$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: nF9cyuun+rgtNAfTdM0vBWutUIFkbin+KLjmAOjqQ1M= Subject key identifier: 60:5A:E9:5C:C4:D0:BE:CA:CF:F8:70:19:F0:82:4F:4F:E8:78:F8:1F Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 02B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 02A2 Signing time: Mon 01 Jun 2026 02:18:23 +0000 Manifest this update: Mon 01 Jun 2026 02:18:22 +0000 Manifest next update: Mon 08 Jun 2026 02:18:22 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: exogz4UC8Ei7l2lZheg9nv4tM9zg4X4gJnO3/06qJfE=) 2: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: j4HW8v+J9rL2PkNopASjMuegUlrtdhRwhQv/dAW6LJM=) 3: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: gj01DmJfEaGsSpp5tjGsusN7Thz10FKLT4wU37QzljM=) 4: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: 8a9pl0B9WRoV/I8zbYuLrKWiJVi0iu0Y5myQD63MtCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 02:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Jun 1 02:18:22 2026 GMT Not After : Jun 8 02:18:22 2026 GMT Subject: CN=6a1cebef-0414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:77:64:c6:a6:b2:1f:d7:ca:27:43:aa:33: 63:9c:0f:49:d5:6e:ec:63:1c:6f:78:ab:f9:26:90: 68:f2:a9:b2:98:70:27:57:73:24:93:43:e4:7f:e4: 1c:20:a0:3b:67:09:72:5f:b3:87:00:32:2f:e2:ee: c0:65:34:2c:77:59:66:41:44:1b:02:b2:c3:5b:3f: 37:ab:76:9e:4e:53:cf:2d:59:00:43:7e:83:2c:d2: d9:44:b1:a5:1d:ef:b6:c0:16:c8:c2:68:1f:21:04: 3e:37:e8:56:3e:7e:08:23:17:52:f7:ba:45:f4:86: b8:71:d8:dd:1f:ac:1d:62:46:b0:9b:82:fd:5a:4e: 2b:e2:3c:74:47:94:13:db:81:68:69:93:2b:35:aa: e6:d2:c0:6b:1c:9e:74:e2:ee:d3:b8:08:fe:c4:21: 1e:da:a2:cd:54:81:2e:df:ed:59:43:e2:49:ab:3d: 34:b8:74:5c:25:2a:84:8c:18:b7:fc:21:6e:30:1f: ad:80:8c:6c:e8:76:aa:1d:a4:6e:d2:57:7e:63:65: a1:11:87:c0:23:76:64:a9:8e:9a:f4:69:62:37:58: 84:89:86:8a:65:5f:5c:f9:68:07:f4:40:b1:9b:08: a9:37:c9:74:09:6c:60:44:d8:b1:a2:20:6d:aa:5e: a5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5A:E9:5C:C4:D0:BE:CA:CF:F8:70:19:F0:82:4F:4F:E8:78:F8:1F X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:97:e4:3f:d6:bc:60:e3:78:35:68:8f:28:b6:73:bc:68:11: e5:8f:81:8d:bf:01:bd:6a:fd:d5:04:1e:94:e5:4a:7e:f6:83: f1:46:48:55:66:6f:83:21:46:f1:7a:4a:93:26:86:d7:ac:ac: d8:0d:4c:55:57:53:bf:3c:ed:bd:59:c8:93:23:d0:96:2e:df: 69:cc:66:26:38:24:91:dc:7e:c6:c9:be:ca:66:4d:4c:4d:3c: 62:a1:50:c3:c0:23:8c:d9:49:e1:fa:05:85:6b:c1:72:56:58: d5:4b:2c:0d:42:15:0b:4d:4b:71:1d:47:08:d8:13:dd:e0:2b: 6d:7f:76:76:e2:d2:6f:b2:cf:a2:dc:f0:a4:2c:19:78:d6:e3: c1:0e:e0:23:a1:26:5c:a6:be:f7:c6:27:43:c7:e2:d2:59:39: c3:3d:33:57:87:1f:57:0f:1f:de:0d:f5:46:5c:dd:6b:da:ef: 9b:26:78:45:46:6f:16:05:6b:89:36:64:72:1a:b5:37:cb:9d: 65:38:6c:e7:63:dd:19:be:ba:f4:28:fd:15:e3:90:3b:a7:41: 35:a0:a5:fa:3e:8e:f3:b8:25:75:45:6d:dd:3e:09:5a:59:dc: fe:02:c8:10:cf:45:46:d6:50:6f:1f:76:f8:7e:1b:cc:24:bb: 0e:af:fe:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjYwNjAxMDIxODIyWhcNMjYwNjA4MDIxODIyWjAYMRYwFAYD VQQDEw02YTFjZWJlZi0wNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkx3ZMamsh/XyidDqjNjnA9J1W7sYxxveKv5JpBo8qmymHAnV3Mkk0Pkf+Qc IKA7ZwlyX7OHADIv4u7AZTQsd1lmQUQbArLDWz83q3aeTlPPLVkAQ36DLNLZRLGl He+2wBbIwmgfIQQ+N+hWPn4IIxdS97pF9Ia4cdjdH6wdYkawm4L9Wk4r4jx0R5QT 24FoaZMrNarm0sBrHJ504u7TuAj+xCEe2qLNVIEu3+1ZQ+JJqz00uHRcJSqEjBi3 /CFuMB+tgIxs6HaqHaRu0ld+Y2WhEYfAI3ZkqY6a9GliN1iEiYaKZV9c+WgH9ECx mwipN8l0CWxgRNixoiBtql6l0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGBa6VzE 0L7Kz/hwGfCCT0/oePgfMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN5fkP9a8YON4NWiPKLZzvGgR5Y+Bjb8BvWr91QQelOVKfvaD8UZIVWZvgyFG 8XpKkyaG16ys2A1MVVdTvzztvVnIkyPQli7facxmJjgkkdx+xsm+ymZNTE08YqFQ w8AjjNlJ4foFhWvBclZY1UssDUIVC01LcR1HCNgT3eArbX92duLSb7LPotzwpCwZ eNbjwQ7gI6EmXKa+98YnQ8fi0lk5wz0zV4cfVw8f3g31Rlzda9rvmyZ4RUZvFgVr iTZkchq1N8udZThs52PdGb669Cj9FeOQO6dBNaCl+j6O87gldUVt3T4JWlnc/gLI EM9FRtZQbx92+H4bzCS7Dq/+cw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:36:33 2026 by rpki-client