$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: OaZVbQeSFUmlHSdMQE8QmHGCP91jfbd5DzJplZfN2w0= Subject key identifier: 6B:D1:FC:F7:68:96:65:C7:58:B0:86:9D:3E:2F:0D:D5:70:0B:97:26 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 01E0 Signing time: Tue 23 Jun 2026 03:40:33 +0000 Manifest this update: Tue 23 Jun 2026 03:40:32 +0000 Manifest next update: Tue 30 Jun 2026 03:40:32 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: qSAhujDStbNQXDHNsN2VjFX3GwF2ItMSi1uTtIUilCg=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: XfdGm7eKGJG4mI4OlbsmvCWQLht74XpIFUZS0ZbYwl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 03:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Jun 23 03:40:32 2026 GMT Not After : Jun 30 03:40:32 2026 GMT Subject: CN=6a3a0030-1640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d7:7c:4f:cb:23:17:cd:45:39:15:0f:10:7c: 69:3c:ad:27:b6:99:5b:a9:dc:b4:14:22:0d:45:8e: d5:ee:d0:ca:c2:29:6a:f0:1f:60:4b:6a:b3:5a:c5: 97:b3:f9:17:65:ad:43:91:5d:98:6b:34:73:76:38: 5f:5f:ba:10:d4:1e:7f:83:fd:b0:0e:87:61:e7:cb: 35:4a:0c:6f:a8:5b:bc:a9:6f:cc:79:f9:55:5f:1f: 71:9b:73:97:05:18:b6:01:a4:f3:c6:ca:ed:b2:5e: 77:e6:37:d0:fb:4f:cb:3d:ac:31:56:c6:95:6c:74: d9:00:38:87:ba:b7:90:8e:f8:50:c6:dd:98:b0:fc: a7:5c:ee:4d:60:f4:29:6c:6f:99:15:b8:1d:cb:ea: 1a:17:95:92:be:61:08:a6:5f:5d:82:5b:82:bc:5d: c1:0b:da:e0:a8:96:f2:bd:70:82:d2:3b:c0:59:f5: 49:66:a6:3b:c9:d9:80:60:3e:d6:00:b3:ef:da:22: 39:00:bd:c5:dd:a4:1d:00:24:0d:33:5f:63:c6:a4: c9:4d:6d:e3:f9:ed:5e:c5:4c:04:80:dc:d1:a9:f6: 93:ad:b2:5c:9e:d6:ea:3f:95:08:ba:ee:98:64:21: 40:5b:35:b6:67:c0:62:49:28:fc:11:ee:2c:3d:2e: 79:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D1:FC:F7:68:96:65:C7:58:B0:86:9D:3E:2F:0D:D5:70:0B:97:26 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:5b:bc:28:61:1c:f9:ef:79:4f:0a:b8:ea:15:04:28:1d:20: 8c:34:de:ec:5d:2b:87:03:1c:8a:51:0a:4e:dc:04:ce:6c:1a: 15:28:8f:2b:fd:e0:70:8f:c3:b1:66:4a:7e:69:61:6b:f5:1e: 73:34:6c:6a:d2:dd:04:07:de:2e:18:df:50:61:eb:cc:92:e6: 76:63:60:6a:8e:98:bd:e9:b9:43:7c:1b:24:6b:e2:6d:7d:6c: 03:16:5f:12:6c:d4:e2:cd:9c:12:0f:65:01:61:8a:6d:b5:7b: 41:89:14:28:ba:79:e2:17:20:99:bf:b2:4a:a3:d3:66:49:c2: 5f:11:29:38:16:9a:c1:ef:68:43:60:70:8a:ad:f5:45:36:39: 17:27:a1:e7:2d:cc:59:e3:85:c7:32:83:08:f1:9d:b4:1b:a9: b8:4c:78:72:e8:4d:66:2f:b7:50:01:9a:4e:64:27:7c:12:77: b7:15:c8:05:3f:b6:95:7d:c7:46:8e:b0:78:74:ce:b0:1b:92: 29:0f:c3:95:19:73:d2:94:8f:3f:1d:5f:57:1d:69:1c:f2:23: 79:22:bc:1f:ef:ef:68:5d:06:da:f9:1f:43:b7:e6:e2:1a:7c: ad:4d:36:ed:99:c9:5b:df:ae:71:bc:ef:1f:b4:e6:38:e8:0b: a5:68:6e:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjYwNjIzMDM0MDMyWhcNMjYwNjMwMDM0MDMyWjAYMRYwFAYD VQQDEw02YTNhMDAzMC0xNjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNd8T8sjF81FORUPEHxpPK0ntplbqdy0FCINRY7V7tDKwilq8B9gS2qzWsWX s/kXZa1DkV2YazRzdjhfX7oQ1B5/g/2wDodh58s1SgxvqFu8qW/MeflVXx9xm3OX BRi2AaTzxsrtsl535jfQ+0/LPawxVsaVbHTZADiHureQjvhQxt2YsPynXO5NYPQp bG+ZFbgdy+oaF5WSvmEIpl9dgluCvF3BC9rgqJbyvXCC0jvAWfVJZqY7ydmAYD7W ALPv2iI5AL3F3aQdACQNM19jxqTJTW3j+e1exUwEgNzRqfaTrbJcntbqP5UIuu6Y ZCFAWzW2Z8BiSSj8Ee4sPS55zQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGvR/Pdo lmXHWLCGnT4vDdVwC5cmMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPlu8KGEc+e95Twq46hUEKB0gjDTe7F0rhwMcilEKTtwEzmwaFSiPK/3gcI/D sWZKfmlha/UeczRsatLdBAfeLhjfUGHrzJLmdmNgao6Yvem5Q3wbJGvibX1sAxZf EmzU4s2cEg9lAWGKbbV7QYkUKLp54hcgmb+ySqPTZknCXxEpOBaawe9oQ2Bwiq31 RTY5Fyeh5y3MWeOFxzKDCPGdtBupuEx4cuhNZi+3UAGaTmQnfBJ3txXIBT+2lX3H Ro6weHTOsBuSKQ/DlRlz0pSPPx1fVx1pHPIjeSK8H+/vaF0G2vkfQ7fm4hp8rU02 7ZnJW9+ucbzvH7TmOOgLpWhu4A== -----END CERTIFICATE-----Generated at Wed Jun 24 11:29:01 2026 by rpki-client