$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: aF3oXgC6et/OiGFMFmZQaRhnJkadcLFYC2qO2pNspxU= Subject key identifier: E3:28:51:13:4A:62:6E:4D:50:4C:D6:12:C5:AF:F7:8A:04:94:4A:73 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0CD8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0CCF Signing time: Mon 22 Jun 2026 17:48:22 +0000 Manifest this update: Mon 22 Jun 2026 17:48:21 +0000 Manifest next update: Mon 29 Jun 2026 17:48:21 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: /D39CNvvZ35UlkHIecL8anlCJUYB5UoB1xXs7kAcmxw=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 17:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Jun 22 17:48:21 2026 GMT Not After : Jun 29 17:48:21 2026 GMT Subject: CN=6a397566-dbef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:33:df:cd:c4:aa:6b:43:34:f3:eb:c1:d5:bc: e0:0f:ee:87:98:f0:23:6c:11:cf:b6:8e:fe:d2:14: af:2f:e4:e5:fa:ba:3c:ed:17:a8:04:58:c7:a5:0d: 63:23:ec:96:b8:ff:99:47:72:5f:eb:cf:82:b1:8c: f5:72:91:2f:e9:a5:85:b2:87:23:c0:b2:13:0b:51: f7:04:d7:57:5e:45:61:65:92:55:3b:af:06:42:d7: 75:a3:ac:40:37:28:92:62:b6:b6:b9:bc:e0:13:57: f6:9a:89:2f:99:64:8f:aa:3c:a9:d2:a3:c1:0e:e8: 47:80:59:6b:fb:70:65:75:0d:cc:52:d3:fd:e4:64: ee:32:ac:b3:de:67:68:86:7b:01:64:5e:a7:05:e7: 83:f0:5d:d3:41:59:ea:6f:d8:8c:e2:e6:8c:62:c1: 30:0f:a5:cd:b0:3b:fe:d9:bc:73:3c:b9:99:76:3a: d3:18:9a:0c:9a:33:22:7a:9e:b0:99:a5:93:67:23: c6:30:1d:f7:59:f7:b6:b8:d9:5e:55:ab:dd:8e:73: a6:eb:0b:a9:d6:2e:89:76:32:a1:b5:f7:54:b0:c4: e3:44:01:df:66:0f:4d:50:bd:c2:20:35:6f:6e:93: da:c8:cc:be:1c:f5:f7:a0:66:0d:7f:27:7d:ab:20: 26:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:28:51:13:4A:62:6E:4D:50:4C:D6:12:C5:AF:F7:8A:04:94:4A:73 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:bf:7c:c4:26:ae:db:d9:a1:11:a8:fb:12:34:b3:7f:24:01: 60:65:91:f9:b7:ed:83:bc:5b:4a:3c:f2:d8:0b:7f:93:18:cc: 61:7a:5a:14:98:bb:0b:ee:c8:67:17:5e:f1:58:e1:35:af:ca: 22:41:4f:43:55:4e:19:66:74:f1:29:1a:cd:b8:60:04:98:72: 64:4c:c8:79:14:2d:fa:ae:36:e2:c3:92:23:86:88:c1:74:fe: d9:58:46:a2:12:de:38:4c:c5:51:71:ab:54:64:8b:95:39:e1: 4f:1f:e1:a9:61:c2:e7:f0:5b:56:5e:bf:df:82:58:81:fb:2b: 3a:77:b2:a9:57:9b:1a:7a:a4:11:f1:74:e1:bc:6b:be:dd:26: 15:a7:08:a3:2d:eb:e3:82:66:79:10:00:78:8b:b8:db:a5:06: 8d:7f:d8:97:3f:96:40:fd:9a:bb:6c:86:ff:e9:0e:df:e1:bd: f0:01:95:88:0f:58:ae:f0:d7:22:b3:10:d5:2d:92:11:4b:d2: b3:93:d8:32:76:ba:13:15:1b:99:91:58:19:a4:78:2a:a8:11: 48:13:3e:a5:6e:63:75:07:0c:d6:a5:e6:cf:79:b7:a6:db:38: c3:e1:25:70:3c:0a:ce:91:16:b1:e2:c5:7e:29:cf:c4:ad:74: 58:bd:12:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwNjIyMTc0ODIxWhcNMjYwNjI5MTc0ODIxWjAYMRYwFAYD VQQDEw02YTM5NzU2Ni1kYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TPfzcSqa0M08+vB1bzgD+6HmPAjbBHPto7+0hSvL+Tl+ro87ReoBFjHpQ1j I+yWuP+ZR3Jf68+CsYz1cpEv6aWFsocjwLITC1H3BNdXXkVhZZJVO68GQtd1o6xA NyiSYra2ubzgE1f2mokvmWSPqjyp0qPBDuhHgFlr+3BldQ3MUtP95GTuMqyz3mdo hnsBZF6nBeeD8F3TQVnqb9iM4uaMYsEwD6XNsDv+2bxzPLmZdjrTGJoMmjMiep6w maWTZyPGMB33Wfe2uNleVavdjnOm6wup1i6JdjKhtfdUsMTjRAHfZg9NUL3CIDVv bpPayMy+HPX3oGYNfyd9qyAm8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOMoURNK Ym5NUEzWEsWv94oElEpzMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPr98xCau29mhEaj7EjSzfyQBYGWR+bftg7xbSjzy2At/kxjMYXpaFJi7C+7I Zxde8VjhNa/KIkFPQ1VOGWZ08SkazbhgBJhyZEzIeRQt+q424sOSI4aIwXT+2VhG ohLeOEzFUXGrVGSLlTnhTx/hqWHC5/BbVl6/34JYgfsrOneyqVebGnqkEfF04bxr vt0mFacIoy3r44JmeRAAeIu426UGjX/Ylz+WQP2au2yG/+kO3+G98AGViA9YrvDX IrMQ1S2SEUvSs5PYMna6ExUbmZFYGaR4KqgRSBM+pW5jdQcM1qXmz3m3pts4w+El cDwKzpEWseLFfinPxK10WL0Siw== -----END CERTIFICATE-----Generated at Wed Jun 24 15:42:10 2026 by rpki-client