$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: ixZSLRUpmQQe1G5HbCRogTRbto1Nh84Oud3QXJAHKEQ= Subject key identifier: 75:9C:22:66:5B:97:E1:D5:75:37:57:09:EE:32:3F:1A:C1:CF:C4:A1 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0EFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0EC9 Signing time: Wed 10 Jun 2026 17:41:28 +0000 Manifest this update: Wed 10 Jun 2026 17:41:28 +0000 Manifest next update: Wed 17 Jun 2026 17:41:28 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: 8XKBtprZw/elAOL6RdnDh4R7e/FMqEFuAeroQ7Pcjk4=) 2: 670DF186232111EB9896B783C4F9AE02.roa (hash: JDnnr+gXElLZfFNqxroiEtHe91q0ZicgMHi1XY427Ss=) 3: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: xo+tt5lov3udnd3XAOiK90QcwkAcxMUW1iuUC+4M+z8=) 4: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: IJy6vq3u18sfK/PaqQ4HkbGHvtQ0+WpPPGjw18M6VWY=) 5: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: E+4UeHlGnBHL9IRmWm+TexcyHwom9b/OOAx0STjQIo0=) 6: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: bKvSPuftAoTubmq1z1G2lBaSXWyaRfT8vN+YYMv11yI=) 7: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: jPTrigcWq4coxSH4UL7oP5hGP5jZz/yTxLEnnmOBFlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 17:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3837 (0xefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Jun 10 17:41:28 2026 GMT Not After : Jun 17 17:41:28 2026 GMT Subject: CN=6a29a1c8-b121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:38:80:91:c6:a4:0e:5c:a4:87:51:f4:ee:42: e5:67:36:a3:61:3a:80:d3:7d:03:27:1c:cd:9b:5e: 81:e3:26:33:af:22:ac:b1:c0:ab:35:c2:1a:23:57: 76:40:df:13:de:f4:0d:eb:dc:4b:7b:9c:81:e1:bc: 6c:06:6c:03:fc:03:63:41:23:69:b3:cc:e4:90:d3: 2e:b3:9c:78:a9:a1:75:e9:b6:9e:91:7d:f9:99:b5: c4:30:6b:e7:fd:87:8e:b8:aa:ab:52:6e:ea:9b:dc: aa:5d:54:cb:40:4e:99:4a:ad:41:e5:2c:30:e2:13: 4a:e3:1d:01:82:8d:a8:18:21:1c:03:19:5e:f3:ee: e4:0e:84:0b:8f:66:95:ec:ad:fe:ad:28:26:73:c2: 2a:97:62:84:f4:ac:c7:7c:7f:58:9d:0b:12:ae:c5: c1:d5:b0:03:eb:b5:b5:c2:88:1e:0e:9e:c8:1c:31: 4f:00:7a:c6:33:a1:31:c8:fc:71:ee:4a:31:dc:13: df:5b:c0:f5:d5:76:ab:90:ba:28:91:06:a5:c8:7c: e9:79:f1:20:3e:aa:dc:fb:50:75:dd:f7:4f:a1:00: 42:c3:0e:35:81:f8:55:31:d7:56:f1:82:b1:5c:3e: 59:96:45:ed:04:98:b4:08:66:6e:ed:4b:ef:1d:9a: a4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9C:22:66:5B:97:E1:D5:75:37:57:09:EE:32:3F:1A:C1:CF:C4:A1 X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e3:b8:be:1e:e8:81:49:77:24:1b:4a:d7:ab:c1:8d:9f:e5: ab:29:5a:f3:b2:8a:09:e3:0b:55:a5:03:9c:68:7d:81:90:34: 47:8b:9d:49:c1:70:f5:02:4a:a0:d4:7e:e6:6e:cd:97:44:95: 07:e4:ca:d4:4b:07:b5:1a:b6:13:3e:18:e2:51:67:37:2a:34: 61:9d:78:93:bd:66:57:07:8e:11:b5:be:4a:3e:d4:c9:f3:cb: a6:61:81:b8:7a:28:2f:9c:e2:97:9b:69:76:a5:bb:51:e9:8b: f2:d5:c5:69:f6:b0:37:f0:a1:09:2f:2c:d2:0d:e9:97:b6:a5: eb:48:d1:28:23:11:c6:80:0e:77:a7:63:65:37:19:3c:98:f0: 6a:3b:c3:d2:e7:24:13:f0:68:a9:6e:bc:e9:b3:23:92:72:e1: 5b:d8:1e:b2:0f:f6:be:e7:b9:83:e6:e7:39:84:70:65:b5:b5: 46:27:6a:66:72:17:04:97:b6:16:08:87:ee:4a:97:ff:c4:b2: cb:91:57:92:80:25:20:b4:38:64:60:40:a1:89:5c:6e:62:54: a4:de:88:32:8d:68:9e:df:3f:89:1d:8b:68:84:fc:8f:48:a9: d0:d0:0b:20:3b:f2:f5:01:cc:19:06:18:85:57:a2:e7:35:51: 51:66:79:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjYwNjEwMTc0MTI4WhcNMjYwNjE3MTc0MTI4WjAYMRYwFAYD VQQDEw02YTI5YTFjOC1iMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ziAkcakDlykh1H07kLlZzajYTqA030DJxzNm16B4yYzryKsscCrNcIaI1d2 QN8T3vQN69xLe5yB4bxsBmwD/ANjQSNps8zkkNMus5x4qaF16baekX35mbXEMGvn /YeOuKqrUm7qm9yqXVTLQE6ZSq1B5Sww4hNK4x0Bgo2oGCEcAxle8+7kDoQLj2aV 7K3+rSgmc8Iql2KE9KzHfH9YnQsSrsXB1bAD67W1wogeDp7IHDFPAHrGM6ExyPxx 7kox3BPfW8D11XarkLookQalyHzpefEgPqrc+1B13fdPoQBCww41gfhVMddW8YKx XD5ZlkXtBJi0CGZu7UvvHZqkSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHWcImZb l+HVdTdXCe4yPxrBz8ShMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh+O4vh7ogUl3JBtK16vBjZ/lqyla87KKCeMLVaUDnGh9gZA0R4udScFw9QJK oNR+5m7Nl0SVB+TK1EsHtRq2Ez4Y4lFnNyo0YZ14k71mVweOEbW+Sj7UyfPLpmGB uHooL5zil5tpdqW7UemL8tXFafawN/ChCS8s0g3pl7al60jRKCMRxoAOd6djZTcZ PJjwajvD0uckE/BoqW686bMjknLhW9gesg/2vue5g+bnOYRwZbW1RidqZnIXBJe2 FgiH7kqX/8Syy5FXkoAlILQ4ZGBAoYlcbmJUpN6IMo1ont8/iR2LaIT8j0ip0NAL IDvy9QHMGQYYhVei5zVRUWZ5Ig== -----END CERTIFICATE-----Generated at Thu Jun 11 22:42:27 2026 by rpki-client