9b:72:b7:ee:37:18:de:d5:ea:10:36:73:a8:6f: aa:0a:d7:f7:34:95:0d:ac:1b:4d:7f:df:86:3f:58: 76:39:86:03:62:37:22:25:0c:8e:d6:a6:ae:dc:bb: 57:eb:b2:1f:7b:14:8b:a9:51:4b:bc:bb:6f:67:d3: f3:36:98:29:4e:8f:8d:c9:da:1a:fb:ee:38:f6:97: 23:c9:0d:ab:75:b3:f3:40:2b:e4:8a:0d:62:7c:ba: 11:30:02:45:60:8d:bd:0c:c6:d5:eb:99:f6:39:44: e5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:65:B4:E4:D6:BE:EC:FC:EE:B7:AD:B2:13:9C:EC:BD:88:39:4C:4B X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c0:33:93:5e:5e:71:e2:06:2a:a9:19:88:bc:1c:52:26:96: a9:ae:8f:5b:b3:6a:ab:66:5d:01:1a:d2:01:41:4b:d3:a1:11: 02:48:d6:47:20:ed:d2:d5:63:83:d1:63:4f:43:a0:e2:d1:10: 34:52:d8:31:70:5c:c1:e6:8c:1b:2f:79:ee:16:79:ec:aa:19: c5:e4:3d:6f:e6:d6:0a:12:66:cf:f5:db:60:fe:a8:9d:0e:ef: 80:14:43:f9:0a:0d:b9:39:2b:a6:88:30:17:5e:8d:06:f6:c8: c5:77:5e:51:73:76:9c:fc:6b:99:1d:11:0b:14:b0:15:7b:e8: 7c:fb:79:f7:d4:25:fd:ec:80:64:ea:7e:76:3e:4a:e6:22:94: 1e:d5:db:55:2a:f3:eb:42:70:f9:32:90:87:a6:f4:50:39:01: b8:b9:04:79:b8:76:b1:15:85:da:62:70:83:38:97:0a:c5:0d: b9:15:ee:aa:2b:78:0f:91:2c:cb:4a:36:ff:68:16:8e:d1:2f: fa:96:1c:fd:11:66:4b:d5:cb:bc:4b:48:99:10:3f:87:b8:8e: 7d:48:e5:2c:a7:97:e3:4e:2b:d9:af:e8:9d:25:ef:d0:6f:e2: 80:8e:8b:84:f0:de:b4:33:56:4a:d8:ba:f2:bc:30:2e:dd:b2: da:87:67:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwNjEyMTQyNzEzWhcNMjYwNjE5MTQyNzEzWjAYMRYwFAYD VQQDEw02YTJjMTc0MS1jMjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kDjpHEDuTSiZ8/UP+B3jVanc6Pq0APY0rs6DTcXOJ9D3f/8yV8ODlFmZzzh liTQIPKNoQ6xzYIEYx9YO4NDJo0cpSFfnkGV3d+nunRmGF21I2pe+x17zGYjOTYi eodXJqPzovt6LdFnEgpImBirM7DKJ6t+5esJU/BwjWhdJjnYrjvU05ISvJtWEfer gZyLGRXgHZzHm3K37jcY3tXqEDZzqG+qCtf3NJUNrBtNf9+GP1h2OYYDYjciJQyO 1qau3LtX67IfexSLqVFLvLtvZ9PzNpgpTo+Nydoa++449pcjyQ2rdbPzQCvkig1i fLoRMAJFYI29DMbV65n2OUTltwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDtltOTW vuz87retshOc7L2IOUxLMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKsAzk15eceIGKqkZiLwcUiaWqa6PW7Nqq2ZdARrSAUFL06ERAkjWRyDt0tVj g9FjT0Og4tEQNFLYMXBcweaMGy957hZ57KoZxeQ9b+bWChJmz/XbYP6onQ7vgBRD +QoNuTkrpogwF16NBvbIxXdeUXN2nPxrmR0RCxSwFXvofPt599Ql/eyAZOp+dj5K 5iKUHtXbVSrz60Jw+TKQh6b0UDkBuLkEebh2sRWF2mJwgziXCsUNuRXuqit4D5Es y0o2/2gWjtEv+pYc/RFmS9XLvEtImRA/h7iOfUjlLKeX404r2a/onSXv0G/igI6L hPDetDNWSti68rwwLt2y2odnbQ== -----END CERTIFICATE-----Generated at Sat Jun 13 09:18:18 2026 by rpki-client