$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: grqHZQjI1pNh378QLPDmcNMRdB5XBVdsxI+kCcHvoAo= Subject key identifier: 14:82:EF:21:49:52:C6:A9:37:6A:04:9B:0F:C1:F9:0D:3D:84:E3:E0 Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 04C0 Signing time: Mon 22 Jun 2026 23:55:07 +0000 Manifest this update: Mon 22 Jun 2026 23:55:06 +0000 Manifest next update: Mon 29 Jun 2026 23:55:06 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: qRZYOPSauh1NuBtN44L621lO/BJMlcDusxdVM1nJD2c=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: 0VJSSuNZNqd6Mi6Fcfyrw/oW75/x9p5H40HqIw6BOBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 23:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351, serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: Jun 22 23:55:06 2026 GMT Not After : Jun 29 23:55:06 2026 GMT Subject: CN=6a39cb5a-0864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:58:6e:fe:84:e9:45:71:a6:88:17:0f:bf: 7b:81:c3:c1:f6:29:12:01:5e:16:c2:5d:41:b2:14: 0e:7c:28:4d:53:ad:83:6a:8d:06:af:3c:e9:f0:69: 82:ae:f7:da:73:ad:d4:f4:45:de:12:ff:97:34:a6: 02:7e:b7:86:b4:48:79:29:3a:81:ee:4f:75:c9:ed: ba:bb:cc:27:8e:4f:e8:34:79:10:de:63:ea:dc:d5: 6f:64:3d:5b:42:fd:b5:ad:13:43:e5:4d:cc:b6:32: f5:12:1c:5e:e9:ed:b6:06:b4:7d:78:24:2f:db:04: 1e:d8:a6:e7:6c:c5:cd:00:de:a4:d2:f8:0b:ff:83: a0:27:df:83:84:f6:1e:24:e8:64:c2:5a:2c:c2:d6: a1:e7:d4:d9:b1:28:9c:4a:b7:7e:df:d4:3c:b4:53: b4:19:54:de:e7:38:a8:0e:0d:1f:db:14:8c:33:e4: 1c:24:46:e4:a6:57:a4:14:46:49:63:7d:8a:e4:b5: ab:28:ce:c9:3a:c1:68:f2:48:c2:72:24:01:da:cf: ca:ac:d2:1d:87:04:c4:06:83:73:53:1f:a2:9d:28: e0:57:96:d7:cd:05:b9:16:62:c8:41:12:30:2a:d2: 8d:1e:b1:47:20:92:90:5d:76:60:34:9a:99:e3:b5: 43:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:82:EF:21:49:52:C6:A9:37:6A:04:9B:0F:C1:F9:0D:3D:84:E3:E0 X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:dc:53:9b:c3:f1:bf:fc:97:2c:20:ef:5c:ef:74:57:37:fb: 01:e9:5d:92:59:64:7a:1c:2e:40:21:c3:03:d6:33:38:9d:eb: da:a2:e6:e7:bf:96:13:fc:e4:bc:91:4e:a8:96:37:a9:d5:f1: 2a:73:7b:61:cb:f8:c4:46:d3:14:a4:5f:c4:27:49:57:00:59: 39:65:8c:53:ba:d2:de:be:74:83:89:ac:2d:07:08:b4:37:e4: 7c:3c:0b:c0:d2:21:46:66:59:01:93:f3:90:3d:cd:6e:b9:50: 1a:cc:57:87:41:58:de:43:e3:23:07:44:db:eb:c8:ed:40:96: bf:5f:f2:36:d7:b8:ca:37:2e:18:97:1b:73:ff:9b:2b:ce:c0: ef:7f:9b:51:79:59:6e:34:6f:8c:00:09:51:9a:e6:00:f4:1b: dd:c0:86:d3:e4:c4:62:ef:0f:1f:0e:6e:e1:b3:19:90:15:93: 1a:4d:d8:e3:5e:a0:9e:1b:d1:e9:c4:06:3a:3e:56:24:90:2d: 5a:20:7a:20:ef:1f:e5:8b:c6:84:b4:7f:b8:57:fd:da:68:c9: 41:ff:8c:43:dc:03:c3:2e:97:81:1c:89:05:fc:b9:52:23:16: 66:ea:a5:87:5b:2b:68:3e:7d:ee:7a:ce:46:63:4e:63:07:6d: 53:6b:b7:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjYwNjIyMjM1NTA2WhcNMjYwNjI5MjM1NTA2WjAYMRYwFAYD VQQDEw02YTM5Y2I1YS0wODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb1Ybv6E6UVxpogXD797gcPB9ikSAV4Wwl1BshQOfChNU62Dao0Grzzp8GmC rvfac63U9EXeEv+XNKYCfreGtEh5KTqB7k91ye26u8wnjk/oNHkQ3mPq3NVvZD1b Qv21rRND5U3MtjL1Ehxe6e22BrR9eCQv2wQe2KbnbMXNAN6k0vgL/4OgJ9+DhPYe JOhkwloswtah59TZsSicSrd+39Q8tFO0GVTe5zioDg0f2xSMM+QcJEbkplekFEZJ Y32K5LWrKM7JOsFo8kjCciQB2s/KrNIdhwTEBoNzUx+inSjgV5bXzQW5FmLIQRIw KtKNHrFHIJKQXXZgNJqZ47VDRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBSC7yFJ UsapN2oEmw/B+Q09hOPgMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF9xTm8Pxv/yXLCDvXO90Vzf7AeldkllkehwuQCHDA9YzOJ3r2qLm57+WE/zk vJFOqJY3qdXxKnN7Ycv4xEbTFKRfxCdJVwBZOWWMU7rS3r50g4msLQcItDfkfDwL wNIhRmZZAZPzkD3NbrlQGsxXh0FY3kPjIwdE2+vI7UCWv1/yNte4yjcuGJcbc/+b K87A73+bUXlZbjRvjAAJUZrmAPQb3cCG0+TEYu8PHw5u4bMZkBWTGk3Y416gnhvR 6cQGOj5WJJAtWiB6IO8f5YvGhLR/uFf92mjJQf+MQ9wDwy6XgRyJBfy5UiMWZuql h1sraD597nrORmNOYwdtU2u3Ag== -----END CERTIFICATE-----Generated at Wed Jun 24 11:26:12 2026 by rpki-client