$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: z7tLZDmlo5zhoZpwcHJO2Sd3pOicx6DTPQOBLlDN09s= Subject key identifier: 0D:A7:E5:27:EB:82:3D:F1:E0:64:C0:F5:EC:C4:E0:6F:02:BE:FC:1D Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0AE2 Signing time: Thu 04 Jun 2026 19:38:54 +0000 Manifest this update: Thu 04 Jun 2026 19:38:54 +0000 Manifest next update: Thu 11 Jun 2026 19:38:54 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: uZTc9rCFFKcUZABADANGhsqhVVS27x7endw0Bj+Yd8k=) 2: 553170245AC511EBA052F663C4F9AE02.roa (hash: 7erTlCvInc3AVRLw7wvtHf/eZ1jEoIGiOeY13F8Zqv8=) 3: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: M8kgzZ/qskhWT6RqbwLXgYKBgdTgBhgTCm6VDEfCRyI=) 4: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: xyMhDnjS1J7j5KhCCxE7FkpfD0zlq+Ub21i1KmDM4ok=) 5: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: zt8ovKN7+n8nwUz7dlHlvLBjh4KwXCc4mYOMPsqbe38=) 6: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: jZ6Iauv/dN/4P0hBUVndivCUUgxGO8TMbCYwzqgk7iI=) 7: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: If1p2T4ry814caqPtmeuOiTH0yVCnehjVYiIPxJ8aBs=) 8: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: lxrRVOjIONZ0+sk1QUPdtSqTSIWnhV1Sgp2inbSvE0o=) 9: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: FMzg28ZdQ4F0sdhtK2wuRkllmrqXUEFKB65mg1sG8L4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jun 4 19:38:54 2026 GMT Not After : Jun 11 19:38:54 2026 GMT Subject: CN=6a21d44e-5dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:08:0d:67:15:b3:79:cf:0b:74:48:b7:0a:e8: 92:86:ab:16:db:a4:3a:81:6e:57:e5:08:f6:05:a7: 8c:86:ae:79:63:ce:71:45:94:d9:74:a9:99:89:4d: 44:12:35:c7:82:8a:9f:e0:92:d1:5c:44:9c:c5:c8: af:c5:ad:3c:a6:5f:e7:6a:63:a8:d2:33:7b:9e:c4: c1:8c:d0:5f:ab:31:b9:9d:98:1a:6e:ba:c9:e0:53: 7e:74:6c:fa:e5:26:c6:12:1a:f4:ce:ed:78:82:c8: 0f:c5:3d:b1:b2:b8:5b:77:85:32:e2:06:85:cb:ee: e5:9d:d3:84:05:aa:f7:e6:08:f2:05:f0:28:7a:10: 22:57:2e:90:cb:de:23:64:82:ab:c7:ae:08:92:c8: 92:40:60:dd:34:31:e6:6d:f8:36:8f:0b:68:69:22: f5:75:e8:e9:61:b8:e7:41:0d:72:75:6b:07:69:ae: 40:7f:37:27:6f:87:c6:bb:1f:24:55:c2:41:2e:97: b7:7b:82:20:19:04:4f:81:b9:85:00:86:92:a3:2d: de:4f:a8:1b:a0:6f:ba:46:3b:c5:d4:67:9d:e5:e0: ce:7d:06:8b:28:40:fa:6d:11:2f:ef:8a:1b:17:7e: c4:5b:f2:bd:0a:80:ae:92:0c:af:ec:a1:f4:46:f4: 6d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A7:E5:27:EB:82:3D:F1:E0:64:C0:F5:EC:C4:E0:6F:02:BE:FC:1D X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:08:e6:94:06:44:21:be:13:b4:ec:a7:6b:20:04:94:94:b6: c1:4b:40:6e:68:a9:78:91:da:06:9b:fb:16:e6:01:9f:4b:de: b8:8e:46:ad:c0:6a:ad:6d:84:76:4c:ea:82:66:3f:86:ce:27: 59:ed:12:7a:26:91:78:60:87:cb:f3:d8:a6:5d:57:58:e9:c8: d7:39:4b:2a:2d:e9:78:29:f0:28:e3:c4:89:93:8d:e0:4a:7d: a1:39:07:20:4c:8b:b6:dc:e0:54:9e:13:d0:93:ff:50:b6:4c: 14:7e:be:8f:a5:29:3a:b1:66:9f:10:f5:5c:8d:35:af:7e:f6: fe:db:d1:4b:38:65:be:f0:2d:7e:26:66:01:0a:26:a4:7f:2c: 9e:41:e4:70:d3:a6:5c:e7:38:f3:ad:f5:4e:5c:fe:c7:35:c5: 91:3a:9e:bd:a2:a2:f9:f2:91:ed:69:74:c7:9d:8d:87:08:e8: ab:c2:00:c7:51:1a:8b:e9:3b:fb:61:99:9b:f0:6b:c9:bb:7c: 91:4b:86:b2:55:40:aa:1d:e9:0f:c7:6b:db:f7:ee:64:4f:e1: f5:b1:5a:83:b5:78:0e:06:1d:61:ca:cd:9e:2d:74:39:09:31: b8:8e:52:08:b1:fd:9b:1c:04:3a:7f:61:8f:6d:fd:31:a7:04: 74:26:d7:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjYwNjA0MTkzODU0WhcNMjYwNjExMTkzODU0WjAYMRYwFAYD VQQDEw02YTIxZDQ0ZS01ZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QgNZxWzec8LdEi3CuiShqsW26Q6gW5X5Qj2BaeMhq55Y85xRZTZdKmZiU1E EjXHgoqf4JLRXEScxcivxa08pl/namOo0jN7nsTBjNBfqzG5nZgabrrJ4FN+dGz6 5SbGEhr0zu14gsgPxT2xsrhbd4Uy4gaFy+7lndOEBar35gjyBfAoehAiVy6Qy94j ZIKrx64IksiSQGDdNDHmbfg2jwtoaSL1dejpYbjnQQ1ydWsHaa5Afzcnb4fGux8k VcJBLpe3e4IgGQRPgbmFAIaSoy3eT6gboG+6RjvF1Ged5eDOfQaLKED6bREv74ob F37EW/K9CoCukgyv7KH0RvRteQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA2n5Sfr gj3x4GTA9ezE4G8CvvwdMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArQjmlAZEIb4TtOynayAElJS2wUtAbmipeJHaBpv7FuYBn0veuI5GrcBqrW2E dkzqgmY/hs4nWe0SeiaReGCHy/PYpl1XWOnI1zlLKi3peCnwKOPEiZON4Ep9oTkH IEyLttzgVJ4T0JP/ULZMFH6+j6UpOrFmnxD1XI01r372/tvRSzhlvvAtfiZmAQom pH8snkHkcNOmXOc48631Tlz+xzXFkTqevaKi+fKR7Wl0x52Nhwjoq8IAx1Eai+k7 +2GZm/Brybt8kUuGslVAqh3pD8dr2/fuZE/h9bFag7V4DgYdYcrNni10OQkxuI5S CLH9mxwEOn9hj239MacEdCbXvw== -----END CERTIFICATE-----Generated at Sat Jun 6 13:23:11 2026 by rpki-client