$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: 9gmz/Pcjef0t2l9/pejm59t4GwnN6T1Um35Q+E8da7k= Subject key identifier: 27:79:F7:0C:DB:15:76:33:8E:5A:9E:90:8B:61:86:98:48:2C:F7:3E Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 011E Signing time: Mon 01 Jun 2026 06:36:59 +0000 Manifest this update: Mon 01 Jun 2026 06:36:58 +0000 Manifest next update: Mon 08 Jun 2026 06:36:58 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: ToGvACYveWYwwqqrh4UF6kOB7Zg6thcHi6AtFGJ9cXM=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: oDbq8aHQpmwpTVbKMN5yg6duwCoRhyPVojQ6jr19VtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Jun 1 06:36:58 2026 GMT Not After : Jun 8 06:36:58 2026 GMT Subject: CN=6a1d288b-c65f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:76:d5:31:77:95:5f:78:0b:7e:11:83:83:f9: d1:33:55:09:3b:39:da:4f:87:a0:e7:5d:38:7d:9b: bd:03:c7:e5:ea:e8:25:8b:a7:9d:c4:16:72:dd:ab: 96:17:5a:32:c4:3c:0b:80:75:de:b6:36:91:0e:f9: 49:da:30:f8:81:17:df:58:7f:80:99:fe:87:05:1c: 08:04:57:01:6d:47:70:45:cc:b3:eb:ae:02:aa:3b: 85:6a:54:de:98:0c:98:06:d3:e9:83:34:61:12:71: cc:f2:fb:78:89:2b:33:b6:7b:fb:21:b4:76:2b:bd: e4:be:b3:ea:b8:f4:58:6c:b2:81:d9:aa:fb:70:99: 33:77:f5:9d:af:09:23:07:56:28:5c:5b:41:ad:54: 53:3d:37:e4:a9:a8:ba:d7:8b:b6:41:0e:8a:50:c8: 79:3d:57:4c:ad:6e:32:11:2c:bf:e8:ca:1f:b9:5b: 59:90:33:9d:5a:18:50:87:eb:83:55:19:ca:bb:63: 0c:4b:18:d2:f3:ab:7e:56:3c:91:78:12:86:2d:c2: 3c:e6:a0:2e:24:a8:7c:51:3f:28:02:35:a7:c5:51: 8c:57:a6:13:b4:7a:9a:81:5c:23:04:f2:7e:80:ec: 99:ee:66:ee:88:05:21:f1:73:20:37:77:2d:a9:16: 3e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:79:F7:0C:DB:15:76:33:8E:5A:9E:90:8B:61:86:98:48:2C:F7:3E X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:d5:0c:e3:d4:8e:37:db:5b:7a:f4:3c:27:8d:10:0a:cb:3f: b5:18:a4:75:91:d1:da:d3:5c:a2:14:75:73:06:57:e9:b8:52: b4:a4:e8:22:9b:cf:87:f1:8c:a9:08:1b:8e:44:b0:56:97:f3: 1c:e3:84:c1:57:e9:58:de:4d:f0:d3:68:74:c2:83:2e:cc:df: ad:c1:d0:38:b0:f9:46:54:6a:41:38:ad:a9:60:8d:ff:01:b3: c2:89:19:9d:8c:14:d9:ac:e4:c9:34:dc:56:c9:ed:de:47:56: 7d:b8:7a:80:5c:7a:29:cb:26:bf:91:55:6e:d9:ee:57:94:6c: 59:18:84:ac:f5:31:5e:9c:2c:12:6b:f4:30:77:75:10:22:24: 52:50:60:4c:b3:1a:ea:3f:7f:f4:e4:dd:8c:43:9b:23:13:93: fe:5b:29:d0:df:aa:4d:47:81:5e:50:91:50:57:ed:c2:56:60: de:68:1e:89:f4:04:8d:be:71:e3:52:72:25:44:bf:80:52:c8: 37:c4:3a:27:ad:10:09:e7:c2:7e:68:91:b3:4f:36:b5:66:99: 97:a1:07:7e:60:b3:6a:67:10:9e:c6:ba:2e:18:02:15:a0:ad: 71:9d:55:c6:49:30:c8:f3:d9:6f:36:ca:1b:3a:d1:02:f1:68: a3:a1:8e:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjYwNjAxMDYzNjU4WhcNMjYwNjA4MDYzNjU4WjAYMRYwFAYD VQQDEw02YTFkMjg4Yi1jNjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nbVMXeVX3gLfhGDg/nRM1UJOznaT4eg5104fZu9A8fl6ugli6edxBZy3auW F1oyxDwLgHXetjaRDvlJ2jD4gRffWH+Amf6HBRwIBFcBbUdwRcyz664CqjuFalTe mAyYBtPpgzRhEnHM8vt4iSsztnv7IbR2K73kvrPquPRYbLKB2ar7cJkzd/Wdrwkj B1YoXFtBrVRTPTfkqai614u2QQ6KUMh5PVdMrW4yESy/6MofuVtZkDOdWhhQh+uD VRnKu2MMSxjS86t+VjyReBKGLcI85qAuJKh8UT8oAjWnxVGMV6YTtHqagVwjBPJ+ gOyZ7mbuiAUh8XMgN3ctqRY+OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCd59wzb FXYzjlqekIthhphILPc+MB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUNUM49SON9tbevQ8J40QCss/tRikdZHR2tNcohR1cwZX6bhStKToIpvPh/GM qQgbjkSwVpfzHOOEwVfpWN5N8NNodMKDLszfrcHQOLD5RlRqQTitqWCN/wGzwokZ nYwU2azkyTTcVsnt3kdWfbh6gFx6Kcsmv5FVbtnuV5RsWRiErPUxXpwsEmv0MHd1 ECIkUlBgTLMa6j9/9OTdjEObIxOT/lsp0N+qTUeBXlCRUFftwlZg3mgeifQEjb5x 41JyJUS/gFLIN8Q6J60QCefCfmiRs082tWaZl6EHfmCzamcQnsa6LhgCFaCtcZ1V xkkwyPPZbzbKGzrRAvFoo6GOOA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:33:53 2026 by rpki-client