$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft File: g4-9CzleqQcGxsKJrCaw1zigQkE.mft (raw, json) Hash identifier: +5etYcQXi5qa2yLTththOUriiotVj36FLjuGg0T/oMw= Subject key identifier: D1:E2:33:16:BF:D2:D6:47:D5:BE:56:CC:DD:A8:7D:DC:20:6E:6F:4A Authority key identifier: 83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 Certificate issuer: /CN=A917BB9A/serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft Manifest number: 0111 Signing time: Mon 01 Jun 2026 06:51:40 +0000 Manifest this update: Mon 01 Jun 2026 06:51:39 +0000 Manifest next update: Mon 08 Jun 2026 06:51:39 +0000 Files and hashes: 1: g4-9CzleqQcGxsKJrCaw1zigQkE.crl (hash: Tq62MMnBpyzNBF44NFvYSFVMY7QYxpgA1WlLZKTtzw4=) 2: 0CBF3110D59011EFB76D6824C4F9AE02.roa (hash: HUtXLhQ2zyP4LJGfZauEnR2MPzei0tQ4qoL8B66B5TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB9A, serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Validity Not Before: Jun 1 06:51:39 2026 GMT Not After : Jun 8 06:51:39 2026 GMT Subject: CN=6a1d2bfc-3770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:26:c0:d9:e4:fb:8d:ca:e4:69:07:e6:d3:17: 31:06:b1:4a:73:02:c6:9f:9e:99:92:61:35:6b:44: d2:d2:61:a1:44:29:99:ef:f6:63:17:f5:3d:28:9b: 36:05:9d:f8:ba:c1:cf:bc:ad:12:e3:54:02:44:76: f3:20:99:c8:37:77:aa:1e:f4:74:31:c0:d1:e0:c9: 47:71:27:08:88:4e:ca:91:24:be:8d:3b:c7:3d:8d: 64:ea:a2:46:51:2d:60:33:23:46:7a:34:db:bd:13: f7:50:dc:7d:85:51:61:68:ea:3b:bb:f7:9d:c6:cd: a6:4e:87:92:f2:c6:de:80:da:f8:09:40:59:a1:58: 33:69:e5:79:be:ba:e9:98:56:61:e0:96:5d:0e:5d: bf:f7:74:51:71:15:25:1c:a6:70:8d:d2:9a:a2:61: 68:5e:cd:8b:55:84:03:b8:53:a6:66:1e:bc:81:42: 17:48:49:e9:55:fb:d9:78:3e:26:ce:93:b8:e9:62: 55:46:1d:9e:a2:3c:a0:dc:12:b9:44:3c:12:af:be: cb:05:8b:11:bb:3f:0d:ba:b1:39:e7:49:a8:36:a6: 79:38:f4:1b:f6:fe:09:b6:24:44:65:7a:e2:24:10: 46:a8:66:fd:2f:5e:08:ae:de:0f:e1:18:8c:54:5d: cf:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E2:33:16:BF:D2:D6:47:D5:BE:56:CC:DD:A8:7D:DC:20:6E:6F:4A X509v3 Authority Key Identifier: keyid:83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:2b:44:3f:25:02:2d:da:8b:f1:1a:14:1f:eb:7f:1e:78:95: 5e:ae:22:11:43:a9:41:f8:4a:30:fc:50:9a:bf:f1:51:20:66: aa:e6:02:59:26:3d:37:ef:b9:1a:0e:bf:b0:d2:00:f8:05:9a: 0b:d7:08:d5:78:62:7f:34:28:68:7e:88:9f:12:e4:77:af:f2: 45:31:43:81:e8:3c:1b:f1:79:99:b8:ad:4e:13:ca:11:fe:52: 7a:41:a3:d1:2a:ae:37:ed:f4:89:16:4e:e6:3e:8c:81:f0:5c: bf:82:ad:41:88:96:11:c2:12:75:7e:f0:42:c9:0c:40:d9:b2: 60:f0:2f:7f:32:52:f8:ec:9b:a5:c0:b4:26:06:b1:4e:11:60: 70:e8:34:40:fd:ec:61:4b:bc:e0:3e:12:2e:d5:0c:91:ba:8a: c5:68:e2:9d:bb:e1:fe:d1:3e:14:94:7f:34:e6:56:85:0e:f0: 77:d0:97:7d:db:25:15:ef:b5:50:be:11:14:fc:ac:69:77:68: e7:41:ab:f1:4f:dd:31:d4:05:ec:34:ba:23:ef:10:3f:d9:86: b7:a4:32:26:ef:f6:8e:87:d0:aa:2b:b8:e9:d1:0b:fa:2f:b0: 2e:b2:d0:98:a0:8b:aa:2c:1d:6f:51:4a:2a:f9:c7:1b:bd:91: 87:aa:88:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCOUExMTAvBgNVBAUTKDgzOEZCRDBCMzk1RUE5MDcwNkM2QzI4OUFDMjZCMEQ3 MzhBMDQyNDEwHhcNMjYwNjAxMDY1MTM5WhcNMjYwNjA4MDY1MTM5WjAYMRYwFAYD VQQDEw02YTFkMmJmYy0zNzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SbA2eT7jcrkaQfm0xcxBrFKcwLGn56ZkmE1a0TS0mGhRCmZ7/ZjF/U9KJs2 BZ34usHPvK0S41QCRHbzIJnIN3eqHvR0McDR4MlHcScIiE7KkSS+jTvHPY1k6qJG US1gMyNGejTbvRP3UNx9hVFhaOo7u/edxs2mToeS8sbegNr4CUBZoVgzaeV5vrrp mFZh4JZdDl2/93RRcRUlHKZwjdKaomFoXs2LVYQDuFOmZh68gUIXSEnpVfvZeD4m zpO46WJVRh2eojyg3BK5RDwSr77LBYsRuz8NurE550moNqZ5OPQb9v4JtiREZXri JBBGqGb9L14Irt4P4RiMVF3PwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNHiMxa/ 0tZH1b5WzN2ofdwgbm9KMB8GA1UdIwQYMBaAFIOPvQs5XqkHBsbCiawmsNc4oEJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI5QS80MTM5MEJDQUNG RjMxMUVGOTA2MkU1MjFDNEY5QUUwMi9nNC05Q3psZXFRY0d4c0tKckNhdzF6aWdR a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0LTlDemxlcVFjR3hzS0pyQ2F3MXppZ1FrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI5QS80MTM5MEJDQUNGRjMxMUVGOTA2MkU1MjFDNEY5QUUwMi9nNC05Q3psZXFR Y0d4c0tKckNhdzF6aWdRa0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzCtEPyUCLdqL8RoUH+t/HniVXq4iEUOpQfhKMPxQmr/xUSBmquYCWSY9N++5 Gg6/sNIA+AWaC9cI1XhifzQoaH6InxLkd6/yRTFDgeg8G/F5mbitThPKEf5SekGj 0SquN+30iRZO5j6MgfBcv4KtQYiWEcISdX7wQskMQNmyYPAvfzJS+OybpcC0Jgax ThFgcOg0QP3sYUu84D4SLtUMkbqKxWjinbvh/tE+FJR/NOZWhQ7wd9CXfdslFe+1 UL4RFPysaXdo50Gr8U/dMdQF7DS6I+8QP9mGt6QyJu/2jofQqiu46dEL+i+wLrLQ mKCLqiwdb1FKKvnHG72Rh6qI6g== -----END CERTIFICATE-----Generated at Tue Jun 2 21:20:03 2026 by rpki-client