$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: CFStv8aD//y/ZdaQ4GpDxTc/4miujwA6FtlSkoXzPwE= Subject key identifier: BF:32:DF:73:11:80:A2:58:23:D3:F5:2D:17:56:77:23:B3:C6:FD:94 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0A51 Signing time: Fri 12 Jun 2026 19:44:24 +0000 Manifest this update: Fri 12 Jun 2026 19:44:23 +0000 Manifest next update: Fri 19 Jun 2026 19:44:23 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: VmOSYRQqpgPL4jXM2A6UZhEFYmttvssakEd3CzO8k5I=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: mNeRqaSY4bVJ7ErHkgjVt3OEqspS9nVqduSxSH22Fmw=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: onxrfn2R6ig2K9q93zM3JJGyF8TFo8y2BhAaG52JL84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2667 (0xa6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Jun 12 19:44:23 2026 GMT Not After : Jun 19 19:44:23 2026 GMT Subject: CN=6a2c6198-a0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fd:66:36:21:5b:1b:ec:1e:8b:49:28:12:ab: 14:7d:5e:b7:db:2e:0c:10:78:3e:25:d0:8a:c8:0d: d2:cc:1c:1d:3e:08:8f:d7:bd:f0:43:26:87:3c:91: 81:07:6f:2d:3e:32:1c:7c:0f:a1:52:b7:8e:e2:1b: ce:62:06:72:6e:82:70:a5:25:62:df:4f:61:41:21: 8c:fc:1e:33:1c:70:95:b8:1b:9a:81:69:da:1d:7d: 6d:f4:61:31:27:df:8e:17:00:0d:42:cd:4a:5c:f6: 27:62:67:42:72:a0:13:c2:e3:8d:e2:12:87:ce:7f: df:d7:ba:06:1d:0b:92:04:2a:a7:47:1c:40:b2:ac: 4f:f4:4f:ec:90:04:81:f7:6c:4f:29:7c:2e:89:da: 4d:19:27:9f:93:3f:33:f6:57:b0:58:37:2e:cf:ed: 8b:ee:ba:19:44:77:44:a6:ea:42:20:ab:bc:ee:10: 3d:d5:40:da:1c:08:ee:d7:7a:db:c4:16:47:40:76: 84:d8:57:41:29:41:54:ce:1c:0a:c0:79:dd:a5:8b: 97:98:34:8f:57:80:6b:84:c0:42:cd:dd:fa:60:09: 3e:b6:30:60:dc:fc:0e:8c:8e:1b:0f:83:9f:d2:19: 0f:c3:56:f9:0d:a2:3a:7a:3d:35:3a:22:ca:d3:92: b9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:32:DF:73:11:80:A2:58:23:D3:F5:2D:17:56:77:23:B3:C6:FD:94 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:80:ab:57:3a:41:6a:29:0c:09:10:2c:6f:71:c7:17:f0:9d: a8:87:10:ff:1e:6c:05:37:5f:54:15:d1:ab:22:f7:77:ac:ac: cf:9a:73:c5:bc:bc:2b:36:97:55:4c:26:8f:a4:ee:cb:f4:27: 54:8a:67:3e:1c:14:fc:67:a3:c1:b7:25:28:2e:83:38:d6:32: 7b:82:5d:57:a8:69:ac:23:95:14:3c:6c:36:6b:93:cd:7a:1c: e5:fa:f6:84:9a:84:6c:5d:23:2d:14:82:56:c4:c9:d0:60:dd: a0:15:fc:73:4e:6b:f1:fa:70:50:6e:8b:86:27:c0:38:3f:97: 45:63:3d:13:6c:24:03:57:25:7c:2f:f7:30:da:89:48:77:7a: d5:ca:62:87:39:80:f6:cb:3e:39:7b:70:81:11:9d:b5:ef:81: 60:08:2b:9f:39:17:d7:5e:f2:2b:ce:69:ec:39:7b:95:1c:dc: ad:4a:d0:a4:49:04:3e:c2:a7:e4:bb:23:eb:d1:9c:8b:88:71: 58:da:56:5e:47:69:ce:d3:12:ad:45:50:2f:65:86:e0:9a:b6: 45:16:11:88:1b:73:5e:92:a0:0e:c5:56:f1:c3:2e:28:3d:72: 03:15:c1:8a:8c:de:c6:fa:d6:76:80:3b:85:59:93:e3:3d:4c: 7a:98:67:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjYwNjEyMTk0NDIzWhcNMjYwNjE5MTk0NDIzWjAYMRYwFAYD VQQDEw02YTJjNjE5OC1hMGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAov1mNiFbG+wei0koEqsUfV632y4MEHg+JdCKyA3SzBwdPgiP173wQyaHPJGB B28tPjIcfA+hUreO4hvOYgZyboJwpSVi309hQSGM/B4zHHCVuBuagWnaHX1t9GEx J9+OFwANQs1KXPYnYmdCcqATwuON4hKHzn/f17oGHQuSBCqnRxxAsqxP9E/skASB 92xPKXwuidpNGSefkz8z9lewWDcuz+2L7roZRHdEpupCIKu87hA91UDaHAju13rb xBZHQHaE2FdBKUFUzhwKwHndpYuXmDSPV4BrhMBCzd36YAk+tjBg3PwOjI4bD4Of 0hkPw1b5DaI6ej01OiLK05K5MwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL8y33MR gKJYI9P1LRdWdyOzxv2UMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdoCrVzpBaikMCRAsb3HHF/CdqIcQ/x5sBTdfVBXRqyL3d6ysz5pzxby8KzaX VUwmj6Tuy/QnVIpnPhwU/GejwbclKC6DONYye4JdV6hprCOVFDxsNmuTzXoc5fr2 hJqEbF0jLRSCVsTJ0GDdoBX8c05r8fpwUG6LhifAOD+XRWM9E2wkA1clfC/3MNqJ SHd61cpihzmA9ss+OXtwgRGdte+BYAgrnzkX117yK85p7Dl7lRzcrUrQpEkEPsKn 5Lsj69Gci4hxWNpWXkdpztMSrUVQL2WG4Jq2RRYRiBtzXpKgDsVW8cMuKD1yAxXB iozexvrWdoA7hVmT4z1Mephn7g== -----END CERTIFICATE-----Generated at Sat Jun 13 19:11:15 2026 by rpki-client