$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: 2yBpvZxR+a+pW6biiR47tvFLoUW+tqXLwTAsg40sGbM= Subject key identifier: 68:F1:E9:E5:5D:95:74:9B:9F:B0:77:2D:60:B0:87:02:2B:65:67:3C Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 0608 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 0601 Signing time: Thu 04 Jun 2026 23:28:16 +0000 Manifest this update: Thu 04 Jun 2026 23:28:16 +0000 Manifest next update: Thu 11 Jun 2026 23:28:16 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: GX1DiZ9qdTGVjCxqJhfOOdVK8r5YZQns0U1Jm6g3Qqs=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: YDIYwh8IZsocldDrNfzej1ZrNQO57DlnoJZAAXQRlpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 23:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Jun 4 23:28:16 2026 GMT Not After : Jun 11 23:28:16 2026 GMT Subject: CN=6a220a10-e5c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ed:ef:90:2c:c8:a4:f5:50:5d:87:50:6e:ac: 93:37:0e:ae:4d:cc:11:14:b4:f2:c7:99:65:5e:9b: 5f:4b:d8:4d:29:f4:63:7e:4d:70:37:8e:3f:52:36: 53:35:77:da:b4:a0:9d:31:c5:4e:00:5b:84:cb:06: 98:26:39:d7:e9:17:57:b9:7e:e7:d6:90:b3:e8:ec: 38:76:cc:ed:a2:0a:6a:63:73:96:d7:35:cd:dd:3e: f5:52:be:86:b7:85:d3:83:cf:08:9c:9c:21:6c:60: a7:85:e4:93:77:7f:53:b1:75:d2:ac:f2:37:3d:75: 41:3f:75:70:21:90:a7:e5:47:44:4b:e5:74:fe:66: 6f:ab:d5:32:0d:b6:91:61:30:6c:eb:21:e7:4e:d4: a7:e1:a5:6d:90:7a:16:17:f1:f0:74:b7:79:f2:a2: d1:8c:dc:5f:c8:79:7d:db:10:b3:f5:f6:3c:bb:e8: 8c:59:3e:69:e5:12:d5:b0:da:7a:f0:e8:11:0a:8c: 71:e7:18:36:93:a9:09:65:2c:8c:52:3c:a6:2f:00: 0e:35:70:1c:b3:c6:29:82:4f:cd:60:46:c4:90:ff: 38:09:96:56:b0:ec:ae:ef:fb:90:bf:be:d1:34:50: 5c:e1:ea:94:78:04:f1:1b:5b:cb:77:81:68:cc:c5: af:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F1:E9:E5:5D:95:74:9B:9F:B0:77:2D:60:B0:87:02:2B:65:67:3C X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e5:6a:d2:08:c3:1c:79:44:04:91:5d:a1:f0:5c:ed:6e:74: 25:52:4b:35:94:7f:55:bd:55:39:0d:55:eb:d6:62:ab:1c:62: cb:3d:e0:ab:04:9f:09:f2:ce:64:08:66:74:03:d3:3d:19:b5: 95:de:f8:a3:5c:e9:96:f7:65:6f:f0:5c:db:76:2f:96:8f:01: e9:4b:59:51:5c:59:eb:b5:52:9c:89:60:04:22:b3:28:e6:9d: df:69:33:5f:94:13:c2:35:d7:8a:25:f4:c6:b7:00:19:a2:ec: 51:49:84:94:64:48:13:17:78:8c:f6:9e:70:fa:72:3f:6b:08: 45:80:19:2a:5d:05:4a:9f:a3:a4:55:c2:6d:2b:ce:a6:bb:03: 2e:91:08:79:f0:e9:7c:02:1c:69:99:28:07:3d:c8:52:6c:b7: 1a:46:e5:80:b6:f6:7d:d4:3a:7b:56:e9:87:f1:b4:90:c7:43: e3:20:f4:14:54:26:e5:a7:c5:fc:34:d2:95:bb:64:56:dc:b2: 44:0b:07:0f:40:7e:7f:cc:f3:6c:50:c4:e8:36:f2:6a:d4:d7: 60:a2:b4:dc:a7:b4:a6:88:77:a5:f3:37:18:d4:ae:d9:a1:9d: b1:7a:b4:26:8e:0f:5f:61:b9:c8:8d:7c:6f:03:e6:46:b8:e4: d4:91:9b:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjYwNjA0MjMyODE2WhcNMjYwNjExMjMyODE2WjAYMRYwFAYD VQQDEw02YTIyMGExMC1lNWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0u3vkCzIpPVQXYdQbqyTNw6uTcwRFLTyx5llXptfS9hNKfRjfk1wN44/UjZT NXfatKCdMcVOAFuEywaYJjnX6RdXuX7n1pCz6Ow4dsztogpqY3OW1zXN3T71Ur6G t4XTg88InJwhbGCnheSTd39TsXXSrPI3PXVBP3VwIZCn5UdES+V0/mZvq9UyDbaR YTBs6yHnTtSn4aVtkHoWF/HwdLd58qLRjNxfyHl92xCz9fY8u+iMWT5p5RLVsNp6 8OgRCoxx5xg2k6kJZSyMUjymLwAONXAcs8Ypgk/NYEbEkP84CZZWsOyu7/uQv77R NFBc4eqUeATxG1vLd4FozMWvrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjx6eVd lXSbn7B3LWCwhwIrZWc8MB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJuVq0gjDHHlEBJFdofBc7W50JVJLNZR/Vb1VOQ1V69Ziqxxiyz3gqwSfCfLO ZAhmdAPTPRm1ld74o1zplvdlb/Bc23Yvlo8B6UtZUVxZ67VSnIlgBCKzKOad32kz X5QTwjXXiiX0xrcAGaLsUUmElGRIExd4jPaecPpyP2sIRYAZKl0FSp+jpFXCbSvO prsDLpEIefDpfAIcaZkoBz3IUmy3GkblgLb2fdQ6e1bph/G0kMdD4yD0FFQm5afF /DTSlbtkVtyyRAsHD0B+f8zzbFDE6DbyatTXYKK03Ke0poh3pfM3GNSu2aGdsXq0 Jo4PX2G5yI18bwPmRrjk1JGbaA== -----END CERTIFICATE-----Generated at Sat Jun 6 18:05:54 2026 by rpki-client