$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: Xuj3vVe1bzOb3dLniiEvUyAHDHIhTaZtIdmV5yz3+pw= Subject key identifier: 1B:EE:02:5A:6B:DE:83:BB:DE:EC:04:76:D7:5A:B4:36:1F:9E:C1:CB Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0454 Signing time: Thu 11 Jun 2026 02:26:23 +0000 Manifest this update: Thu 11 Jun 2026 02:26:23 +0000 Manifest next update: Thu 18 Jun 2026 02:26:23 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: Bzcw9kuwCq5MIIy0roCQLa0YH/YkmvtORBg4rWqBCaE=) 2: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: htWOUsGCluqo+bDLkY52m9kGHamjAwjskMqRyVdOAVI=) 3: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: W4goqtPYzyLcCdBI7xc2Qn8MqCV+FsXgvw4MFdwTxhk=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: Xwopv44IWtrA47h99nFS1HcICRmL98rRNkBLnVkufOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 02:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Jun 11 02:26:23 2026 GMT Not After : Jun 18 02:26:23 2026 GMT Subject: CN=6a2a1ccf-439e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:43:3d:39:60:8e:2c:db:4a:59:3a:48:dd:fb: 58:b5:8e:ea:35:f3:07:30:2a:e4:ef:6c:7b:b8:a3: eb:29:f1:ef:6d:0d:b1:6f:c8:bb:b6:38:2a:5a:f3: 31:a6:36:32:62:0b:04:28:4b:97:89:1e:d0:54:2e: b9:32:6a:da:8a:1a:8d:66:3b:f6:a7:8a:e6:27:1e: 4a:e1:8b:68:b5:a9:ec:f7:d7:d6:68:2b:e9:f7:5f: 02:b9:46:98:88:ac:7d:53:bb:ae:5c:ae:22:e2:53: fe:5c:97:9a:fc:76:6d:c0:33:32:d9:ea:21:f7:38: 15:f9:9a:a0:65:da:ed:da:95:cd:c7:8f:23:8b:9d: 37:67:b5:b0:06:e0:73:e8:10:3d:3f:ec:cb:4e:26: dc:f2:3f:71:11:06:b5:8a:10:56:16:be:db:1c:b4: c4:56:90:2f:63:8b:a5:6c:a7:e3:b2:06:99:1f:28: 23:3e:d7:08:d6:1e:46:92:d3:cb:67:d7:8c:1c:cd: 18:09:d6:ef:ac:26:92:83:85:f7:40:5f:07:0e:a5: 28:e4:c4:34:16:5f:d2:ae:ff:74:53:9f:dd:ac:78: 38:a6:f7:e6:b2:80:93:26:3d:4a:e3:63:84:22:b7: 05:35:70:91:08:58:01:e5:d4:40:67:e7:be:df:d5: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:EE:02:5A:6B:DE:83:BB:DE:EC:04:76:D7:5A:B4:36:1F:9E:C1:CB X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2d:b6:fc:b1:0a:83:74:76:f2:82:fc:52:b2:e2:d7:3b:51: d6:b2:ff:42:1a:a3:01:60:6f:a0:78:76:71:33:0e:57:c8:19: 13:90:33:fd:04:67:9b:a7:67:6a:5f:42:50:54:ec:51:5b:1b: dd:70:04:7f:e8:b9:fd:cf:1f:85:9c:fc:a9:b6:e1:43:29:fc: d4:6d:c3:d2:dd:d0:d1:9d:78:65:4e:97:09:65:83:a7:1c:ed: 5b:d5:28:a1:3b:07:80:84:a4:d9:98:31:36:3b:47:22:ab:c3: ef:1f:d8:09:ad:7c:ef:5c:cf:80:1d:9f:bb:d5:bf:7d:6e:40: 91:9a:f5:2f:36:24:23:a0:e0:ea:09:49:8e:b2:91:f1:3e:88: 71:94:bc:6e:dc:d1:fe:f1:f0:d1:8f:cf:63:a1:f3:6a:a9:73: 6a:4c:03:aa:0b:4f:eb:1f:9b:37:53:4f:9b:38:2a:0e:da:7d: 3f:66:65:97:25:22:86:56:31:ec:e5:7e:1e:8d:2b:d3:40:6c: 41:9e:cc:f4:aa:0d:99:27:6c:8e:cd:c3:49:5c:4b:18:76:48: 39:f4:e2:cb:9e:3d:cd:32:d8:6f:87:8c:59:18:80:77:e3:76: 4d:7e:e4:e3:8f:38:fa:a0:1a:38:73:d1:bb:28:ad:18:da:4d: 7b:ca:e5:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwNjExMDIyNjIzWhcNMjYwNjE4MDIyNjIzWjAYMRYwFAYD VQQDEw02YTJhMWNjZi00MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokM9OWCOLNtKWTpI3ftYtY7qNfMHMCrk72x7uKPrKfHvbQ2xb8i7tjgqWvMx pjYyYgsEKEuXiR7QVC65MmraihqNZjv2p4rmJx5K4Ytotans99fWaCvp918CuUaY iKx9U7uuXK4i4lP+XJea/HZtwDMy2eoh9zgV+ZqgZdrt2pXNx48ji503Z7WwBuBz 6BA9P+zLTibc8j9xEQa1ihBWFr7bHLTEVpAvY4ulbKfjsgaZHygjPtcI1h5GktPL Z9eMHM0YCdbvrCaSg4X3QF8HDqUo5MQ0Fl/Srv90U5/drHg4pvfmsoCTJj1K42OE IrcFNXCRCFgB5dRAZ+e+39XsjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBvuAlpr 3oO73uwEdtdatDYfnsHLMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdC22/LEKg3R28oL8UrLi1ztR1rL/QhqjAWBvoHh2cTMOV8gZE5Az/QRnm6dn al9CUFTsUVsb3XAEf+i5/c8fhZz8qbbhQyn81G3D0t3Q0Z14ZU6XCWWDpxztW9Uo oTsHgISk2ZgxNjtHIqvD7x/YCa1871zPgB2fu9W/fW5AkZr1LzYkI6Dg6glJjrKR 8T6IcZS8btzR/vHw0Y/PY6HzaqlzakwDqgtP6x+bN1NPmzgqDtp9P2ZllyUihlYx 7OV+Ho0r00BsQZ7M9KoNmSdsjs3DSVxLGHZIOfTiy549zTLYb4eMWRiAd+N2TX7k 4484+qAaOHPRuyitGNpNe8rl9g== -----END CERTIFICATE-----Generated at Fri Jun 12 17:41:32 2026 by rpki-client