$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: KZlBt8Vn37rOhJyXrUe+Kal+L41O/4OTnzIff08LZYI= Subject key identifier: 1A:E4:8D:D0:79:68:01:96:58:E5:05:15:F4:F2:4F:4E:34:7E:F9:DA Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0CCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0CB1 Signing time: Wed 10 Jun 2026 18:33:16 +0000 Manifest this update: Wed 10 Jun 2026 18:33:15 +0000 Manifest next update: Wed 17 Jun 2026 18:33:15 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: L/dcr8Nmm95oMc9WN64G778Nr37/oWZKAThpFAbODiI=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: 2ZECssZFKej2Bnmujg65SvPR+m2K68FZcUfUc+ikvVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3279 (0xccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jun 10 18:33:15 2026 GMT Not After : Jun 17 18:33:15 2026 GMT Subject: CN=6a29adec-cbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:45:93:66:d3:1b:a7:00:f4:ad:76:b1:cd:59: 03:1d:a8:11:57:ac:5b:67:76:75:d3:47:9c:c4:61: 25:aa:f9:fe:63:d5:b8:5f:1f:89:fb:c9:d8:d4:3c: 53:dc:4d:cc:02:de:c2:c4:d4:ac:27:ba:5a:a5:6d: 1f:c3:36:92:cb:fd:ff:42:5f:48:30:f1:75:4e:93: 01:c3:55:03:11:06:8b:ff:d5:ca:4a:a1:68:28:a6: 88:25:a6:ec:b7:8e:ea:88:81:6b:3c:43:48:d4:cd: 79:73:b3:45:b8:45:d0:be:5c:d2:de:e4:ba:9e:02: 17:15:71:78:ed:7a:2a:97:57:9c:be:f6:4c:c6:4f: 33:aa:1a:7e:88:7e:43:a7:f5:4f:21:c0:92:bc:b6: 65:31:53:7f:5a:13:50:ff:e3:1f:37:45:4f:f0:aa: f6:06:98:d2:35:8b:01:9b:ee:68:03:25:30:03:8e: dd:f6:80:e3:a5:3a:86:4d:14:5b:a8:0d:b8:12:f3: c3:9f:04:ac:9d:fd:f1:4e:da:de:f8:4a:75:5b:94: fb:f2:41:7e:68:2d:40:fe:b2:14:a9:1e:58:1d:67: 2a:45:e5:43:f1:81:b6:f9:3e:4e:94:cc:30:e6:e3: 05:2f:94:ac:02:4b:c9:bd:c9:13:73:03:df:58:15: 81:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:E4:8D:D0:79:68:01:96:58:E5:05:15:F4:F2:4F:4E:34:7E:F9:DA X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:9c:2d:15:c1:af:82:10:a9:56:dd:92:37:4d:13:02:8a:be: 45:d1:5d:22:04:de:3c:d2:82:e5:05:56:25:80:b8:3b:24:45: ca:0b:8b:15:19:b4:57:ea:41:d8:f6:06:8f:85:24:ad:62:d0: 9c:83:a4:c4:91:2b:2d:79:9f:72:d6:63:7b:e9:9c:d2:05:8c: 08:48:ee:e8:a4:29:c9:d1:3e:c8:51:53:5e:32:c8:bf:6b:0a: 1e:13:fe:52:f0:e4:26:52:42:49:79:41:70:22:42:b1:d4:12: 57:52:fd:78:1e:9a:52:9b:56:a7:11:9c:5f:b5:4b:27:f2:d7: cf:e5:e8:48:7c:c3:32:20:c5:23:60:91:e8:2f:09:76:cd:eb: f3:37:2a:06:95:7c:be:f8:74:7f:6b:e9:53:1c:16:6c:ef:09: 64:af:f4:4f:ef:9b:63:d4:14:09:8b:d4:73:5a:59:a3:10:d1: 31:d7:e8:e4:f7:49:61:4f:38:a4:6b:35:00:ab:dc:41:8b:59: 96:8e:ba:a4:04:12:c1:ae:90:ef:10:c6:d1:86:7d:1d:3b:58: 30:eb:92:a7:ba:b6:67:0b:14:3f:08:29:55:c1:87:3e:d7:0c: db:3d:8d:05:f1:6f:51:95:38:42:9a:5a:52:f6:61:78:2f:f0: b6:db:91:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwNjEwMTgzMzE1WhcNMjYwNjE3MTgzMzE1WjAYMRYwFAYD VQQDEw02YTI5YWRlYy1jYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUWTZtMbpwD0rXaxzVkDHagRV6xbZ3Z100ecxGElqvn+Y9W4Xx+J+8nY1DxT 3E3MAt7CxNSsJ7papW0fwzaSy/3/Ql9IMPF1TpMBw1UDEQaL/9XKSqFoKKaIJabs t47qiIFrPENI1M15c7NFuEXQvlzS3uS6ngIXFXF47Xoql1ecvvZMxk8zqhp+iH5D p/VPIcCSvLZlMVN/WhNQ/+MfN0VP8Kr2BpjSNYsBm+5oAyUwA47d9oDjpTqGTRRb qA24EvPDnwSsnf3xTtre+Ep1W5T78kF+aC1A/rIUqR5YHWcqReVD8YG2+T5OlMww 5uMFL5SsAkvJvckTcwPfWBWB7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBrkjdB5 aAGWWOUFFfTyT040fvnaMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb5wtFcGvghCpVt2SN00TAoq+RdFdIgTePNKC5QVWJYC4OyRFyguLFRm0V+pB 2PYGj4UkrWLQnIOkxJErLXmfctZje+mc0gWMCEju6KQpydE+yFFTXjLIv2sKHhP+ UvDkJlJCSXlBcCJCsdQSV1L9eB6aUptWpxGcX7VLJ/LXz+XoSHzDMiDFI2CR6C8J ds3r8zcqBpV8vvh0f2vpUxwWbO8JZK/0T++bY9QUCYvUc1pZoxDRMdfo5PdJYU84 pGs1AKvcQYtZlo66pAQSwa6Q7xDG0YZ9HTtYMOuSp7q2ZwsUPwgpVcGHPtcM2z2N BfFvUZU4QppaUvZheC/wttuRUw== -----END CERTIFICATE-----Generated at Fri Jun 12 04:47:55 2026 by rpki-client