$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: JBMju4XO7c+nvX12B0eDXeWTnKuPprWmF5ceBbjLtQY= Subject key identifier: F3:3C:03:A7:2B:48:23:1B:99:07:C9:E9:E1:EA:A2:86:23:48:F8:C3 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 355F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 3556 Signing time: Mon 22 Jun 2026 14:43:49 +0000 Manifest this update: Mon 22 Jun 2026 14:43:48 +0000 Manifest next update: Mon 29 Jun 2026 14:43:48 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: gmRj+svHzrPuuy4ohraGP/6a5alY43OPAqB/OOqtgCM=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: DaUDfRkisbFjBhwxGgOMj8rF42Ao1F9Plt9FEElpL3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 14:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13663 (0x355f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Jun 22 14:43:48 2026 GMT Not After : Jun 29 14:43:48 2026 GMT Subject: CN=6a394a25-0b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fd:13:f4:c3:99:38:ee:0f:5d:1e:3b:e8:0a: 7f:46:9f:d0:2d:51:6b:0d:59:0d:99:c4:af:fd:db: e6:06:96:82:ed:bd:1f:38:c2:b4:6a:ee:ba:ec:27: 44:f2:56:2e:55:4a:27:a1:a1:89:d7:7a:cb:40:1b: d5:a1:3a:3c:d8:93:5d:31:f8:9d:a2:49:c1:ec:34: 4c:99:f1:58:b0:bb:85:2e:61:95:76:78:4e:aa:01: 26:3d:c8:55:86:be:10:18:4d:ca:0c:b7:d3:d6:cc: ef:56:3e:3b:3c:b6:8e:80:38:8e:2a:59:4b:87:13: c5:fa:45:7a:54:02:5c:6f:c2:c5:f4:d0:2e:9e:db: 37:1e:55:b3:c3:ea:2d:95:9d:99:a9:6b:68:d5:26: 86:95:71:65:86:18:80:03:2b:fb:67:07:89:1e:79: be:0c:c8:d6:fe:14:6e:5e:05:eb:0e:1d:ad:0e:c4: 36:37:4d:31:dc:73:18:88:7a:e8:dc:27:dc:f2:a1: b9:16:57:ca:2d:b3:83:24:ec:09:76:f8:86:61:cf: 77:14:a1:09:61:38:ad:d3:99:76:c8:fd:03:90:a6: 4f:05:21:c7:d8:57:49:ba:fe:90:2f:35:9c:97:4b: b4:7d:be:5d:e7:4a:01:3e:21:d5:d4:a8:84:ba:2e: b7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:3C:03:A7:2B:48:23:1B:99:07:C9:E9:E1:EA:A2:86:23:48:F8:C3 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:e5:f9:4c:68:04:17:79:57:92:65:9e:46:17:13:68:09:37: 62:50:d1:e7:0a:c5:9a:0c:f1:7d:f1:62:c6:34:98:31:48:42: e6:fb:8b:d7:b3:22:87:16:b2:2e:c3:c6:59:f9:6d:50:97:a4: aa:30:d9:4b:94:3d:e4:02:04:fe:8b:d2:54:5a:4c:fe:ec:f2: 44:54:a3:b7:51:3a:cd:65:45:77:12:bb:33:b5:3c:83:3d:c2: ef:c6:ff:6a:81:7b:2c:bf:85:9e:2e:57:35:5a:85:0f:c1:97: 72:1e:7c:62:94:da:72:f6:24:70:ee:10:39:13:ce:3c:fe:12: f3:82:1c:67:b4:72:44:6f:87:4b:c3:17:63:5f:db:ac:29:ea: 8d:2a:3e:ac:6e:b7:5d:af:26:1b:8b:5e:6c:f1:05:f5:e4:d6: 98:cd:5d:a4:f5:e3:40:54:bb:de:b6:b5:24:fe:a7:4f:ae:2c: 0f:cf:25:9b:26:ee:d8:cf:3e:68:f6:16:6d:c9:34:68:f9:fa: 99:1a:d6:cd:78:30:91:45:c1:c3:cb:b5:5d:91:8f:ae:a3:c6: e9:8f:f6:72:19:b6:6d:26:7c:22:90:d6:1a:7c:21:55:68:e9: 12:c4:a7:9e:e9:d9:52:22:7f:f2:85:36:1f:0c:df:63:2a:46: a2:3c:8c:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjYwNjIyMTQ0MzQ4WhcNMjYwNjI5MTQ0MzQ4WjAYMRYwFAYD VQQDEw02YTM5NGEyNS0wYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/0T9MOZOO4PXR476Ap/Rp/QLVFrDVkNmcSv/dvmBpaC7b0fOMK0au667CdE 8lYuVUonoaGJ13rLQBvVoTo82JNdMfidoknB7DRMmfFYsLuFLmGVdnhOqgEmPchV hr4QGE3KDLfT1szvVj47PLaOgDiOKllLhxPF+kV6VAJcb8LF9NAunts3HlWzw+ot lZ2ZqWto1SaGlXFlhhiAAyv7ZweJHnm+DMjW/hRuXgXrDh2tDsQ2N00x3HMYiHro 3Cfc8qG5FlfKLbODJOwJdviGYc93FKEJYTit05l2yP0DkKZPBSHH2FdJuv6QLzWc l0u0fb5d50oBPiHV1KiEui63qwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPM8A6cr SCMbmQfJ6eHqooYjSPjDMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYuX5TGgEF3lXkmWeRhcTaAk3YlDR5wrFmgzxffFixjSYMUhC5vuL17Mihxay LsPGWfltUJekqjDZS5Q95AIE/ovSVFpM/uzyRFSjt1E6zWVFdxK7M7U8gz3C78b/ aoF7LL+Fni5XNVqFD8GXch58YpTacvYkcO4QORPOPP4S84IcZ7RyRG+HS8MXY1/b rCnqjSo+rG63Xa8mG4tebPEF9eTWmM1dpPXjQFS73ra1JP6nT64sD88lmybu2M8+ aPYWbck0aPn6mRrWzXgwkUXBw8u1XZGPrqPG6Y/2chm2bSZ8IpDWGnwhVWjpEsSn nunZUiJ/8oU2HwzfYypGojyMsQ== -----END CERTIFICATE-----Generated at Wed Jun 24 11:26:17 2026 by rpki-client