$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: 8O/EVtvsidneIg95dBDEqyBEYJXZa6vFNCJBwnU8oL0= Subject key identifier: 87:8E:7D:7B:FB:54:4B:B5:A7:0E:3D:CF:2D:F8:E6:8B:EB:20:59:D1 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 355C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 354F Signing time: Tue 02 Jun 2026 14:39:42 +0000 Manifest this update: Tue 02 Jun 2026 14:39:41 +0000 Manifest next update: Tue 09 Jun 2026 14:39:41 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: TlKfvHeYo3vJgzm0LpbVrZs45f3X1zyI4e8HPVeqGVQ=) 2: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: +9NKbw4Yf5cbYoj9nHJEgGLqyGEjkbYD3jkxgLpPwwo=) 3: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: lk8+oDVmkh0IMVihDlSAF01esZtzK+ueFBrIlPTYmfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 14:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13660 (0x355c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Jun 2 14:39:41 2026 GMT Not After : Jun 9 14:39:41 2026 GMT Subject: CN=6a1eeb2e-3553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d1:f7:e6:18:e6:99:07:0f:6b:b5:8d:d3:1f: eb:d8:86:e9:19:c0:e8:de:d6:3d:c9:92:96:78:84: d5:cc:33:5f:c5:6b:f2:f0:d3:41:d0:88:d9:05:22: da:c4:86:62:cc:9b:84:c2:af:6e:a1:35:a1:7c:ad: d6:73:e2:aa:5d:f3:8f:1f:98:d5:c0:25:57:2e:71: 18:7b:0a:2d:a4:a7:4c:62:d9:04:81:a4:cc:93:e7: 8e:55:0e:4a:82:47:6d:a9:4c:04:42:c0:70:4e:f4: 6c:82:aa:db:51:45:9e:2c:53:8e:9f:c5:c7:cd:9c: 10:90:91:26:22:28:4a:9d:3b:32:af:68:62:74:99: 7c:83:31:79:a1:28:e2:2b:ce:7d:8f:c4:b8:7e:aa: bf:fc:c6:1f:8d:c1:ec:e7:42:78:62:14:40:a0:e5: 95:c6:10:b2:b2:07:2b:6a:66:9d:c7:17:f4:60:70: f7:de:61:34:0d:61:d3:cf:7e:17:f5:d3:16:ec:9b: 7e:a8:11:08:bc:68:4d:10:e8:07:2a:29:a2:21:36: 31:e0:41:48:06:ea:a4:ed:68:2d:c5:84:a2:33:f6: 9c:e7:19:87:1f:7f:04:e4:39:cf:f2:bf:bb:41:1b: a5:73:84:61:23:d4:e5:3d:53:5b:1f:7f:e7:72:91: e8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8E:7D:7B:FB:54:4B:B5:A7:0E:3D:CF:2D:F8:E6:8B:EB:20:59:D1 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:94:17:82:77:2e:11:4d:ca:6d:bc:d6:95:7f:7d:26:26:82: 38:e2:1e:37:df:31:6c:62:e8:14:57:53:80:36:84:f4:0f:9a: 29:f1:20:67:65:65:05:31:ed:6b:9e:7d:fc:d0:17:de:be:0b: 4e:81:4c:42:68:a3:e8:fc:0a:36:60:04:0e:46:c1:08:7f:6c: e4:98:0d:eb:e1:1f:75:55:52:54:8e:92:80:10:cb:34:53:06: 0c:5b:c2:63:9a:2b:1a:27:b9:c9:d7:8f:06:10:68:53:65:67: 5f:46:08:1d:75:43:58:a3:41:eb:01:1a:14:be:b9:21:1b:29: 16:e4:91:b4:90:f7:48:2e:be:20:27:b3:4e:ad:cb:4d:d0:1b: b0:9f:5a:96:19:ef:e7:13:e9:4d:f1:56:ec:94:23:d7:8b:b8: bb:dc:7a:e4:16:d3:c6:56:f7:6a:cb:50:a0:f6:af:13:cb:3a: 8b:1c:70:38:5c:65:fd:a0:10:8f:64:d5:18:b0:22:75:73:8d: 20:f3:3e:88:80:7a:61:c4:98:61:53:48:de:e8:31:f6:bd:38: f6:82:61:3c:4f:2d:32:5c:39:ab:17:53:66:fc:2e:d3:6e:c2: c7:ec:74:8d:dd:34:81:52:43:1a:99:73:ea:d1:c1:a1:d8:ca: a6:ca:57:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjYwNjAyMTQzOTQxWhcNMjYwNjA5MTQzOTQxWjAYMRYwFAYD VQQDEw02YTFlZWIyZS0zNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NH35hjmmQcPa7WN0x/r2IbpGcDo3tY9yZKWeITVzDNfxWvy8NNB0IjZBSLa xIZizJuEwq9uoTWhfK3Wc+KqXfOPH5jVwCVXLnEYewotpKdMYtkEgaTMk+eOVQ5K gkdtqUwEQsBwTvRsgqrbUUWeLFOOn8XHzZwQkJEmIihKnTsyr2hidJl8gzF5oSji K859j8S4fqq//MYfjcHs50J4YhRAoOWVxhCysgcramadxxf0YHD33mE0DWHTz34X 9dMW7Jt+qBEIvGhNEOgHKimiITYx4EFIBuqk7WgtxYSiM/ac5xmHH38E5DnP8r+7 QRulc4RhI9TlPVNbH3/ncpHo4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIeOfXv7 VEu1pw49zy345ovrIFnRMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAepQXgncuEU3KbbzWlX99JiaCOOIeN98xbGLoFFdTgDaE9A+aKfEgZ2VlBTHt a559/NAX3r4LToFMQmij6PwKNmAEDkbBCH9s5JgN6+EfdVVSVI6SgBDLNFMGDFvC Y5orGie5ydePBhBoU2VnX0YIHXVDWKNB6wEaFL65IRspFuSRtJD3SC6+ICezTq3L TdAbsJ9alhnv5xPpTfFW7JQj14u4u9x65BbTxlb3astQoPavE8s6ixxwOFxl/aAQ j2TVGLAidXONIPM+iIB6YcSYYVNI3ugx9r049oJhPE8tMlw5qxdTZvwu027Cx+x0 jd00gVJDGplz6tHBodjKpspX4A== -----END CERTIFICATE-----Generated at Tue Jun 2 22:20:20 2026 by rpki-client