$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft File: yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft (raw, json) Hash identifier: vtLeBx7W/osxq2oT8qCxSkYvxuhp+X0eR6uaFppblwU= Subject key identifier: 57:D1:BA:E3:EA:B7:54:E5:D0:08:DB:22:DC:AE:52:B4:FE:53:D7:2D Authority key identifier: C8:77:CD:F2:2D:25:B6:E3:3F:C5:E4:95:BE:55:E5:9D:0A:94:98:7E Certificate issuer: /CN=A9147B4B/serialNumber=C877CDF22D25B6E33FC5E495BE55E59D0A94987E Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft Manifest number: 010B Signing time: Mon 01 Jun 2026 06:51:16 +0000 Manifest this update: Mon 01 Jun 2026 06:51:16 +0000 Manifest next update: Mon 08 Jun 2026 06:51:16 +0000 Files and hashes: 1: yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl (hash: D8jXCDiW4HMNNsu8ujbDIFm9RXxbdN0yQZX1h2ZuDkg=) 2: 7C5A543CBCB711F08806E909C4F9AE02.roa (hash: TnUIMsTLLUWLq6RKFJvvlaICGc8yJRHnp3bZVmKD+K8=) 3: 7CC84384BCB711F0BD57E909C4F9AE02.roa (hash: wuMfV4Prav1vTN6DDOAaG6aXaeJ/i3o0GNDpEUWZL6g=) 4: 7D3521CABCB711F08B02E909C4F9AE02.roa (hash: VHWzuR8NTDaBmGYmSm5ZS2QGGvm+Hb7NngfwNUpxxQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B4B, serialNumber=C877CDF22D25B6E33FC5E495BE55E59D0A94987E Validity Not Before: Jun 1 06:51:16 2026 GMT Not After : Jun 8 06:51:16 2026 GMT Subject: CN=6a1d2be4-331c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f1:7d:93:77:06:93:fe:a1:08:fb:bb:fc:c9: 7e:a3:44:b0:1e:df:81:0b:8a:df:c3:ea:f1:69:61: d2:f2:83:b8:0d:22:11:92:bf:f7:05:76:81:8f:b3: 88:fb:0a:ad:cf:0e:20:ae:5a:b7:b8:dd:f6:41:76: 0f:61:ce:57:cc:78:3d:0a:3d:7e:84:66:f7:6e:c5: 21:17:c7:d9:c0:0b:0f:53:33:ee:ad:25:43:d8:86: cb:48:fd:22:73:58:47:20:a8:b8:46:79:36:03:58: 25:48:61:8b:e6:2d:92:45:eb:e8:81:5a:08:b4:4c: 4a:25:c9:eb:e3:27:3a:cb:77:f4:be:bc:5f:bc:c8: 8f:7e:75:bc:0f:b8:e9:a8:06:f2:53:91:ae:51:0c: 74:2e:15:dd:df:0b:67:93:0d:1b:1a:1e:5e:9b:ea: db:28:0a:03:3d:0b:da:da:27:bb:2e:e6:40:0b:cb: b0:aa:72:b2:42:cd:15:02:eb:bd:a3:4d:19:f1:44: 97:6f:81:16:33:73:37:c0:58:b9:5b:b7:cf:6c:22: 70:4c:00:d0:f5:d1:f5:1d:49:79:d3:3b:06:4c:8a: da:b6:19:9a:c7:25:54:6a:a0:73:00:93:68:72:da: 33:94:82:0f:ae:b3:70:2f:9d:07:5e:ce:d7:3b:83: f7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D1:BA:E3:EA:B7:54:E5:D0:08:DB:22:DC:AE:52:B4:FE:53:D7:2D X509v3 Authority Key Identifier: keyid:C8:77:CD:F2:2D:25:B6:E3:3F:C5:E4:95:BE:55:E5:9D:0A:94:98:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:b6:5c:91:2c:53:ab:ef:d5:cb:ca:a5:13:87:5e:03:1c:34: 