$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: oA6sNq6SENVWKSd1e7MuU2hOpECd2joJ7TvsoS9wByQ= Subject key identifier: AD:49:08:C5:F0:FE:D5:0A:16:5C:7C:E2:B5:6B:1A:52:C8:54:75:CD Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 023B Signing time: Tue 02 Jun 2026 18:49:50 +0000 Manifest this update: Tue 02 Jun 2026 18:49:49 +0000 Manifest next update: Tue 09 Jun 2026 18:49:49 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: 8AZMxRwR02GOocxVabt3Ky+QIXIKJVlKUv9umo3Xke8=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Jun 2 18:49:49 2026 GMT Not After : Jun 9 18:49:49 2026 GMT Subject: CN=6a1f25ce-ff4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5a:d3:f2:dc:34:e6:47:3e:8b:0a:4f:a4:3b: 12:49:d6:a1:f5:94:8d:18:dc:60:96:bf:ec:34:c2: eb:66:52:70:66:af:bc:bd:84:a3:e1:55:47:d4:c2: f0:b9:62:f6:50:92:60:bc:44:fc:93:b3:ad:3d:c9: 65:21:f4:69:a7:b4:52:ab:13:04:74:57:4a:ea:42: 68:ae:f0:a5:60:af:e8:be:c8:9c:c3:39:9c:43:2c: 8c:83:44:8f:dc:d6:96:03:ba:32:6b:78:34:31:85: 34:d0:d4:81:30:2f:f9:36:cf:67:c4:2e:4a:07:d7: fb:48:06:df:72:c2:81:67:d4:29:58:9c:6b:be:a9: 9b:17:72:da:6c:3d:2d:85:03:6d:19:2b:8b:e2:39: fe:5e:5c:2a:ee:21:ec:2a:f6:d9:84:a4:6a:82:77: 14:15:56:10:61:4f:49:2a:1f:c3:86:17:9c:9d:f7: 2d:17:ef:ee:55:7b:6e:fb:2c:e7:f1:23:9c:f5:a9: d6:8c:4d:bb:0d:04:2e:c0:0c:b5:8c:9a:10:d4:9a: 45:d8:fc:61:f4:4c:02:00:24:c3:d2:e7:92:aa:27: fd:32:72:d4:73:cd:84:9d:25:1e:b4:32:42:40:97: 26:2e:e8:27:33:f6:37:e0:c2:cd:af:90:1b:62:4a: 8f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:49:08:C5:F0:FE:D5:0A:16:5C:7C:E2:B5:6B:1A:52:C8:54:75:CD X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e7:61:45:a5:fe:e8:f4:2b:6e:50:0d:fd:3b:40:5a:83:c9: c9:87:33:a6:51:be:a6:55:aa:6e:d2:31:3d:76:38:72:70:76: b2:75:96:57:f4:3a:bb:20:e0:4c:ca:23:c1:7d:ae:6a:32:b2: 90:f0:b5:cb:fd:75:c0:12:48:34:19:b1:b7:bd:a8:19:45:b9: f3:12:71:c0:17:04:8f:4f:77:5f:dc:89:d8:3c:d5:0f:a4:f8: 9e:d2:c0:e9:bd:99:50:e7:06:c0:fb:fd:a9:44:ac:96:f4:37: bf:0a:35:7d:a5:22:f9:cd:a5:c5:7e:9a:41:35:11:06:9a:0d: e3:bb:79:7d:66:f4:28:6a:a8:50:07:d1:cc:d9:fa:eb:5b:23: 96:25:61:c2:27:61:f3:de:97:1b:58:c0:53:3f:ea:28:7e:7b: 1e:f6:bb:54:0e:84:f0:1b:4a:a6:b2:a7:ee:35:82:2f:f5:d1: 81:5d:04:ad:71:31:06:30:71:8e:ae:df:a2:08:ca:b9:25:42: 1e:2d:f8:82:0b:2e:52:78:ae:ab:3f:8b:33:a8:b4:d7:6e:9d: 5e:dc:52:54:82:96:19:1f:70:70:bc:db:57:12:87:df:80:68: 3b:fe:8d:53:7b:d5:07:4b:1d:eb:d2:fe:59:41:37:f6:77:97: fc:88:c3:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwNjAyMTg0OTQ5WhcNMjYwNjA5MTg0OTQ5WjAYMRYwFAYD VQQDEw02YTFmMjVjZS1mZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1rT8tw05kc+iwpPpDsSSdah9ZSNGNxglr/sNMLrZlJwZq+8vYSj4VVH1MLw uWL2UJJgvET8k7OtPcllIfRpp7RSqxMEdFdK6kJorvClYK/ovsicwzmcQyyMg0SP 3NaWA7oya3g0MYU00NSBMC/5Ns9nxC5KB9f7SAbfcsKBZ9QpWJxrvqmbF3LabD0t hQNtGSuL4jn+Xlwq7iHsKvbZhKRqgncUFVYQYU9JKh/DhhecnfctF+/uVXtu+yzn 8SOc9anWjE27DQQuwAy1jJoQ1JpF2Pxh9EwCACTD0ueSqif9MnLUc82EnSUetDJC QJcmLugnM/Y34MLNr5AbYkqPXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK1JCMXw /tUKFlx84rVrGlLIVHXNMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd+dhRaX+6PQrblAN/TtAWoPJyYczplG+plWqbtIxPXY4cnB2snWWV/Q6uyDg TMojwX2uajKykPC1y/11wBJINBmxt72oGUW58xJxwBcEj093X9yJ2DzVD6T4ntLA 6b2ZUOcGwPv9qUSslvQ3vwo1faUi+c2lxX6aQTURBpoN47t5fWb0KGqoUAfRzNn6 61sjliVhwidh896XG1jAUz/qKH57Hva7VA6E8BtKprKn7jWCL/XRgV0ErXExBjBx jq7fogjKuSVCHi34ggsuUniuqz+LM6i0126dXtxSVIKWGR9wcLzbVxKH34BoO/6N U3vVB0sd69L+WUE39neX/IjDbQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:41:20 2026 by rpki-client