$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: Dk9fKlxnUL/5vQMNx0A0I0zo3E8694+57MbPXBurCJ0= Subject key identifier: 39:52:20:72:7A:9D:7B:6A:AC:44:74:85:55:B4:60:0C:F7:D5:BE:F0 Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 1152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 1AB1 Signing time: Mon 22 Jun 2026 17:12:48 +0000 Manifest this update: Mon 22 Jun 2026 17:12:48 +0000 Manifest next update: Mon 29 Jun 2026 17:12:48 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: twUFARsx9xoud2KsAxxEGed/2dOIUXYPaX6EubBqGBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 17:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4434 (0x1152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: Jun 22 17:12:48 2026 GMT Not After : Jun 29 17:12:48 2026 GMT Subject: CN=6a396d10-e6e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6d:43:3a:5a:10:65:0a:f9:1a:f4:b4:1b:ed: cb:73:70:43:b2:81:15:62:7b:f7:29:fb:1b:78:6f: 19:dc:8d:11:18:d2:fb:55:50:c3:f9:95:87:7b:ce: f0:67:af:b2:03:ff:e9:7f:e7:e3:7e:ea:36:de:53: 0c:09:36:f0:44:59:69:ba:53:7f:19:9b:fa:b3:3f: fe:5c:ab:1e:0f:d4:18:2a:08:ed:70:23:c6:2e:e6: 92:f8:ae:79:36:39:ce:42:27:c6:a0:59:83:15:42: eb:7b:83:37:e4:72:36:eb:c7:52:f1:9f:51:b2:91: 47:5c:1b:cf:56:e8:46:d9:a6:77:f7:94:ea:e0:78: 51:b7:3c:4f:4d:d3:1b:48:ca:71:95:fa:3d:63:a3: 9d:e3:35:c6:a9:aa:04:c1:6f:ca:46:3a:b8:63:18: a0:f0:58:66:18:4b:8f:40:23:49:85:1b:8b:1d:9e: 0a:11:2b:5d:80:12:05:a5:d3:ee:c2:2e:c6:9f:1c: 6e:2b:61:7d:e7:e4:08:98:2a:5c:c7:09:2d:7d:02: 27:09:b8:d3:a1:99:af:6d:53:06:5b:e1:e7:80:3c: d7:3a:1b:f6:86:12:c2:86:ba:6a:f8:23:29:2e:29: 9f:8c:35:9a:44:5f:c9:34:e9:83:1a:7a:9a:0a:92: ed:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:52:20:72:7A:9D:7B:6A:AC:44:74:85:55:B4:60:0C:F7:D5:BE:F0 X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:23:05:17:f0:06:a7:95:53:09:94:ad:6d:e6:8f:e6:f1:dc: 7d:ff:c9:7c:85:64:b7:30:37:4e:58:ca:7c:f1:7d:1e:f5:57: 1e:89:54:e2:6a:02:97:c7:a7:93:94:1c:02:4b:68:b2:8a:11: f1:d3:c1:97:d9:7a:8e:12:20:e3:13:be:82:69:47:1b:4f:ed: 21:e0:07:6f:c9:77:6b:3c:bb:73:5e:a7:d8:8d:a9:7c:76:b9: dd:9a:10:35:25:74:fa:a1:cb:0d:8e:53:29:2c:d2:ef:50:07: 9e:7a:96:88:f0:4e:66:7f:04:3b:82:55:1e:cc:a7:34:f5:7a: 69:df:2b:6f:c3:6f:bd:02:c7:17:b0:da:7a:b1:08:9f:ae:37: ae:06:4d:15:c2:98:d1:30:c9:c9:92:08:b6:2a:66:d9:7d:e6: ee:35:32:4e:de:9c:5d:c3:eb:c1:6b:9b:32:3f:ae:3d:76:df: 79:a7:73:17:fd:f6:3d:64:72:5f:0f:13:ff:d4:2f:4d:4c:62: c9:38:83:70:e1:eb:a0:78:75:f5:82:a8:5a:37:bb:92:4d:a1: f4:45:ec:eb:c4:04:44:b1:b6:12:d9:d8:4a:5a:60:4e:1a:a7: fe:a3:48:39:95:18:b6:48:1a:ba:93:0d:9c:ec:93:68:c3:ef: 45:67:1b:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjYwNjIyMTcxMjQ4WhcNMjYwNjI5MTcxMjQ4WjAYMRYwFAYD VQQDEw02YTM5NmQxMC1lNmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG1DOloQZQr5GvS0G+3Lc3BDsoEVYnv3KfsbeG8Z3I0RGNL7VVDD+ZWHe87w Z6+yA//pf+fjfuo23lMMCTbwRFlpulN/GZv6sz/+XKseD9QYKgjtcCPGLuaS+K55 NjnOQifGoFmDFULre4M35HI268dS8Z9RspFHXBvPVuhG2aZ395Tq4HhRtzxPTdMb SMpxlfo9Y6Od4zXGqaoEwW/KRjq4Yxig8FhmGEuPQCNJhRuLHZ4KEStdgBIFpdPu wi7GnxxuK2F95+QImCpcxwktfQInCbjToZmvbVMGW+HngDzXOhv2hhLChrpq+CMp LimfjDWaRF/JNOmDGnqaCpLtbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDlSIHJ6 nXtqrER0hVW0YAz31b7wMB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHiMFF/AGp5VTCZStbeaP5vHcff/JfIVktzA3TljKfPF9HvVXHolU4moCl8en k5QcAktosooR8dPBl9l6jhIg4xO+gmlHG0/tIeAHb8l3azy7c16n2I2pfHa53ZoQ NSV0+qHLDY5TKSzS71AHnnqWiPBOZn8EO4JVHsynNPV6ad8rb8NvvQLHF7DaerEI n643rgZNFcKY0TDJyZIItipm2X3m7jUyTt6cXcPrwWubMj+uPXbfeadzF/32PWRy Xw8T/9QvTUxiyTiDcOHroHh19YKoWje7kk2h9EXs68QERLG2EtnYSlpgThqn/qNI OZUYtkgaupMNnOyTaMPvRWcbdA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:18:06 2026 by rpki-client