$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: tKZ+M3+W3Lknw67N8KxtpmUkWJlKD6vWjPPiVU1SKE8= Subject key identifier: 93:5A:E0:C8:FD:8F:8E:98:B1:3D:CD:8F:09:8F:02:63:D3:9B:B1:F4 Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 15DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 15CC Signing time: Mon 22 Jun 2026 16:43:03 +0000 Manifest this update: Mon 22 Jun 2026 16:43:03 +0000 Manifest next update: Mon 29 Jun 2026 16:43:03 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: SLZzbAuCs07hxD0yXZbF82aatrAM58wx0Q5u1feeUCU=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: DJ4I97O5v0aU8HleXouiaPdcBM6EY3fv5eqakvOyiz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 16:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5594 (0x15da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Jun 22 16:43:03 2026 GMT Not After : Jun 29 16:43:03 2026 GMT Subject: CN=6a396617-2328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:40:43:f1:f1:4c:77:c7:6f:0d:27:ab:4a: 49:aa:50:55:26:7c:57:00:4b:ad:f9:ea:b3:4b:f9: 1d:1d:fc:02:87:b3:0e:10:29:a0:1b:78:8e:94:b8: 37:7f:34:fb:4c:60:55:70:4e:78:a0:57:ce:2c:e1: 84:85:71:9a:4a:36:73:5b:95:6e:ce:76:4c:9a:e4: 8a:19:00:75:70:68:f2:92:69:47:25:ba:34:97:94: 21:5c:ae:d6:a3:c3:61:40:80:0b:34:79:c0:d2:eb: 15:4f:ec:17:a6:88:32:9e:f7:43:44:aa:87:be:49: 00:09:a2:d4:f1:63:10:89:eb:b5:ca:e1:c0:eb:98: a1:50:8b:22:0e:ea:a5:7b:7d:87:1d:6b:2a:9c:d4: 69:ad:57:40:d7:ae:6d:f9:b8:e9:95:73:d5:e4:f9: 7c:14:43:1c:d0:04:0a:3f:9c:50:80:7e:bb:5f:b2: a6:a1:67:f8:43:f6:b0:69:f7:14:0e:06:af:1f:a6: 94:ee:54:ba:f3:54:bb:17:7b:d3:9f:e6:51:23:ce: 2b:55:f2:77:29:d0:f1:ce:cb:ab:b6:2e:66:13:c9: 44:c1:cd:4a:d5:c7:05:fb:78:c3:c0:0a:88:fb:2f: 55:ad:87:0b:71:af:c7:65:02:5c:a7:d0:86:4d:e5: 2a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5A:E0:C8:FD:8F:8E:98:B1:3D:CD:8F:09:8F:02:63:D3:9B:B1:F4 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:42:68:1f:2a:4b:d0:52:45:87:0b:23:d2:85:bd:56:b9:e2: 84:90:fa:ff:5f:e1:2e:b5:3b:de:19:e5:d5:5a:09:f1:61:98: a7:10:8a:47:19:19:6c:cb:15:dd:a0:42:3d:0f:09:2a:7a:11: 95:85:22:28:f8:30:b9:57:c3:bc:2b:c2:e1:ed:1a:8e:b5:9a: 2d:fe:ce:53:22:e5:14:9e:77:58:a9:c1:e8:69:01:3f:38:a2: c2:3b:c6:62:5f:e7:9c:ec:25:de:d7:80:24:df:9c:a1:4e:76: 56:c9:42:4b:8a:0b:51:a6:81:d8:9b:6e:e4:1b:e3:b2:0f:91: b6:81:b6:0f:6a:2e:a0:23:c9:53:c2:3f:2a:75:24:05:d3:6a: 87:bf:89:b6:e5:65:23:a7:6c:09:9d:12:2a:12:c2:87:e0:c8: b8:4d:39:10:b4:94:22:d1:68:68:51:28:dd:b8:f1:a0:fd:4f: 21:76:7f:cc:4e:21:2a:ba:c3:1f:1e:38:56:d9:db:22:82:6f: fd:a3:98:9a:05:1e:eb:85:d6:9c:bc:c9:a3:86:8c:c1:87:ae: b2:df:3c:ef:7a:bd:49:99:2a:8d:21:42:5d:eb:ad:8b:51:5e: fd:82:00:fa:93:28:eb:4f:15:8b:54:c9:37:05:b7:45:40:70: 47:5a:33:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjYwNjIyMTY0MzAzWhcNMjYwNjI5MTY0MzAzWjAYMRYwFAYD VQQDEw02YTM5NjYxNy0yMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu55AQ/HxTHfHbw0nq0pJqlBVJnxXAEut+eqzS/kdHfwCh7MOECmgG3iOlLg3 fzT7TGBVcE54oFfOLOGEhXGaSjZzW5VuznZMmuSKGQB1cGjykmlHJbo0l5QhXK7W o8NhQIALNHnA0usVT+wXpogynvdDRKqHvkkACaLU8WMQieu1yuHA65ihUIsiDuql e32HHWsqnNRprVdA165t+bjplXPV5Pl8FEMc0AQKP5xQgH67X7KmoWf4Q/awafcU DgavH6aU7lS681S7F3vTn+ZRI84rVfJ3KdDxzsurti5mE8lEwc1K1ccF+3jDwAqI +y9VrYcLca/HZQJcp9CGTeUqPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJNa4Mj9 j46YsT3NjwmPAmPTm7H0MB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn0JoHypL0FJFhwsj0oW9VrnihJD6/1/hLrU73hnl1VoJ8WGYpxCKRxkZbMsV 3aBCPQ8JKnoRlYUiKPgwuVfDvCvC4e0ajrWaLf7OUyLlFJ53WKnB6GkBPziiwjvG Yl/nnOwl3teAJN+coU52VslCS4oLUaaB2Jtu5Bvjsg+RtoG2D2ouoCPJU8I/KnUk BdNqh7+JtuVlI6dsCZ0SKhLCh+DIuE05ELSUItFoaFEo3bjxoP1PIXZ/zE4hKrrD Hx44VtnbIoJv/aOYmgUe64XWnLzJo4aMwYeust8873q9SZkqjSFCXeuti1Fe/YIA +pMo608Vi1TJNwW3RUBwR1ozyA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:26:25 2026 by rpki-client