$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: 3lKpWPQCIo6ZckxvZO3RHhUAeUlS2sdcKCRgAE9KKp8= Subject key identifier: 0E:6E:5F:C8:58:75:06:13:9C:81:52:C6:2C:EF:D9:C3:B9:E9:F1:3B Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 02B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 02A2 Signing time: Wed 17 Jun 2026 01:50:11 +0000 Manifest this update: Wed 17 Jun 2026 01:50:10 +0000 Manifest next update: Wed 24 Jun 2026 01:50:10 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: 47wbXgBxRNC5qD6/w3N31gWWI/4zBx9bLAQuqCuyIcs=) 2: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=) 3: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Jun 17 01:50:10 2026 GMT Not After : Jun 24 01:50:10 2026 GMT Subject: CN=6a31fd53-ff53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:90:7c:ff:1b:a9:6a:6e:87:ff:b5:98:97:c3: 69:d0:7a:f4:d4:59:12:53:f8:44:11:fb:e6:a2:7c: d4:7c:6e:6f:d2:97:4c:04:3c:b7:82:4b:3f:08:8c: 03:fd:de:70:54:66:d6:cc:d2:be:c9:ed:0f:cf:c9: 73:92:a6:3e:c0:46:45:ae:1d:7c:76:50:4b:19:6d: 23:1f:06:2e:fa:d9:2d:cf:bd:72:be:93:e9:d3:98: c7:c3:69:3e:cc:b5:68:bd:23:5f:8c:c4:21:a0:f0: 12:16:ca:67:5e:f4:75:b2:ae:65:71:af:a1:f7:17: 34:56:6d:c5:b3:5f:96:37:a3:e5:c0:b0:05:e4:b1: 9b:64:60:d2:fe:10:c2:02:42:21:44:40:45:cd:87: 39:50:ad:d2:90:0c:03:88:c9:ff:4c:99:58:81:e3: 52:01:c5:c1:dc:b8:dc:4e:0e:2c:2e:71:9f:f6:50: 15:49:96:2e:37:d7:84:cc:de:44:91:60:a7:fe:fa: ab:e7:91:d7:0b:93:34:aa:28:6f:95:65:64:e3:fd: e0:85:93:41:7a:bd:b8:db:2c:85:4b:cd:2b:b1:08: 7c:17:c2:54:4a:0a:e3:6b:0b:a0:ab:a9:7c:58:71: 4a:7d:31:c8:25:f2:9f:f7:65:2c:4d:54:6f:b3:47: 95:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6E:5F:C8:58:75:06:13:9C:81:52:C6:2C:EF:D9:C3:B9:E9:F1:3B X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:5a:40:fc:ff:31:f8:49:06:a6:df:a6:f8:7c:59:2f:c0:5e: bf:e7:59:4c:16:d4:88:76:a5:2d:28:b0:ea:fd:b8:13:6c:8e: ec:e3:a2:0c:78:cf:06:82:37:b4:1b:ef:19:67:f5:73:c4:21: 75:d0:b5:23:4a:18:b5:0e:ed:9b:c0:bf:dd:dc:0c:11:fb:28: 73:a1:8b:12:b9:64:7a:58:ac:0d:0d:4a:4e:62:0a:f0:38:b0: ec:b6:05:e7:62:36:1d:17:81:58:a8:07:ca:a1:2a:e3:5c:db: 5d:7e:44:97:6a:91:2c:15:d4:d1:ac:3b:4c:ef:2e:5b:24:48: 16:ac:06:fa:99:67:65:a3:e7:f7:f0:f5:db:2b:c6:14:3b:65: 77:6e:00:06:52:16:af:57:ac:b7:41:de:6f:bc:c1:9a:4f:46: af:bf:f5:d7:fa:8e:fc:d9:1c:c1:c0:2c:f9:b1:a4:36:1e:65: 94:22:af:f6:bf:f9:7f:5e:fe:a5:73:4c:b0:4d:5c:3e:c6:de: a8:38:17:0a:c1:89:28:4c:96:c9:03:bf:51:bf:f9:b7:19:9e: a0:38:b7:7d:9a:6c:04:1b:c7:c1:a1:9c:7c:ce:e0:27:64:04: 6a:82:ec:26:c9:12:1e:47:61:c0:36:ff:25:11:27:b8:ac:b9: b6:bc:f7:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwNjE3MDE1MDEwWhcNMjYwNjI0MDE1MDEwWjAYMRYwFAYD VQQDEw02YTMxZmQ1My1mZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZB8/xupam6H/7WYl8Np0Hr01FkSU/hEEfvmonzUfG5v0pdMBDy3gks/CIwD /d5wVGbWzNK+ye0Pz8lzkqY+wEZFrh18dlBLGW0jHwYu+tktz71yvpPp05jHw2k+ zLVovSNfjMQhoPASFspnXvR1sq5lca+h9xc0Vm3Fs1+WN6PlwLAF5LGbZGDS/hDC AkIhREBFzYc5UK3SkAwDiMn/TJlYgeNSAcXB3LjcTg4sLnGf9lAVSZYuN9eEzN5E kWCn/vqr55HXC5M0qihvlWVk4/3ghZNBer242yyFS80rsQh8F8JUSgrjawugq6l8 WHFKfTHIJfKf92UsTVRvs0eVLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA5uX8hY dQYTnIFSxizv2cO56fE7MB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAblpA/P8x+EkGpt+m+HxZL8Bev+dZTBbUiHalLSiw6v24E2yO7OOiDHjPBoI3 tBvvGWf1c8QhddC1I0oYtQ7tm8C/3dwMEfsoc6GLErlkelisDQ1KTmIK8Diw7LYF 52I2HReBWKgHyqEq41zbXX5El2qRLBXU0aw7TO8uWyRIFqwG+plnZaPn9/D12yvG FDtld24ABlIWr1est0Heb7zBmk9Gr7/11/qO/NkcwcAs+bGkNh5llCKv9r/5f17+ pXNMsE1cPsbeqDgXCsGJKEyWyQO/Ub/5txmeoDi3fZpsBBvHwaGcfM7gJ2QEaoLs JskSHkdhwDb/JREnuKy5trz3UA== -----END CERTIFICATE-----Generated at Wed Jun 17 09:15:07 2026 by rpki-client