$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: elzkZBFI48kl09wTyRvX2thab+mEPFenIABvW+8Rvdk= Subject key identifier: 2F:6C:B9:13:53:7C:76:CA:4C:4F:8A:47:10:6C:85:6F:57:08:D2:3C Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 02B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 02A0 Signing time: Sat 13 Jun 2026 01:45:44 +0000 Manifest this update: Sat 13 Jun 2026 01:45:44 +0000 Manifest next update: Sat 20 Jun 2026 01:45:44 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: avwU+Dlm8ZTgOYQy9Rn98simNKTwn0MGYR2BPyi8e5o=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Jun 13 01:45:44 2026 GMT Not After : Jun 20 01:45:44 2026 GMT Subject: CN=6a2cb648-9926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:bc:ff:22:84:63:3f:c1:4f:d1:6f:fe:f3: 99:2f:ad:26:57:e2:ac:57:62:42:a8:c7:92:71:ad: 9c:c3:37:9a:4e:9d:0e:80:66:be:62:ca:b0:70:ee: 03:09:53:78:21:ba:e7:94:72:10:f2:3a:4b:ae:76: 22:a5:3b:8f:4e:a7:7b:5c:3d:a1:40:aa:07:b9:ee: 5f:22:71:7e:f4:a8:55:9b:e2:4c:4c:d7:03:37:48: f8:93:12:e3:15:14:ae:ed:0d:6b:29:f6:8a:bb:f6: 73:23:db:dd:33:b7:77:36:77:01:d2:3d:b9:a0:bf: 81:ec:22:55:c9:99:0b:e5:95:0c:b5:98:c2:4f:93: 7f:e3:ab:d8:8b:79:45:69:71:df:85:eb:08:28:ba: e2:58:71:34:4f:cd:54:30:08:96:f9:e5:85:79:91: b3:bc:15:23:0e:40:38:a0:64:47:92:9d:ef:8e:91: 83:29:c1:fb:da:d4:2a:db:de:4b:ef:ce:b4:f8:8f: f3:e1:5b:b8:2c:d6:d0:0e:06:1d:0c:c0:1d:b8:76: 05:fc:6c:f4:b9:d3:c9:93:8d:21:5f:0b:e4:fd:cc: 8e:73:1f:97:11:1f:47:e2:e8:e9:05:f7:03:f9:84: 99:a5:d7:21:69:d6:b8:fd:31:36:06:2c:de:de:5f: 03:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6C:B9:13:53:7C:76:CA:4C:4F:8A:47:10:6C:85:6F:57:08:D2:3C X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:e0:08:69:6a:b2:86:52:fd:93:77:70:66:e4:e0:d3:20:9d: bf:b6:7c:90:d0:75:63:17:da:a3:1c:40:56:8e:2c:be:14:fd: cf:dd:aa:ba:26:ee:9f:32:34:c1:89:c1:8f:dd:65:3e:aa:33: df:34:a9:ce:16:e5:a6:20:a0:fd:a2:27:16:c4:69:3b:49:5a: 28:78:ed:21:9e:f8:dd:cd:47:b1:1f:3b:50:be:b0:c7:ad:40: c0:81:8d:50:b5:69:63:d7:df:1d:39:34:54:ea:59:87:c4:83: f6:d7:97:dc:a7:ab:5e:ad:35:00:00:ae:b4:95:d2:3c:e5:f5: 30:58:94:d7:6c:49:58:88:7e:9a:01:d2:e9:8b:b9:a8:ec:18: be:c1:8a:cf:bb:44:9f:08:a1:b7:e5:86:ee:88:98:84:4f:64: 07:b3:0a:85:1e:7c:fc:91:fe:b6:75:85:63:73:70:43:b0:99: 2a:e6:55:3d:e1:84:44:69:9b:3e:26:5f:2d:d3:2d:0d:58:d4: 20:14:66:82:fc:4e:16:0d:7a:5c:e3:10:ec:ac:70:b9:1f:6d: 88:4a:2b:f4:c6:35:76:aa:4a:b5:45:93:05:35:b6:44:cb:f0: af:21:e5:0a:ed:66:88:b5:92:7e:10:22:e6:66:96:39:0d:9c: 03:05:6d:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwNjEzMDE0NTQ0WhcNMjYwNjIwMDE0NTQ0WjAYMRYwFAYD VQQDEw02YTJjYjY0OC05OTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8G8/yKEYz/BT9Fv/vOZL60mV+KsV2JCqMeSca2cwzeaTp0OgGa+YsqwcO4D CVN4IbrnlHIQ8jpLrnYipTuPTqd7XD2hQKoHue5fInF+9KhVm+JMTNcDN0j4kxLj FRSu7Q1rKfaKu/ZzI9vdM7d3NncB0j25oL+B7CJVyZkL5ZUMtZjCT5N/46vYi3lF aXHfhesIKLriWHE0T81UMAiW+eWFeZGzvBUjDkA4oGRHkp3vjpGDKcH72tQq295L 7860+I/z4Vu4LNbQDgYdDMAduHYF/Gz0udPJk40hXwvk/cyOcx+XER9H4ujpBfcD +YSZpdchada4/TE2Bize3l8DqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC9suRNT fHbKTE+KRxBshW9XCNI8MB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAveAIaWqyhlL9k3dwZuTg0yCdv7Z8kNB1YxfaoxxAVo4svhT9z92quibunzI0 wYnBj91lPqoz3zSpzhblpiCg/aInFsRpO0laKHjtIZ743c1HsR87UL6wx61AwIGN ULVpY9ffHTk0VOpZh8SD9teX3KerXq01AACutJXSPOX1MFiU12xJWIh+mgHS6Yu5 qOwYvsGKz7tEnwiht+WG7oiYhE9kB7MKhR58/JH+tnWFY3NwQ7CZKuZVPeGERGmb PiZfLdMtDVjUIBRmgvxOFg16XOMQ7KxwuR9tiEor9MY1dqpKtUWTBTW2RMvwryHl Cu1miLWSfhAi5maWOQ2cAwVtLA== -----END CERTIFICATE-----Generated at Sat Jun 13 12:49:21 2026 by rpki-client