$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: pNSzezzeHrRe2c4XSNInHB7UdrcJGPVXwrgeeROawGY= Subject key identifier: B9:B0:64:C6:68:DB:38:97:B5:F7:D6:17:35:17:BC:BF:31:EE:5C:CF Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 01C9 Signing time: Mon 01 Jun 2026 04:32:59 +0000 Manifest this update: Mon 01 Jun 2026 04:32:58 +0000 Manifest next update: Mon 08 Jun 2026 04:32:58 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: T5drzv7LlGIwRBGPLagyEO/Y4LQNHvEq4C3NaPmwECY=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: kzX0teoGqCYcrXmXpjad2Lv+QKDn7uXbylM76fvPiSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Jun 1 04:32:58 2026 GMT Not After : Jun 8 04:32:58 2026 GMT Subject: CN=6a1d0b7b-369b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b3:14:bd:a0:e8:03:a4:2c:91:84:ff:41:5e: a7:bd:ee:ff:22:0b:f0:8e:0c:aa:e5:44:02:c8:c5: 5b:e4:83:db:59:30:0b:e2:92:db:2a:d3:57:d3:61: 34:38:5d:62:44:42:e0:73:91:11:ba:16:cd:d0:11: a6:be:e2:1a:c4:1c:d5:81:a3:8f:be:c7:4b:26:ba: bc:18:87:af:15:9b:e5:3c:34:ba:ac:e8:50:05:db: a4:fd:1a:c9:f4:6b:d9:5e:29:b0:c4:a7:70:0d:8d: b3:f0:49:90:93:3f:08:dd:35:8f:79:8e:f0:8c:7a: 7d:54:61:05:7f:e1:ab:77:53:4e:2f:05:8d:55:36: fd:08:54:2f:f4:15:7d:f3:49:7f:0b:19:7c:5b:a3: 5a:9d:9b:4a:9e:38:4f:15:2d:9f:06:cb:00:61:1e: a8:60:2d:4c:b7:d4:be:63:1d:23:70:26:d3:39:9b: 20:15:4c:a1:64:fa:ae:b4:a5:b8:c1:8f:da:fa:be: 5d:ce:f7:c6:09:13:bd:a8:6d:a0:2d:ab:cc:5e:7e: 44:a7:d7:82:33:54:dc:66:ea:ce:a3:2c:3f:2d:04: b2:4b:9f:0b:a5:9c:3c:58:f8:b8:cf:b9:52:f1:81: 4a:7a:5f:08:d4:a7:4a:63:63:d1:ff:2c:1b:a7:c6: 1b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B0:64:C6:68:DB:38:97:B5:F7:D6:17:35:17:BC:BF:31:EE:5C:CF X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ca:39:98:56:33:3b:a4:0d:02:b3:23:9c:ef:91:b3:a1:81: 19:49:09:37:c1:52:c0:7a:62:c7:74:d9:49:ff:71:84:96:fb: 5f:4b:39:1f:da:fe:6c:33:85:a8:46:f1:c7:cf:d4:32:7a:b2: 5a:ad:35:31:a5:a6:57:e0:47:9d:d8:dc:9c:b8:f0:c9:c2:4f: 6a:a7:01:16:6f:9e:e6:50:d4:37:9e:41:81:4d:1d:72:b6:a5: 1a:95:17:74:e9:64:dd:e1:3e:ec:98:71:1d:87:7c:d4:38:89: 3f:a3:2a:71:72:ef:aa:cf:be:c3:1c:89:eb:21:6b:62:5e:9b: c7:50:98:74:32:56:be:8d:3a:cf:8e:64:d2:4d:c3:92:da:d3: 5a:e9:f4:3f:7b:98:eb:4f:53:da:4f:e2:da:03:18:06:c9:11: a3:ce:9b:30:52:3e:ab:4f:f6:3a:33:e5:58:9f:5b:93:83:d1: 9f:4a:ba:fd:2c:ea:24:19:99:cf:c6:bd:9f:d6:f4:2e:49:49: 26:cc:27:25:7e:34:9e:fb:ac:6d:b3:15:6a:7d:27:82:4f:ca: 27:18:8f:a3:3f:b5:e0:9f:54:93:61:44:dd:18:2b:f1:fc:47: 51:fb:a8:40:f3:3d:b4:f4:e9:2b:f3:05:ed:32:91:b4:82:10: fd:d9:5b:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjYwNjAxMDQzMjU4WhcNMjYwNjA4MDQzMjU4WjAYMRYwFAYD VQQDEw02YTFkMGI3Yi0zNjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7MUvaDoA6QskYT/QV6nve7/Igvwjgyq5UQCyMVb5IPbWTAL4pLbKtNX02E0 OF1iRELgc5ERuhbN0BGmvuIaxBzVgaOPvsdLJrq8GIevFZvlPDS6rOhQBduk/RrJ 9GvZXimwxKdwDY2z8EmQkz8I3TWPeY7wjHp9VGEFf+Grd1NOLwWNVTb9CFQv9BV9 80l/Cxl8W6NanZtKnjhPFS2fBssAYR6oYC1Mt9S+Yx0jcCbTOZsgFUyhZPqutKW4 wY/a+r5dzvfGCRO9qG2gLavMXn5Ep9eCM1TcZurOoyw/LQSyS58LpZw8WPi4z7lS 8YFKel8I1KdKY2PR/ywbp8YboQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLmwZMZo 2ziXtffWFzUXvL8x7lzPMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi8o5mFYzO6QNArMjnO+Rs6GBGUkJN8FSwHpix3TZSf9xhJb7X0s5H9r+bDOF qEbxx8/UMnqyWq01MaWmV+BHndjcnLjwycJPaqcBFm+e5lDUN55BgU0dcralGpUX dOlk3eE+7JhxHYd81DiJP6MqcXLvqs++wxyJ6yFrYl6bx1CYdDJWvo06z45k0k3D ktrTWun0P3uY609T2k/i2gMYBskRo86bMFI+q0/2OjPlWJ9bk4PRn0q6/SzqJBmZ z8a9n9b0LklJJswnJX40nvusbbMVan0ngk/KJxiPoz+14J9Uk2FE3Rgr8fxHUfuo QPM9tPTpK/MF7TKRtIIQ/dlbug== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:28 2026 by rpki-client