$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: xJ+ur4R/Dq32RgAejF3jxSP2KPSAedKr8w4F6+AuOJs= Subject key identifier: 79:C5:56:67:D9:C7:0B:56:85:0A:0D:E4:1C:1E:AA:F2:74:EB:5E:61 Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 9F Signing time: Mon 25 May 2026 07:26:52 +0000 Manifest this update: Mon 25 May 2026 07:26:52 +0000 Manifest next update: Mon 01 Jun 2026 07:26:52 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: RqgGUcD9Afdlg4h0Zujb0v74IkZR+bM2hcAjMrzkhXE=) 2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: t3GNpUerhP0cJPbY48i/kbcLRCBSWRa0pQ+pR8/EBR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jun 2026 07:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: May 25 07:26:52 2026 GMT Not After : Jun 1 07:26:52 2026 GMT Subject: CN=6a13f9bc-04c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:df:94:5a:f7:90:6d:91:3c:b6:e0:d5:da: e4:24:92:c0:1a:73:0a:2b:bc:20:b6:ad:99:56:9b: b2:ea:d7:41:bb:c6:69:83:83:17:f8:13:9d:76:86: 4d:98:20:84:6c:23:32:88:f6:21:24:5e:30:44:5e: d1:67:b5:42:00:ec:81:36:48:e6:a3:4f:60:31:e8: 78:44:89:0c:c0:71:77:53:ad:ca:f7:77:02:fa:37: 6b:43:a4:9a:5a:63:03:64:52:d9:45:3e:15:6b:91: ca:cb:25:01:81:60:cb:15:5e:c0:b7:b4:73:c8:1e: bf:42:80:e9:7c:c2:40:b1:6d:a1:22:53:c8:cf:b9: c7:fa:c8:f7:a5:28:64:2f:52:22:e8:c3:15:8d:6e: 26:14:ec:44:fc:9c:bf:5d:fe:b4:3b:9f:a1:30:e3: a2:47:7d:26:10:d1:ed:ba:03:22:b7:04:12:28:0d: 21:e8:1d:2b:23:2e:7f:ac:a6:2d:71:37:22:5d:80: e2:40:75:15:51:62:9a:d5:01:19:07:86:92:ad:b4: 3c:54:5d:9a:32:df:54:ae:a8:31:37:64:57:36:a1: 8d:a6:7e:83:9f:5a:0e:77:e6:1b:39:7a:19:e4:2a: e0:53:c5:85:d0:23:1e:0b:fc:88:cd:19:59:66:1d: 2c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C5:56:67:D9:C7:0B:56:85:0A:0D:E4:1C:1E:AA:F2:74:EB:5E:61 X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:57:42:fa:d6:0a:5f:70:50:fb:21:ff:f9:ed:21:21:f2:37: 32:ec:a5:b0:1c:25:ae:db:38:75:50:c0:b3:86:4c:46:b3:49: 63:dd:71:41:b6:25:86:99:1f:02:8e:20:7f:35:44:18:bb:d9: c8:49:ee:b7:9f:8f:5a:2c:69:f3:c6:e9:3f:56:e2:f7:72:39: 91:02:c2:a7:35:ec:f8:27:a8:b1:41:58:27:4d:f3:3f:1b:03: af:8c:e9:0a:09:e0:1c:11:86:5f:01:7b:22:30:b7:37:71:30: e4:14:e5:1f:4c:57:0b:c4:32:8f:5c:c3:1e:09:f3:80:35:7a: 39:39:89:2d:85:50:f9:27:ba:58:ce:59:60:e6:ab:d4:d3:d0: f3:67:9c:fa:e9:a4:a9:67:e4:4e:69:d7:39:a5:b1:57:8c:70: 44:b5:d3:ed:1d:5e:ff:0e:df:14:04:d4:36:28:d4:be:e3:d0: 34:0b:6d:f9:7c:f5:74:a6:d9:e4:8b:2e:bc:49:32:11:cf:bc: 92:f6:f7:95:32:ff:7e:f8:69:37:d4:1c:72:8b:3d:13:f3:b9: dd:fb:29:ae:24:8f:bf:c9:34:77:f4:65:e1:61:a2:6d:f1:2a: bf:92:3a:38:b1:f6:1d:a7:37:e6:59:dd:9c:89:be:48:c4:69: 40:d1:57:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDQTgxMTAvBgNVBAUTKEREMjgwODI4RkYwOTk2QThDQkVGMjlCRjBEOTE0REYy NTJERjFDQkQwHhcNMjYwNTI1MDcyNjUyWhcNMjYwNjAxMDcyNjUyWjAYMRYwFAYD VQQDEw02YTEzZjliYy0wNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtinflFr3kG2RPLbg1drkJJLAGnMKK7wgtq2ZVpuy6tdBu8Zpg4MX+BOddoZN mCCEbCMyiPYhJF4wRF7RZ7VCAOyBNkjmo09gMeh4RIkMwHF3U63K93cC+jdrQ6Sa WmMDZFLZRT4Va5HKyyUBgWDLFV7At7RzyB6/QoDpfMJAsW2hIlPIz7nH+sj3pShk L1Ii6MMVjW4mFOxE/Jy/Xf60O5+hMOOiR30mENHtugMitwQSKA0h6B0rIy5/rKYt cTciXYDiQHUVUWKa1QEZB4aSrbQ8VF2aMt9UrqgxN2RXNqGNpn6Dn1oOd+YbOXoZ 5CrgU8WF0CMeC/yIzRlZZh0s2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHnFVmfZ xwtWhQoN5BweqvJ0615hMB8GA1UdIwQYMBaAFN0oCCj/CZaoy+8pvw2RTfJS3xy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NBOC82QTlFOTE1QzZF RTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxxakw3eW1fRFpGTjhsTGZI TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC82QTlFOTE1QzZFRTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxx akw3eW1fRFpGTjhsTGZITDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVFdC+tYKX3BQ+yH/+e0hIfI3MuylsBwlrts4dVDAs4ZMRrNJY91xQbYlhpkf Ao4gfzVEGLvZyEnut5+PWixp88bpP1bi93I5kQLCpzXs+CeosUFYJ03zPxsDr4zp CgngHBGGXwF7IjC3N3Ew5BTlH0xXC8Qyj1zDHgnzgDV6OTmJLYVQ+Se6WM5ZYOar 1NPQ82ec+umkqWfkTmnXOaWxV4xwRLXT7R1e/w7fFATUNijUvuPQNAtt+Xz1dKbZ 5IsuvEkyEc+8kvb3lTL/fvhpN9Qccos9E/O53fspriSPv8k0d/Rl4WGibfEqv5I6 OLH2Hac35lndnIm+SMRpQNFXWg== -----END CERTIFICATE-----Generated at Tue May 26 04:51:35 2026 by rpki-client