$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: a6aS4tkC1XdeAqObGsi5d+VcPdwGBbzDwSPz5YGaUpA= Subject key identifier: 4A:CE:B3:CA:BB:00:27:FA:7D:B9:21:61:1B:23:15:27:B7:A3:8A:B7 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 06AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 0699 Signing time: Fri 26 Jun 2026 22:52:10 +0000 Manifest this update: Fri 26 Jun 2026 22:52:10 +0000 Manifest next update: Fri 03 Jul 2026 22:52:10 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: 5+mrTi5LaWtJ0+texhrP54dl1ZlnP/pw0pW7TcIHd+o=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: VAtwg4JA7DKaiR1Y/aQYlkU3CfV+E/YtMAPsl8ob9cY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jul 2026 22:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Jun 26 22:52:10 2026 GMT Not After : Jul 3 22:52:10 2026 GMT Subject: CN=6a3f029a-6196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:fe:d6:ac:cb:20:19:3d:65:e9:ac:38:a7: f0:47:53:7d:76:f5:cd:38:af:33:ef:e1:ae:e3:47: 5f:46:0f:f6:77:65:2d:63:38:ec:39:68:92:92:24: 91:e9:ea:51:87:d8:62:6c:91:48:fb:76:88:10:d2: a3:47:0b:9f:a4:c3:ec:91:8b:18:47:8d:ec:ae:a5: 2d:7d:d3:af:c6:f1:6e:89:62:31:8b:5a:79:ad:06: 15:b7:71:be:7c:d8:68:89:94:d5:ce:3f:d8:bf:1f: e3:a8:78:42:50:77:27:91:51:62:53:98:94:52:ca: 46:5f:c5:e9:2e:c9:63:9a:c5:78:ba:39:ae:87:57: b2:e4:1c:5c:f2:4a:63:f6:da:65:ab:f1:e4:37:be: 06:89:24:b5:4b:2c:c7:3a:fc:a4:3b:78:cc:bb:04: f3:37:af:7b:2e:d4:3b:f3:6b:64:b1:e2:c6:c0:1b: 42:ba:43:f9:c5:28:43:b1:82:be:46:d8:98:7f:f7: 39:75:bd:38:a2:7b:34:04:d7:e6:03:c6:d3:f9:65: 1c:22:83:52:57:e4:41:0a:a1:ed:2c:23:bb:e8:6c: 50:f5:10:b8:ab:57:64:50:0a:09:28:ed:41:e8:0b: 72:f0:cd:6c:1a:28:47:36:4b:58:a4:29:e4:d4:45: e4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CE:B3:CA:BB:00:27:FA:7D:B9:21:61:1B:23:15:27:B7:A3:8A:B7 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:30:61:32:94:6f:31:2f:13:bb:24:ae:b5:bb:47:7e:c8:fd: fd:04:17:34:95:7c:80:8e:0f:25:e4:8c:0e:d1:77:bc:87:d1: f5:92:ca:e9:27:4d:bb:e6:26:26:39:bf:7b:3a:5d:2d:57:f1: 86:e8:a4:2d:c6:58:65:cf:e8:f2:28:41:d9:99:eb:6c:f6:44: 17:0d:58:2f:a0:c7:c1:e5:32:91:54:46:f3:72:e0:00:61:6e: fe:70:8e:c3:13:f9:ed:09:86:b8:9a:07:c7:ea:e5:ee:64:4d: 1b:8d:d7:b8:fb:a3:f3:8b:4f:3b:f7:d8:c0:d0:7d:aa:5d:b8: 03:5e:59:ae:75:57:c4:e8:a8:2a:43:9c:7f:d5:93:63:fd:82: dc:8c:e6:d5:74:d1:f6:d8:1b:6f:c9:13:c9:de:56:6e:8c:f3: 0c:84:90:d1:5d:fb:bd:99:6e:c0:65:af:7e:2f:94:64:28:e9: 04:f3:dc:29:99:b4:84:95:e2:4f:f8:4e:73:55:7a:d1:0a:01: 65:69:3b:78:7f:34:97:61:0d:fe:3e:fd:60:6f:06:46:08:c9: e9:11:1b:d7:47:07:56:8e:91:20:e8:b2:6f:1e:e5:45:66:ab: c9:d9:16:97:de:b0:1f:b5:62:e0:90:57:af:e6:09:e4:78:bf: 5f:aa:15:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjYwNjI2MjI1MjEwWhcNMjYwNzAzMjI1MjEwWjAYMRYwFAYD VQQDEw02YTNmMDI5YS02MTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNj+1qzLIBk9ZemsOKfwR1N9dvXNOK8z7+Gu40dfRg/2d2UtYzjsOWiSkiSR 6epRh9hibJFI+3aIENKjRwufpMPskYsYR43srqUtfdOvxvFuiWIxi1p5rQYVt3G+ fNhoiZTVzj/Yvx/jqHhCUHcnkVFiU5iUUspGX8XpLsljmsV4ujmuh1ey5Bxc8kpj 9tplq/HkN74GiSS1SyzHOvykO3jMuwTzN697LtQ782tkseLGwBtCukP5xShDsYK+ RtiYf/c5db04ons0BNfmA8bT+WUcIoNSV+RBCqHtLCO76GxQ9RC4q1dkUAoJKO1B 6Aty8M1sGihHNktYpCnk1EXkCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFErOs8q7 ACf6fbkhYRsjFSe3o4q3MB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHTBhMpRvMS8TuySutbtHfsj9/QQXNJV8gI4PJeSMDtF3vIfR9ZLK6SdNu+Ym Jjm/ezpdLVfxhuikLcZYZc/o8ihB2ZnrbPZEFw1YL6DHweUykVRG83LgAGFu/nCO wxP57QmGuJoHx+rl7mRNG43XuPuj84tPO/fYwNB9ql24A15ZrnVXxOioKkOcf9WT Y/2C3Izm1XTR9tgbb8kTyd5WbozzDISQ0V37vZluwGWvfi+UZCjpBPPcKZm0hJXi T/hOc1V60QoBZWk7eH80l2EN/j79YG8GRgjJ6REb10cHVo6RIOiybx7lRWarydkW l96wH7Vi4JBXr+YJ5Hi/X6oVhw== -----END CERTIFICATE-----Generated at Sun Jun 28 13:58:50 2026 by rpki-client