$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: VlzLgbvXc7gCcKhSgE2A4k6j4pVcWmiAAPRQVMULOa8= Subject key identifier: 4D:F9:FF:C1:B9:F3:81:D5:0D:BF:03:D4:26:D3:98:14:4D:D4:EE:48 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 0212 Signing time: Mon 01 Jun 2026 03:42:00 +0000 Manifest this update: Mon 01 Jun 2026 03:42:00 +0000 Manifest next update: Mon 08 Jun 2026 03:42:00 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: OqkcR42G442OdlbfJXKa0ZIVeIi8OkAw3i7+ghKdELY=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: ChPU5idLRzFBAUfZXdVDn4ZS21EQnqWVbj2XL7b56XA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Jun 1 03:42:00 2026 GMT Not After : Jun 8 03:42:00 2026 GMT Subject: CN=6a1cff88-9d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d3:c3:71:3e:34:be:e9:55:92:27:01:38:55: b3:34:34:dd:f6:56:4a:cc:ef:4c:f6:b3:64:0a:81: 4e:32:a8:60:cb:94:c8:36:11:39:cb:ca:60:8a:8f: f8:9a:0b:4c:86:e3:3a:7a:d4:7a:43:63:92:04:76: da:9b:c3:1b:8d:5d:64:9a:e8:61:d7:3b:2b:27:e5: 3e:70:b2:db:4f:97:9c:6f:d4:b9:ef:63:33:5e:70: b2:bc:ae:f2:13:d9:32:e5:e1:cd:f5:71:d1:ff:72: 1e:dc:23:65:8d:91:6f:d3:de:10:f6:eb:08:b1:13: fe:dc:f8:2d:e8:88:00:85:94:18:d2:5e:2b:5b:b4: 7a:d8:6b:1e:f7:db:3e:8c:bf:03:13:53:ad:0a:21: 68:90:2e:be:f3:6d:f7:2b:da:d2:a6:0d:9a:c8:b0: ec:48:58:75:9b:65:ef:49:aa:e8:10:b7:51:23:65: 58:45:55:81:78:8f:f6:88:f0:c8:97:da:ff:81:dd: 46:11:a9:63:5e:f0:e6:f2:10:b0:f5:bf:14:e6:46: fa:24:e9:e4:06:3a:43:64:3e:2b:40:d4:5c:91:98: f6:78:af:a9:30:69:3c:f4:77:dc:f3:d9:52:fa:70: 29:2e:fe:75:5c:fd:5d:25:ec:6e:1f:ad:5a:97:50: dd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F9:FF:C1:B9:F3:81:D5:0D:BF:03:D4:26:D3:98:14:4D:D4:EE:48 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:39:6e:e8:4e:74:af:17:72:63:e3:a8:e3:3d:55:72:c5:cc: 4d:53:56:b5:a2:09:aa:d7:6d:19:eb:f0:9f:2f:8d:67:62:68: e2:44:26:3d:78:47:ac:f0:41:f3:d3:98:93:bb:a6:ee:59:0f: b9:aa:f4:f2:04:94:33:b3:94:07:75:4d:43:1b:4e:7d:e9:81: 18:ce:83:86:42:0d:43:45:d7:82:53:97:ac:fd:6a:44:f9:e1: 1b:8d:0a:8f:3f:95:8f:32:0c:2d:87:51:b7:34:4b:f1:41:90: e5:db:93:77:7c:45:bb:7c:6f:f7:52:c2:86:10:3d:23:a2:14: f2:8f:8b:a0:33:ae:ef:36:a2:1e:b0:b9:01:64:bb:c0:5b:d2: c7:a1:14:ae:cd:1f:6b:63:6c:37:06:38:88:2c:48:28:3b:17: cf:dd:34:3f:a6:7b:09:f1:3a:af:83:81:b3:78:ac:09:01:1c: c8:0b:94:f0:2e:af:b7:9e:65:0f:76:dc:84:5c:75:db:30:e4: 88:dd:f9:ef:9d:f8:44:56:df:c2:80:aa:e8:88:78:1f:e0:e4: d0:7b:c6:a3:b0:b2:d5:d4:ac:f3:a9:46:bf:08:0f:05:98:16: 81:7c:a1:bc:3b:21:81:d8:83:85:dc:4d:97:fb:04:b2:9f:01: 9a:7f:40:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwNjAxMDM0MjAwWhcNMjYwNjA4MDM0MjAwWjAYMRYwFAYD VQQDEw02YTFjZmY4OC05ZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9PDcT40vulVkicBOFWzNDTd9lZKzO9M9rNkCoFOMqhgy5TINhE5y8pgio/4 mgtMhuM6etR6Q2OSBHbam8MbjV1kmuhh1zsrJ+U+cLLbT5ecb9S572MzXnCyvK7y E9ky5eHN9XHR/3Ie3CNljZFv094Q9usIsRP+3Pgt6IgAhZQY0l4rW7R62Gse99s+ jL8DE1OtCiFokC6+8233K9rSpg2ayLDsSFh1m2XvSaroELdRI2VYRVWBeI/2iPDI l9r/gd1GEaljXvDm8hCw9b8U5kb6JOnkBjpDZD4rQNRckZj2eK+pMGk89Hfc89lS +nApLv51XP1dJexuH61al1DdnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE35/8G5 84HVDb8D1CbTmBRN1O5IMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPDlu6E50rxdyY+Oo4z1VcsXMTVNWtaIJqtdtGevwny+NZ2Jo4kQmPXhHrPBB 89OYk7um7lkPuar08gSUM7OUB3VNQxtOfemBGM6DhkINQ0XXglOXrP1qRPnhG40K jz+VjzIMLYdRtzRL8UGQ5duTd3xFu3xv91LChhA9I6IU8o+LoDOu7zaiHrC5AWS7 wFvSx6EUrs0fa2NsNwY4iCxIKDsXz900P6Z7CfE6r4OBs3isCQEcyAuU8C6vt55l D3bchFx12zDkiN357534RFbfwoCq6Ih4H+Dk0HvGo7Cy1dSs86lGvwgPBZgWgXyh vDshgdiDhdxNl/sEsp8Bmn9APA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:30:02 2026 by rpki-client