$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: RcUJx5GNfiKFXL/Bzov7a2gIMSPEKlFXwvRy92On9Fk= Subject key identifier: D0:BA:BC:A6:31:25:E9:A8:93:88:9A:52:4C:62:B7:A7:1F:71:AC:B2 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 1615 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 1606 Signing time: Fri 12 Jun 2026 16:40:40 +0000 Manifest this update: Fri 12 Jun 2026 16:40:40 +0000 Manifest next update: Fri 19 Jun 2026 16:40:40 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: h40/uFszEsRN0ODBxoVzU5rzujEDN6TXqxxofmXWEBE=) 2: 85CB3A8A4A9D11F1A2093B779BEE528E.roa (hash: HPg54/GUrW2e3ZBjByhQdgJ3W185EITXukQZc69O0IY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5653 (0x1615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Jun 12 16:40:40 2026 GMT Not After : Jun 19 16:40:40 2026 GMT Subject: CN=6a2c3688-01a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:3a:28:d1:fa:ba:0d:a6:86:15:15:87:65:e5: 08:ea:8f:64:ba:36:d2:ce:18:f3:6b:a3:ae:5e:fa: 89:09:c9:6d:fb:c6:6b:21:6d:08:fc:20:77:93:48: 55:a3:8f:9a:5a:56:45:2f:02:e5:07:86:b9:2f:81: 71:03:63:c2:ac:b9:51:9d:41:16:f3:0d:fd:b7:89: 03:b4:25:1b:fe:2e:fb:25:83:0a:93:3d:b0:e4:89: 2a:b2:c7:53:82:5a:85:e7:db:7b:46:6a:b6:00:ce: 6d:a5:59:91:f0:fd:57:25:5e:ae:50:3d:b5:14:7d: 9b:dd:35:04:d7:66:f4:7f:ac:98:e9:0d:3e:8e:5b: 88:a3:9e:82:a1:72:f4:3e:04:72:78:05:d0:f7:59: 35:5b:6d:73:3c:da:75:67:31:e5:3e:92:bd:3b:a7: 1f:d0:d0:ee:63:4e:e5:c2:92:89:41:5d:b5:21:79: 7e:1c:20:fd:1a:61:e9:05:d6:6d:65:0c:e9:ea:16: 9c:81:49:88:87:d6:cc:b5:c8:c3:14:82:89:bd:61: 74:ce:8e:8e:a5:20:f9:3f:a4:db:30:38:ff:62:76: 23:c9:31:60:64:23:4a:60:b9:d4:af:9d:c3:6b:3c: 8d:2d:af:5f:6f:d2:5e:b0:ef:a3:0e:eb:b2:21:c2: 1b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BA:BC:A6:31:25:E9:A8:93:88:9A:52:4C:62:B7:A7:1F:71:AC:B2 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:c8:08:e0:b6:b0:c7:48:01:dd:d4:35:3b:46:fa:99:11:99: a7:56:dd:95:80:1d:7e:b1:e0:b3:f9:61:4b:29:bf:71:ce:bc: d2:d7:9b:21:23:31:c2:60:36:81:46:27:ca:2f:08:0a:8b:65: bf:45:7c:f3:ef:cd:26:7a:b6:fb:4c:43:8c:9c:11:bf:37:cb: 88:98:30:55:81:9a:ef:e4:a6:85:fd:e4:94:0d:f4:35:4c:ca: 42:be:bd:c6:d5:2c:e5:2c:0f:2b:24:a2:46:23:89:31:77:ff: 94:22:7c:e4:38:d1:50:66:3b:44:56:db:92:bb:3b:16:52:c4: 0e:27:8e:9f:5d:37:26:65:16:10:cd:e5:89:4f:c9:17:03:01: a1:bb:aa:6c:4f:3b:61:a4:70:51:cb:5e:9a:9f:80:51:4e:49: 51:10:03:f9:11:c9:92:5f:bb:c0:f9:79:cd:43:44:45:48:74: a9:13:f1:f7:e8:e1:71:33:15:a8:f7:8c:aa:b2:70:89:7b:d8: 26:5d:b3:23:de:11:fa:f4:0c:c3:e0:1b:c1:17:ac:9b:7d:54: 0b:04:06:e4:e0:24:8b:89:c5:05:a7:7b:74:68:09:e6:15:ad: 80:ae:3d:35:77:f1:e4:50:ae:00:ef:24:61:a3:a3:23:fd:27: a4:87:61:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjYwNjEyMTY0MDQwWhcNMjYwNjE5MTY0MDQwWjAYMRYwFAYD VQQDEw02YTJjMzY4OC0wMWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkToo0fq6DaaGFRWHZeUI6o9kujbSzhjza6OuXvqJCclt+8ZrIW0I/CB3k0hV o4+aWlZFLwLlB4a5L4FxA2PCrLlRnUEW8w39t4kDtCUb/i77JYMKkz2w5IkqssdT glqF59t7Rmq2AM5tpVmR8P1XJV6uUD21FH2b3TUE12b0f6yY6Q0+jluIo56CoXL0 PgRyeAXQ91k1W21zPNp1ZzHlPpK9O6cf0NDuY07lwpKJQV21IXl+HCD9GmHpBdZt ZQzp6hacgUmIh9bMtcjDFIKJvWF0zo6OpSD5P6TbMDj/YnYjyTFgZCNKYLnUr53D azyNLa9fb9JesO+jDuuyIcIbKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNC6vKYx Jemok4iaUkxit6cfcayyMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALcgI4Lawx0gB3dQ1O0b6mRGZp1bdlYAdfrHgs/lhSym/cc680tebISMxwmA2 gUYnyi8ICotlv0V88+/NJnq2+0xDjJwRvzfLiJgwVYGa7+Smhf3klA30NUzKQr69 xtUs5SwPKySiRiOJMXf/lCJ85DjRUGY7RFbbkrs7FlLEDieOn103JmUWEM3liU/J FwMBobuqbE87YaRwUctemp+AUU5JURAD+RHJkl+7wPl5zUNERUh0qRPx9+jhcTMV qPeMqrJwiXvYJl2zI94R+vQMw+AbwResm31UCwQG5OAki4nFBad7dGgJ5hWtgK49 NXfx5FCuAO8kYaOjI/0npIdh0g== -----END CERTIFICATE-----Generated at Sat Jun 13 11:01:47 2026 by rpki-client