1b:0b:7b:f2:2e:02:32:49:b5:36:c8:6f:15:00:29:01:be:51: 07:15:74:99:f2:81:8b:b5:01:7f:c8:ed:6b:3c:d6:46:8d:53: c9:a0:51:e4:63:16:58:cf:0e:a7:2c:19:77:4f:c4:cc:ef:9e: e3:79:fc:87:82:45:7d:d5:fd:b9:1b:4a:69:52:10:9f:e3:9d: 55:4c:12:f8:85:97:b8:5a:d5:4f:59:e6:43:db:33:85:26:7e: 80:7d:60:ea:bd:e9:6e:6d:73:b6:cf:05:cd:44:ce:a7:c4:00: 58:84:52:d4:95:f4:b1:68:73:bf:83:30:f4:81:6a:e2:a6:21: aa:4d:9f:d7:64:d9:3e:05:6f:45:42:47:f9:80:98:27:92:ba: 13:9f:c3:9d:29:af:f6:9d:83:2a:76:c7:fe:8f:58:04:29:80: b3:f1:5e:bb:1d:12:68:2a:48:2c:ff:8a:97:23:a5:1a:ae:28: 90:91:91:3c:80:40:55:5a:c6:93:01:75:6b:63:d4:29:a9:c1: ae:d4:e1:fe:0d:8a:04:a7:2d:65:94:48:2b:8a:22:da:ef:6a: 6a:2c:4c:86:a2:73:84:b7:2d:6d:e5:fe:49:2c:cc:78:6d:c6: 1a:25:a4:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNEIxMTAvBgNVBAUTKEM4NzdDREYyMkQyNUI2RTMzRkM1RTQ5NUJFNTVFNTlE MEE5NDk4N0UwHhcNMjYwNjAxMDY1MTE2WhcNMjYwNjA4MDY1MTE2WjAYMRYwFAYD VQQDEw02YTFkMmJlNC0zMzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofF9k3cGk/6hCPu7/Ml+o0SwHt+BC4rfw+rxaWHS8oO4DSIRkr/3BXaBj7OI +wqtzw4grlq3uN32QXYPYc5XzHg9Cj1+hGb3bsUhF8fZwAsPUzPurSVD2IbLSP0i c1hHIKi4Rnk2A1glSGGL5i2SRevogVoItExKJcnr4yc6y3f0vrxfvMiPfnW8D7jp qAbyU5GuUQx0LhXd3wtnkw0bGh5em+rbKAoDPQva2ie7LuZAC8uwqnKyQs0VAuu9 o00Z8USXb4EWM3M3wFi5W7fPbCJwTADQ9dH1HUl50zsGTIrathmaxyVUaqBzAJNo ctozlIIPrrNwL50HXs7XO4P3bQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFfRuuPq t1Tl0AjbItyuUrT+U9ctMB8GA1UdIwQYMBaAFMh3zfItJbbjP8Xklb5V5Z0KlJh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I0Qi9FMTU2QTA0Q0NG MzgxMUVGODQ4NEU5MkZDNEY5QUUwMi95SGZOOGkwbHR1TV94ZVNWdmxYbG5RcVVt SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIZk44aTBsdHVNX3hlU1Z2bFhsblFxVW1INC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I0Qi9FMTU2QTA0Q0NGMzgxMUVGODQ4NEU5MkZDNEY5QUUwMi95SGZOOGkwbHR1 TV94ZVNWdmxYbG5RcVVtSDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgrZckSxTq+/Vy8qlE4deAxw0Gwt78i4CMkm1NshvFQApAb5RBxV0mfKBi7UB f8jtazzWRo1TyaBR5GMWWM8OpywZd0/EzO+e43n8h4JFfdX9uRtKaVIQn+OdVUwS +IWXuFrVT1nmQ9szhSZ+gH1g6r3pbm1zts8FzUTOp8QAWIRS1JX0sWhzv4Mw9IFq 4qYhqk2f12TZPgVvRUJH+YCYJ5K6E5/DnSmv9p2DKnbH/o9YBCmAs/Feux0SaCpI LP+KlyOlGq4okJGRPIBAVVrGkwF1a2PUKanBrtTh/g2KBKctZZRIK4oi2u9qaixM hqJzhLctbeX+SSzMeG3GGiWkGw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:44:28 2026 by rpki-client