$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft (raw, json) Hash identifier: 3S/QDcXcbNRvP1lL212DXSagVEJEL/e+HBtS7blEcu4= Subject key identifier: 26:B5:1B:D1:28:B7:52:FD:14:CD:D6:FA:08:52:BA:F5:CC:1A:D5:34 Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft Manifest number: 023F Signing time: Mon 01 Jun 2026 03:17:22 +0000 Manifest this update: Mon 01 Jun 2026 03:17:21 +0000 Manifest next update: Mon 08 Jun 2026 03:17:21 +0000 Files and hashes: 1: cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl (hash: ao53U4hmsnEU5MA6M5rkapjQ+6vo+s/MbxYVb4fh7eU=) 2: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (hash: gwP3PNE674NeJVzpcX/6dV+VmggMeTrL/+BFEHoqdPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540, serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: Jun 1 03:17:21 2026 GMT Not After : Jun 8 03:17:21 2026 GMT Subject: CN=6a1cf9c2-4904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4b:04:10:fc:b4:30:20:e1:15:81:38:51:0d: a2:be:c7:0e:07:fe:0e:37:cc:a9:58:34:c6:b5:c1: 49:d5:bc:cf:f4:ad:1a:c0:a8:4b:d8:be:64:9e:20: 87:58:51:a7:c3:d2:f4:c6:06:dd:31:64:10:5c:08: 05:0f:e0:8b:f7:43:96:43:99:c7:45:2e:42:f9:08: f6:5f:fb:a3:11:85:94:eb:5f:c2:77:73:b9:44:e5: e3:16:5f:e7:be:a2:7a:cd:ff:78:8e:66:b7:96:4f: fd:72:69:8d:36:36:e1:fa:be:05:7e:c2:06:55:9b: 0e:34:cb:3a:9d:60:9c:06:da:39:20:57:9c:fe:99: c8:0e:db:68:6e:be:98:db:ae:db:c6:e6:92:4a:2f: d1:8a:79:70:1b:3d:5b:67:2d:a5:1c:d3:38:d8:90: 10:68:17:82:74:e4:b7:a5:42:80:91:ab:db:8e:aa: 68:9d:ab:8b:0e:1a:52:c0:86:a9:11:3a:ce:85:eb: 2b:66:b1:d3:14:3e:f0:b0:b6:31:1a:e4:30:f8:3e: 26:91:1d:07:24:e1:2e:71:ab:bd:4b:7d:7c:d7:0a: f8:09:82:ab:32:45:e7:ca:aa:43:5e:47:2d:21:88: e9:c8:ab:ed:40:de:d3:66:a7:53:fc:f3:21:a8:15: 13:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B5:1B:D1:28:B7:52:FD:14:CD:D6:FA:08:52:BA:F5:CC:1A:D5:34 X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:bc:24:62:4c:3d:54:79:25:4a:2f:32:f7:5b:7c:bb:ac:95: 31:c3:7b:88:ed:3a:47:ad:07:b4:40:8c:30:c6:eb:f6:c3:86: 4f:59:4e:d3:bb:fc:2c:1a:0e:e3:c2:ae:85:6c:ab:0e:26:39: 4f:19:c2:6e:d0:76:d9:8c:74:2b:9f:fe:a5:8b:85:db:45:0b: a2:d9:1d:83:5d:14:ad:f0:be:8f:55:5f:db:74:0a:52:18:5c: 9f:de:d5:d8:d6:6a:af:c2:75:33:f8:3b:80:0b:00:13:33:df: 17:0a:f1:7b:74:5e:bd:ef:ca:d5:b5:75:58:4f:f9:6d:ee:42: 0f:e8:80:26:0d:d2:65:10:f1:fe:25:b1:91:72:d8:0f:2e:51: 88:dd:f4:c0:ed:fa:82:e7:10:0f:86:03:77:a2:40:66:15:12: 03:92:18:11:2d:74:c7:53:e6:9f:fd:fc:24:0d:8e:a2:3d:63: bf:1b:29:0a:bc:b2:31:5d:04:64:e1:cd:e2:c2:06:56:2d:2e: 50:1b:3c:60:1e:ae:a0:86:bb:e6:83:d8:cb:1b:e0:7d:e7:eb: 59:aa:8b:3c:6e:ef:34:38:4f:40:a3:d7:28:a4:97:82:e7:6c: 75:ee:ec:9b:a0:2a:d8:38:11:ea:62:ef:cf:54:ed:52:3b:23: 43:ae:ba:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjYwNjAxMDMxNzIxWhcNMjYwNjA4MDMxNzIxWjAYMRYwFAYD VQQDEw02YTFjZjljMi00OTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUsEEPy0MCDhFYE4UQ2ivscOB/4ON8ypWDTGtcFJ1bzP9K0awKhL2L5kniCH WFGnw9L0xgbdMWQQXAgFD+CL90OWQ5nHRS5C+Qj2X/ujEYWU61/Cd3O5ROXjFl/n vqJ6zf94jma3lk/9cmmNNjbh+r4FfsIGVZsONMs6nWCcBto5IFec/pnIDttobr6Y 267bxuaSSi/RinlwGz1bZy2lHNM42JAQaBeCdOS3pUKAkavbjqponauLDhpSwIap ETrOhesrZrHTFD7wsLYxGuQw+D4mkR0HJOEucau9S3181wr4CYKrMkXnyqpDXkct IYjpyKvtQN7TZqdT/PMhqBUTVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCa1G9Eo t1L9FM3W+ghSuvXMGtU0MB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjU0MC9EOTdBOTVCQ0Y4ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3Ny SXV6ZG1sTUJMdzV2RzZHNXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUbwkYkw9VHklSi8y91t8u6yVMcN7iO06R60HtECMMMbr9sOGT1lO07v8LBoO 48KuhWyrDiY5TxnCbtB22Yx0K5/+pYuF20ULotkdg10UrfC+j1Vf23QKUhhcn97V 2NZqr8J1M/g7gAsAEzPfFwrxe3Reve/K1bV1WE/5be5CD+iAJg3SZRDx/iWxkXLY Dy5RiN30wO36gucQD4YDd6JAZhUSA5IYES10x1Pmn/38JA2Ooj1jvxspCryyMV0E ZOHN4sIGVi0uUBs8YB6uoIa75oPYyxvgfefrWaqLPG7vNDhPQKPXKKSXgudsde7s m6Aq2DgR6mLvz1TtUjsjQ6666g== -----END CERTIFICATE-----Generated at Thu Jun 4 12:25:56 2026 by rpki-client