$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: 6IX1sLv4FiP6hkLQ3tytmXFTGpkZEuy2nEoBBPaSqeY= Subject key identifier: 80:7C:DE:21:40:9B:FF:C5:B0:71:1E:91:FA:9D:80:C2:B5:C4:F8:8E Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 02E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 02D0 Signing time: Tue 23 Jun 2026 01:27:11 +0000 Manifest this update: Tue 23 Jun 2026 01:27:11 +0000 Manifest next update: Tue 30 Jun 2026 01:27:11 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: N0bUc4/ndZwXieR3PWrxATN3l8NyhEu+LsLBf8jPW2g=) 2: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (hash: zqFlnoiRJ96ipkTg+cLy44fvbC4N/hd7GgD9UC/f7t4=) 3: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (hash: ldho/4dcBhvMSFZNQSotx0OQwqa0gAe9if7fkQE4P7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 01:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 739 (0x2e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Jun 23 01:27:11 2026 GMT Not After : Jun 30 01:27:11 2026 GMT Subject: CN=6a39e0ef-64dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:46:84:48:b6:e5:d0:d3:3f:c2:ce:93:27:6f: 6b:05:34:b5:18:73:f0:a2:ae:ef:30:43:ae:b0:4a: b3:43:ab:c0:3d:e4:ab:31:c8:bf:79:b9:0f:52:7a: 85:e4:19:1a:ce:2c:4e:cf:f4:05:02:7b:98:29:76: a7:fd:90:9a:53:28:7d:25:24:a2:5d:ab:81:7f:c9: 37:5a:f6:3e:44:67:62:c3:2c:b2:75:10:df:e9:d9: 70:40:7e:d3:de:09:20:7a:4a:9b:b1:39:10:b3:a2: a6:f0:bd:69:fb:34:26:7e:9e:72:83:b0:e6:c1:0a: 3e:8f:8c:da:de:3a:a2:84:64:9a:b9:58:3c:7f:b1: c8:9a:92:b7:19:af:19:e3:1f:07:7e:34:e8:92:5f: f3:0b:42:12:fc:6a:c0:94:50:3b:0c:67:ce:72:63: 1b:75:37:68:b7:81:ca:cf:f4:84:54:50:00:70:5d: 0a:88:57:55:72:7b:87:79:a8:89:c6:f6:25:91:03: 57:74:c2:ec:e2:5d:d9:eb:ee:fe:09:77:f3:df:da: 28:cc:cd:c2:04:cb:a1:63:13:29:40:99:b0:a3:3e: 11:02:b1:c6:77:1a:19:e7:0c:7f:df:97:86:00:bc: 37:32:73:9b:27:ef:7c:21:37:ef:7c:ea:f9:8a:8c: 8e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7C:DE:21:40:9B:FF:C5:B0:71:1E:91:FA:9D:80:C2:B5:C4:F8:8E X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:24:64:8d:a6:c3:e1:b0:3f:18:e2:16:39:f6:3c:f9:ab:62: db:8b:b1:af:75:ca:77:6c:02:38:13:4b:46:00:de:33:2b:2e: c3:b9:dc:94:37:bb:14:6d:93:82:fa:7b:e6:12:6f:7f:22:c2: 62:6d:87:67:f0:a0:8c:5a:50:a9:bb:36:1e:75:ce:9c:68:87: 50:d3:47:b5:e0:58:9a:3f:dc:7b:11:85:63:84:1c:3e:80:26: 99:0f:5f:de:4f:71:cf:5e:97:03:f2:39:00:19:30:a0:33:a9: d5:22:b6:46:35:8f:f3:57:45:86:90:d3:32:24:bc:5a:dd:f0: 4d:67:d0:3c:78:03:d7:1d:85:66:e7:dd:e2:46:ef:01:55:dc: 42:ad:5e:05:54:01:75:f5:b6:c9:c5:90:12:b5:bf:43:e5:40: 36:76:d2:a9:42:70:96:b2:df:63:84:8e:fd:76:df:bd:ac:5d: b2:e1:83:16:d6:26:81:f7:0f:95:15:e3:f0:7d:7f:62:d0:64: 22:ae:49:30:14:f6:1c:ad:54:ef:99:c4:32:54:3d:83:33:95: f5:d8:30:5b:3f:40:08:e5:c4:ac:01:8b:a8:98:12:d1:52:0d: 20:84:89:3f:8c:a8:73:04:5c:9b:d9:9d:39:ef:02:80:8d:64: ba:83:6b:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjYwNjIzMDEyNzExWhcNMjYwNjMwMDEyNzExWjAYMRYwFAYD VQQDEw02YTM5ZTBlZi02NGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UaESLbl0NM/ws6TJ29rBTS1GHPwoq7vMEOusEqzQ6vAPeSrMci/ebkPUnqF 5BkazixOz/QFAnuYKXan/ZCaUyh9JSSiXauBf8k3WvY+RGdiwyyydRDf6dlwQH7T 3gkgekqbsTkQs6Km8L1p+zQmfp5yg7DmwQo+j4za3jqihGSauVg8f7HImpK3Ga8Z 4x8HfjTokl/zC0IS/GrAlFA7DGfOcmMbdTdot4HKz/SEVFAAcF0KiFdVcnuHeaiJ xvYlkQNXdMLs4l3Z6+7+CXfz39oozM3CBMuhYxMpQJmwoz4RArHGdxoZ5wx/35eG ALw3MnObJ+98ITfvfOr5ioyOFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIB83iFA m//FsHEekfqdgMK1xPiOMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmiRkjabD4bA/GOIWOfY8+ati24uxr3XKd2wCOBNLRgDeMysuw7nclDe7FG2T gvp75hJvfyLCYm2HZ/CgjFpQqbs2HnXOnGiHUNNHteBYmj/cexGFY4QcPoAmmQ9f 3k9xz16XA/I5ABkwoDOp1SK2RjWP81dFhpDTMiS8Wt3wTWfQPHgD1x2FZufd4kbv AVXcQq1eBVQBdfW2ycWQErW/Q+VANnbSqUJwlrLfY4SO/XbfvaxdsuGDFtYmgfcP lRXj8H1/YtBkIq5JMBT2HK1U75nEMlQ9gzOV9dgwWz9ACOXErAGLqJgS0VINIISJ P4yocwRcm9mdOe8CgI1kuoNr0Q== -----END CERTIFICATE-----Generated at Wed Jun 24 11:24:38 2026 by rpki-client