$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: N8LED7Gm6QoajXJQH5dVdc52r2tMQKlW+eKMZCHkwdc= Subject key identifier: 01:2E:23:0D:66:5B:7A:F1:7C:D6:2D:98:A6:79:32:BA:CB:EA:B4:5D Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0570 Signing time: Mon 01 Jun 2026 00:00:09 +0000 Manifest this update: Mon 01 Jun 2026 00:00:08 +0000 Manifest next update: Mon 08 Jun 2026 00:00:08 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: 7z05R8FQa/Tox+T2ajLP184/5no2LBdJGDbR5JJUbS4=) 2: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: Z6zpJNeDiRoumvX5lCIDf2X6SZzpmpEYlhnAJ6yadjo=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xL18VcZ56ntQg06dxu8mPMsho0DT/fe8AiSvaUT/7NM=) 4: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: yeDD3azucqTXwa0Gdb8W5tD9O2qrp+zwpH6Y+zEBWbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Jun 1 00:00:08 2026 GMT Not After : Jun 8 00:00:08 2026 GMT Subject: CN=6a1ccb88-f8f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0d:ba:77:9a:fc:3e:29:23:17:40:30:eb:60: 52:9d:49:09:62:9d:39:9c:37:57:3e:62:1e:69:3c: 72:b3:92:4e:b6:aa:c5:f3:70:a7:1e:47:08:39:ca: 08:cb:e2:ef:44:7a:0c:ac:fb:29:c0:53:60:25:06: d6:09:81:2f:c0:e0:0f:96:bf:73:3b:7e:01:2d:e3: f7:79:58:26:a1:d7:8e:20:9d:83:30:16:f4:09:d9: 51:61:84:41:e0:71:ab:c3:3d:d9:68:42:2e:fb:c2: 0a:3f:d1:c2:f2:5a:48:2a:d2:60:15:12:f2:5b:e2: d1:31:54:85:db:3a:1d:81:68:93:07:e2:2f:32:94: 09:ad:be:cb:bc:e6:46:89:85:db:2b:82:45:0c:ec: 1f:b1:ab:30:40:4a:6c:d0:b9:a8:1f:b7:7b:88:b1: 69:50:1f:08:f5:31:9a:c1:19:1b:21:79:bd:d1:61: 45:6c:b1:88:b1:e9:6a:a1:f5:fd:9e:93:2f:f6:61: f2:d8:e4:95:b5:c8:47:c2:89:4d:f3:c4:d8:1c:04: 58:79:2a:2d:d5:7f:25:04:7d:dd:ab:c3:8b:f4:07: 2c:b0:06:44:1c:f4:6e:a0:69:b9:e8:68:15:79:91: 2a:c8:92:73:b6:6e:68:c8:c5:49:9e:c3:af:7e:0e: cd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2E:23:0D:66:5B:7A:F1:7C:D6:2D:98:A6:79:32:BA:CB:EA:B4:5D X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:10:9c:5a:4f:39:63:23:e4:45:ae:d6:34:9b:d1:53:18:17: 37:41:51:13:a2:59:52:61:b0:fa:61:53:16:bf:de:1f:fa:c3: f5:ff:24:c9:92:6c:90:bb:53:18:aa:50:3f:e6:0a:2b:fd:95: 1a:89:76:6c:73:46:29:b8:ad:16:f1:5d:e2:e0:0e:9f:d4:57: d4:0e:5f:ce:76:8e:31:ed:d8:bf:a4:43:fe:da:5c:0e:ba:ab: 90:94:e0:ac:34:1e:e0:b8:5b:74:38:29:c1:11:56:51:f3:ad: 84:c9:3c:fb:cd:61:3c:a1:12:7f:2c:3f:fb:15:bf:75:2e:6a: 7f:2f:b9:1d:e8:dc:b0:5e:f9:6f:7d:ca:71:eb:63:ec:1e:1e: 7c:b4:cd:96:88:cc:db:89:49:55:e5:11:15:6b:26:00:4e:7f: 5f:9d:87:ac:b9:be:f6:b5:19:5a:c0:a0:f2:ac:d9:84:8c:ad: 17:ff:d7:53:d6:0d:9a:2d:84:3b:84:1f:c4:fa:1e:95:ed:03: 4f:3e:f3:74:35:22:85:26:04:61:17:c3:ec:df:fe:8a:34:97: 22:c0:f1:01:7f:b7:2c:3f:1c:36:c5:8c:f9:37:3c:31:e2:c4: 8c:b5:74:62:8d:6b:ec:01:5d:4c:4b:f3:76:2f:3f:ad:18:fb: 5a:6b:20:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjYwNjAxMDAwMDA4WhcNMjYwNjA4MDAwMDA4WjAYMRYwFAYD VQQDEw02YTFjY2I4OC1mOGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqw26d5r8PikjF0Aw62BSnUkJYp05nDdXPmIeaTxys5JOtqrF83CnHkcIOcoI y+LvRHoMrPspwFNgJQbWCYEvwOAPlr9zO34BLeP3eVgmodeOIJ2DMBb0CdlRYYRB 4HGrwz3ZaEIu+8IKP9HC8lpIKtJgFRLyW+LRMVSF2zodgWiTB+IvMpQJrb7LvOZG iYXbK4JFDOwfsaswQEps0LmoH7d7iLFpUB8I9TGawRkbIXm90WFFbLGIselqofX9 npMv9mHy2OSVtchHwolN88TYHARYeSot1X8lBH3dq8OL9AcssAZEHPRuoGm56GgV eZEqyJJztm5oyMVJnsOvfg7NawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAEuIw1m W3rxfNYtmKZ5MrrL6rRdMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANxCcWk85YyPkRa7WNJvRUxgXN0FRE6JZUmGw+mFTFr/eH/rD9f8kyZJskLtT GKpQP+YKK/2VGol2bHNGKbitFvFd4uAOn9RX1A5fznaOMe3Yv6RD/tpcDrqrkJTg rDQe4LhbdDgpwRFWUfOthMk8+81hPKESfyw/+xW/dS5qfy+5HejcsF75b33Kcetj 7B4efLTNlojM24lJVeURFWsmAE5/X52HrLm+9rUZWsCg8qzZhIytF//XU9YNmi2E O4QfxPoele0DTz7zdDUihSYEYRfD7N/+ijSXIsDxAX+3LD8cNsWM+Tc8MeLEjLV0 Yo1r7AFdTEvzdi8/rRj7WmsglQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:48:21 2026 by rpki-client