$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: C/djbIvkWoZGb+2o55eOb98RGKY362ReprJQ3nB04PI= Subject key identifier: 15:43:49:B0:B8:5A:59:78:68:F5:C8:5B:B5:EE:8E:13:19:1C:BF:B2 Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 3584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 3562 Signing time: Mon 22 Jun 2026 14:44:37 +0000 Manifest this update: Mon 22 Jun 2026 14:44:36 +0000 Manifest next update: Mon 29 Jun 2026 14:44:36 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: QJjC8hOzA9ThxrSQMyEYhlrtzgcNt4N9NDJWGwm2T+c=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: cbOF25KS3Ii1neQB3lO33xPaJIbgxTebcwnMlxfjqmE=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: wkiRfCu/XLYyXw4TOm6YezOpImuhMfUU+dENf0r96zI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 14:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13700 (0x3584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D, serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Jun 22 14:44:36 2026 GMT Not After : Jun 29 14:44:36 2026 GMT Subject: CN=6a394a54-5e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:bb:f9:c0:25:75:7a:a4:e1:ad:fb:6c:ce:ba: bf:b1:a0:86:a4:a0:c0:39:3d:48:a9:cb:41:ab:8d: be:d5:17:b8:77:49:7b:6b:d6:5c:b5:f1:22:c4:00: 36:a2:43:85:50:26:89:1e:14:92:e6:62:5a:ae:35: d7:d5:81:1a:b9:cf:f2:94:bf:0d:0c:d3:ae:dd:dc: 09:42:58:3f:58:7d:65:8c:0f:9c:73:cc:9e:c6:e4: 0d:10:7c:39:f0:6d:49:5e:8c:51:e0:d5:7a:bf:dc: d2:ec:b5:d9:d9:55:0a:3f:e2:42:75:03:1d:8d:eb: 91:d3:70:51:27:13:96:db:70:46:32:46:1b:38:fd: a1:0f:4b:90:cb:56:ef:2f:f0:e8:ff:2a:70:6d:e6: ae:f6:34:77:b0:d4:0c:f8:5f:99:23:fb:36:b5:22: 45:60:8a:d5:84:9a:e2:a1:8b:2a:af:29:d2:77:4b: 0f:27:f3:cf:64:13:62:ac:5e:8a:2d:66:4f:33:e1: f1:ec:76:88:93:75:a8:61:f6:71:f8:c1:67:a7:66: 42:fe:71:42:7e:d0:39:e7:4f:0b:bc:c8:c1:eb:e8: 1a:31:93:ce:35:6a:8d:cd:d1:03:8a:aa:18:4c:5c: f9:30:23:81:08:a5:5a:48:0a:6c:4f:b7:da:0f:32: d8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:43:49:B0:B8:5A:59:78:68:F5:C8:5B:B5:EE:8E:13:19:1C:BF:B2 X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:be:b6:61:5a:7f:1d:35:d8:32:6c:4d:77:e9:58:79:e6:a9: 64:6d:2e:ac:8a:06:10:dd:41:1f:3e:c6:2a:78:53:46:8d:f5: e6:40:84:0b:6e:a5:1a:50:10:14:1e:3d:0f:31:65:19:0a:7b: 93:d0:07:5a:60:a1:23:b1:cf:59:81:ba:d3:65:4e:98:96:28: 40:7e:a2:f1:1e:a1:cf:9c:47:27:ac:6f:ac:e4:0a:b4:c8:a7: 95:0f:d8:0e:f4:b3:5e:2e:e9:b6:76:4e:86:83:e2:dc:3d:96: d8:da:cf:4d:f3:b6:07:7b:28:73:bd:cc:8f:5d:a0:e5:47:f7: 1b:e8:7b:3a:b4:da:b2:e9:da:d2:d8:6c:84:63:23:ad:00:ae: a5:28:bd:cb:95:23:bb:1d:d7:2d:ee:8c:34:b8:62:8e:0e:ef: 06:d7:ba:a1:b5:a2:78:1a:06:6c:59:f6:ba:e4:41:5e:bd:06: 19:93:a6:ff:1d:af:60:a6:b9:b5:24:ec:b9:2b:6d:fd:a0:41: 73:48:64:aa:b4:d7:3b:48:95:b1:2f:27:78:03:79:a3:d7:ab: 0c:04:ab:06:c1:02:00:d0:9a:7b:3d:fe:a9:37:66:2c:8b:c4: b8:b6:25:8d:3d:e4:f8:df:82:63:ee:5b:42:21:80:3b:fc:4b: 2c:f0:c9:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjYwNjIyMTQ0NDM2WhcNMjYwNjI5MTQ0NDM2WjAYMRYwFAYD VQQDEw02YTM5NGE1NC01ZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkLv5wCV1eqThrftszrq/saCGpKDAOT1IqctBq42+1Re4d0l7a9ZctfEixAA2 okOFUCaJHhSS5mJarjXX1YEauc/ylL8NDNOu3dwJQlg/WH1ljA+cc8yexuQNEHw5 8G1JXoxR4NV6v9zS7LXZ2VUKP+JCdQMdjeuR03BRJxOW23BGMkYbOP2hD0uQy1bv L/Do/ypwbeau9jR3sNQM+F+ZI/s2tSJFYIrVhJrioYsqrynSd0sPJ/PPZBNirF6K LWZPM+Hx7HaIk3WoYfZx+MFnp2ZC/nFCftA5508LvMjB6+gaMZPONWqNzdEDiqoY TFz5MCOBCKVaSApsT7faDzLYgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBVDSbC4 Wll4aPXIW7XujhMZHL+yMB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtL62YVp/HTXYMmxNd+lYeeapZG0urIoGEN1BHz7GKnhTRo315kCEC26lGlAQ FB49DzFlGQp7k9AHWmChI7HPWYG602VOmJYoQH6i8R6hz5xHJ6xvrOQKtMinlQ/Y DvSzXi7ptnZOhoPi3D2W2NrPTfO2B3soc73Mj12g5Uf3G+h7OrTasuna0thshGMj rQCupSi9y5Ujux3XLe6MNLhijg7vBte6obWieBoGbFn2uuRBXr0GGZOm/x2vYKa5 tSTsuStt/aBBc0hkqrTXO0iVsS8neAN5o9erDASrBsECANCaez3+qTdmLIvEuLYl jT3k+N+CY+5bQiGAO/xLLPDJVA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:16:11 2026 by rpki-client