$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: npbyF7JYzElF3y4xJt3wGBpUBLjNyQqRtQFs0hSLbhM= Subject key identifier: F2:54:DD:23:9F:6A:D1:07:00:1F:C5:DF:AE:DE:57:72:01:D4:30:47 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 3598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 356C Signing time: Fri 12 Jun 2026 14:18:33 +0000 Manifest this update: Fri 12 Jun 2026 14:18:33 +0000 Manifest next update: Fri 19 Jun 2026 14:18:33 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: lwUnDtLK4oI7w71h5jlFVE6ujD1X2lhESG2bbDcwGH8=) 2: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: uTwgdWpEtjV1ALHAM8OqP3F4AfwGv1rbWW6ZiHZWVyg=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: kemAcHttVJ/67VTbPvla1uxc5lCQKg8ypYYWxu51V6g=) 4: 1F40296A65AA11F1A2780DB67847A888.roa (hash: xCeE3NkSHLJX8hWD3lcocXTFRBLR4NjlfyWa7eSQ5Q0=) 5: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: x1jt7itPjnC6MQbNejsBQgbeqBxLH2bZYuNPNtNXfYM=) 6: B683232C65AA11F1B5A6BBF27847A888.roa (hash: ui+fKkNRAL+b96meDYqRb3fMZ9lGNQU6S4pF6IMCEJk=) 7: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: x81djxirc4TZ7LBWsfaYDwm6dEqBh0TJcdGGB4pBfl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13720 (0x3598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Jun 12 14:18:33 2026 GMT Not After : Jun 19 14:18:33 2026 GMT Subject: CN=6a2c1539-601e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dd:16:92:8f:4d:a5:ba:4e:48:ae:18:96:9b: 61:ca:7a:26:0b:d6:45:67:eb:45:59:65:17:05:02: 0c:32:67:ed:ee:52:4f:58:c8:5c:2f:97:f4:6d:e8: 34:5d:71:6e:93:11:f6:08:14:f9:24:4e:d9:9c:a5: b6:08:42:bf:5d:f3:29:9f:2d:53:9b:ed:3e:77:5f: 54:fc:3b:6d:e0:3b:df:c5:d8:e9:92:0e:2f:93:4d: a2:2a:c1:c4:da:5a:09:5e:4f:36:e7:48:05:85:18: d7:5b:51:3f:20:b6:6b:95:f2:76:92:92:94:e8:58: 66:2b:fc:c4:ea:45:a4:da:de:f5:cd:1e:bf:5e:17: f3:15:da:3e:6d:fb:7f:38:a3:38:5d:67:50:91:77: 9b:7e:19:92:8c:06:59:7f:eb:9f:be:7d:a9:27:01: ee:df:6c:be:26:58:41:d8:eb:ff:47:62:24:5f:73: 0e:d0:f5:61:4d:05:1e:07:5e:cf:01:5e:82:80:ed: 7e:b0:e5:ca:ec:67:3d:53:48:f1:22:10:f0:34:45: e7:4e:4f:d3:8d:4a:fd:ae:aa:2e:c2:70:c7:61:34: a6:45:45:d3:72:5c:9e:db:45:7f:58:e6:50:b7:4d: 22:d8:a1:1c:74:fb:a9:a6:95:e9:bc:16:02:54:74: 5f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:54:DD:23:9F:6A:D1:07:00:1F:C5:DF:AE:DE:57:72:01:D4:30:47 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f1:9b:20:22:76:a7:57:99:24:dc:ff:6c:df:2e:48:76:68: 94:77:4c:07:06:32:31:48:4b:fb:96:8b:93:9e:9b:f8:a1:79: fc:08:c7:5c:3a:bf:22:31:09:52:1b:7c:1d:66:a5:90:cb:17: 08:cc:76:08:91:62:45:f2:2d:6c:89:ae:1c:ae:c2:ce:a3:76: e7:8b:13:9e:28:d9:21:70:cc:bb:b6:9c:ba:88:53:8e:d7:fe: ec:80:7c:08:b8:01:29:08:1e:7b:e3:47:76:85:ab:3e:95:2f: 39:28:3b:31:d7:4f:7e:33:c8:cd:3b:8f:e5:5a:31:62:9c:2f: 86:20:3b:f8:cc:f4:20:41:b2:7d:0e:9d:71:f3:4f:35:21:99: 15:4e:45:e8:77:23:44:f8:ac:71:30:eb:3c:3a:a5:cf:31:26: 41:e1:ba:02:ea:61:cb:04:55:97:a8:97:53:7a:09:56:f5:9a: 95:53:bd:7f:4b:10:ba:2e:71:0a:4b:26:c2:b4:04:9d:94:fb: c3:2f:08:84:64:61:b2:43:8a:18:82:84:10:54:bb:29:76:7c: f0:89:bc:3d:22:90:30:8f:a4:d9:6d:18:de:38:94:28:49:de: 24:01:f2:92:8f:33:25:b9:bb:2a:4f:c7:74:2d:1b:0e:1b:1b: 44:74:60:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwNjEyMTQxODMzWhcNMjYwNjE5MTQxODMzWjAYMRYwFAYD VQQDEw02YTJjMTUzOS02MDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAst0Wko9NpbpOSK4YlpthynomC9ZFZ+tFWWUXBQIMMmft7lJPWMhcL5f0beg0 XXFukxH2CBT5JE7ZnKW2CEK/XfMpny1Tm+0+d19U/Dtt4Dvfxdjpkg4vk02iKsHE 2loJXk8250gFhRjXW1E/ILZrlfJ2kpKU6FhmK/zE6kWk2t71zR6/XhfzFdo+bft/ OKM4XWdQkXebfhmSjAZZf+ufvn2pJwHu32y+JlhB2Ov/R2IkX3MO0PVhTQUeB17P AV6CgO1+sOXK7Gc9U0jxIhDwNEXnTk/TjUr9rqouwnDHYTSmRUXTclye20V/WOZQ t00i2KEcdPupppXpvBYCVHRfwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPJU3SOf atEHAB/F367eV3IB1DBHMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAovGbICJ2p1eZJNz/bN8uSHZolHdMBwYyMUhL+5aLk56b+KF5/AjHXDq/IjEJ Uht8HWalkMsXCMx2CJFiRfItbImuHK7CzqN254sTnijZIXDMu7acuohTjtf+7IB8 CLgBKQgee+NHdoWrPpUvOSg7MddPfjPIzTuP5VoxYpwvhiA7+Mz0IEGyfQ6dcfNP NSGZFU5F6HcjRPiscTDrPDqlzzEmQeG6AuphywRVl6iXU3oJVvWalVO9f0sQui5x CksmwrQEnZT7wy8IhGRhskOKGIKEEFS7KXZ88Im8PSKQMI+k2W0Y3jiUKEneJAHy ko8zJbm7Kk/HdC0bDhsbRHRg7A== -----END CERTIFICATE-----Generated at Sat Jun 13 17:19:41 2026 by rpki-client