$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: 2iVYbVYDQHBHFkMY53IKzdktYoFDA1GLiq/4XAi6dTg= Subject key identifier: 3A:B4:04:FF:83:10:68:2F:18:87:F9:D6:05:50:87:29:C3:FF:FA:F6 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0572 Signing time: Mon 01 Jun 2026 00:00:11 +0000 Manifest this update: Mon 01 Jun 2026 00:00:11 +0000 Manifest next update: Mon 08 Jun 2026 00:00:11 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: szI0qz7KOVgKEr/ur9UXaD7wDNO/3hzFLEEtARgcW/c=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Jun 1 00:00:11 2026 GMT Not After : Jun 8 00:00:11 2026 GMT Subject: CN=6a1ccb8b-b5c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:29:b3:0e:6f:2a:75:d3:e9:e2:74:34:be: 6a:a3:d7:a8:6f:03:39:c9:f0:40:ce:bc:1e:c5:a3: 81:bd:09:0a:a9:36:6f:0d:ae:3f:ba:30:51:22:46: 15:32:ee:6a:d8:e0:c6:44:3f:d0:82:06:bf:a6:a2: 7b:a0:9c:4d:7e:52:04:79:32:4b:a2:18:bc:85:8f: 72:b1:42:d1:bb:9a:f4:3e:b2:52:fd:d6:b5:ac:50: ae:8b:8b:8d:f8:a5:1f:d9:d9:43:13:ac:81:0a:41: c9:bb:53:8b:00:34:d9:b1:43:51:40:81:41:1b:bf: 32:c6:09:72:dc:0b:d4:fa:22:00:1e:85:10:2a:4b: a0:b9:bd:18:13:69:02:5e:da:49:46:12:a0:fb:10: 31:da:e3:00:04:b6:b7:1d:04:e0:95:4c:99:15:4b: da:14:63:f0:ec:77:6c:fc:31:7e:55:59:77:97:81: c9:18:3f:17:81:1c:4b:fe:76:4e:4d:6f:74:13:d9: 0b:a4:d3:27:4a:7f:59:a7:e8:60:a4:14:60:ca:61: 53:0d:19:a4:63:60:56:13:80:f0:b3:d5:fa:59:6a: f6:16:90:e8:e1:1e:ab:b6:87:39:06:13:d0:7c:4f: d1:e9:93:4a:c7:2e:1a:eb:86:3e:3a:84:3d:3b:24: 64:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B4:04:FF:83:10:68:2F:18:87:F9:D6:05:50:87:29:C3:FF:FA:F6 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f8:4b:73:0c:5c:2c:df:da:c6:60:61:4d:13:72:2a:84:82: 2d:7a:23:3d:a0:2e:7e:63:b8:ab:b1:e7:d5:68:df:74:cf:7b: 6c:bf:84:a4:c7:2c:85:9d:af:db:a1:a5:99:c2:5e:cf:35:13: 6c:6b:27:ca:83:76:3c:55:c6:19:6c:4a:f7:99:cb:81:ac:2d: 5e:64:84:f7:ac:bc:32:f5:24:77:a3:da:da:69:1b:f2:06:cd: e6:0a:1d:4c:62:5e:31:89:f2:8e:f4:ad:4c:49:b0:cf:48:0d: 96:31:e4:88:eb:35:76:37:37:c5:5d:9d:c1:dd:74:48:f2:40: 3d:9c:6f:7b:f0:6c:6c:56:59:a2:01:5c:98:db:fe:37:e2:58: 8b:d6:81:0f:2f:b5:b4:27:5b:84:40:91:b6:85:f5:0d:16:a3: 93:f2:93:af:48:dc:31:73:ac:a9:52:d1:11:8c:26:65:17:0f: fa:1a:7a:4e:98:f9:0a:fd:6d:d0:74:c6:2b:aa:1d:24:ff:a7: 11:bb:da:0a:ed:4f:d0:95:81:90:0f:d9:fd:57:6b:c0:ea:70: 3a:03:f6:d3:09:10:ad:53:ca:df:8f:25:9c:16:04:fa:ed:34: f2:ec:f3:ae:63:92:32:6e:98:16:6e:6a:89:4e:f4:e8:8a:d6: 7f:64:8f:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwNjAxMDAwMDExWhcNMjYwNjA4MDAwMDExWjAYMRYwFAYD VQQDEw02YTFjY2I4Yi1iNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBspsw5vKnXT6eJ0NL5qo9eobwM5yfBAzrwexaOBvQkKqTZvDa4/ujBRIkYV Mu5q2ODGRD/Qgga/pqJ7oJxNflIEeTJLohi8hY9ysULRu5r0PrJS/da1rFCui4uN +KUf2dlDE6yBCkHJu1OLADTZsUNRQIFBG78yxgly3AvU+iIAHoUQKkugub0YE2kC XtpJRhKg+xAx2uMABLa3HQTglUyZFUvaFGPw7Hds/DF+VVl3l4HJGD8XgRxL/nZO TW90E9kLpNMnSn9Zp+hgpBRgymFTDRmkY2BWE4Dws9X6WWr2FpDo4R6rtoc5BhPQ fE/R6ZNKxy4a64Y+OoQ9OyRkXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDq0BP+D EGgvGIf51gVQhynD//r2MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATPhLcwxcLN/axmBhTRNyKoSCLXojPaAufmO4q7Hn1WjfdM97bL+EpMcshZ2v 26GlmcJezzUTbGsnyoN2PFXGGWxK95nLgawtXmSE96y8MvUkd6Pa2mkb8gbN5god TGJeMYnyjvStTEmwz0gNljHkiOs1djc3xV2dwd10SPJAPZxve/BsbFZZogFcmNv+ N+JYi9aBDy+1tCdbhECRtoX1DRajk/KTr0jcMXOsqVLREYwmZRcP+hp6Tpj5Cv1t 0HTGK6odJP+nEbvaCu1P0JWBkA/Z/VdrwOpwOgP20wkQrVPK348lnBYE+u008uzz rmOSMm6YFm5qiU706IrWf2SPhw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:18:48 2026 by rpki-client