$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: FriDShDhdXJDZ+XpoWuep/tilSnnZs3/p6BxTuKe0j4= Subject key identifier: 65:B9:AC:90:B8:72:09:56:C2:8E:D8:11:9D:9C:D4:C5:E8:09:54:F9 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 054D Signing time: Thu 04 Jun 2026 16:28:02 +0000 Manifest this update: Thu 04 Jun 2026 16:28:01 +0000 Manifest next update: Thu 11 Jun 2026 16:28:01 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: uEl4nB6bIX9ZyZPUH3r6H44C8Pfdxu8ucUGogG+/9Gw=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: pPVg90RNjRjphrQIpFi1Dtq7Yfiqt2CKG2uE/Sw0pBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 16:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Jun 4 16:28:01 2026 GMT Not After : Jun 11 16:28:01 2026 GMT Subject: CN=6a21a791-28d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:23:58:54:1c:b5:e0:f5:8e:72:5b:d7:d6:48: bb:a8:d7:41:4a:35:36:1c:f5:70:a1:fd:c1:31:60: 4c:92:a1:49:8e:a5:36:1c:92:30:b4:d3:1f:19:a1: 33:3a:a9:ab:01:e6:54:97:d3:07:dd:6f:fe:7b:5e: c3:3a:df:fb:7a:bb:c6:83:14:fe:23:62:c6:b9:e3: d0:5a:71:4c:f7:bc:85:32:e7:e2:27:35:d4:31:2a: 99:3c:15:11:0a:d6:42:bb:d7:89:41:1f:f0:45:62: eb:83:4d:e4:7e:be:e0:e4:a1:89:44:11:1b:4b:b1: c2:6c:79:84:2d:60:d2:f3:82:5b:7e:fb:4d:88:ac: 8d:4f:b7:cc:3f:a1:6e:4d:f9:ca:b5:ef:25:d4:f7: d3:bc:93:77:f7:4b:93:46:a8:f3:47:ba:bf:90:02: 89:2a:2f:ad:20:88:00:6e:68:1b:0d:8f:37:4f:5e: 89:0e:e3:b1:44:63:2a:5c:4c:dc:00:0b:52:47:9d: 5d:93:20:8f:0f:1b:ee:a4:bf:e2:5f:65:d9:c8:9b: c5:9d:da:dc:25:2a:6b:5b:20:70:ea:68:1f:e8:11: 50:01:41:44:43:be:ab:bd:48:6b:a3:33:2d:31:44: 65:e0:44:38:ea:f1:05:ce:29:c3:17:4b:44:ff:3e: 9b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B9:AC:90:B8:72:09:56:C2:8E:D8:11:9D:9C:D4:C5:E8:09:54:F9 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:f9:02:82:ca:66:67:7b:53:f2:9b:8d:e0:61:c9:1a:b0:ec: 12:c8:1c:a6:aa:c2:d4:e7:23:cc:86:ef:86:9c:7e:d6:b9:df: 69:97:b0:12:37:07:05:89:19:55:9b:da:dd:87:ab:65:e9:c4: 9f:a2:f6:14:aa:40:45:ec:e7:4b:78:ab:f7:3a:9f:05:39:72: a9:db:eb:fa:37:77:a0:d6:88:cc:8a:57:a8:e8:01:aa:f1:89: 10:51:fb:2a:ce:74:6d:8e:56:89:c6:63:76:cc:bf:73:c9:22: 4e:c6:6a:0d:30:da:44:bc:2f:f5:c5:35:78:f2:6b:76:e0:36: 59:55:20:12:8f:8d:c8:5b:8a:e8:d7:a8:68:b9:64:e3:af:99: 16:88:a3:8a:49:27:85:7e:95:e5:a0:03:b2:ce:f0:3b:7b:dc: e2:c2:7d:72:4e:fc:be:cb:b4:a8:b3:96:42:53:71:db:d9:47: 43:b8:4b:89:32:d8:31:08:d4:61:ad:3e:80:97:f4:0c:95:32: 54:b8:51:0e:41:b2:d3:88:5b:77:f9:06:c0:31:ee:3b:78:38: b1:76:a6:7f:cb:6f:18:cb:fd:6c:08:c7:b4:2c:43:d9:7d:57: 99:76:bb:5d:6c:db:f7:3a:42:0c:c4:1c:29:28:d6:91:fd:77: 74:be:c2:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjYwNjA0MTYyODAxWhcNMjYwNjExMTYyODAxWjAYMRYwFAYD VQQDEw02YTIxYTc5MS0yOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCNYVBy14PWOclvX1ki7qNdBSjU2HPVwof3BMWBMkqFJjqU2HJIwtNMfGaEz OqmrAeZUl9MH3W/+e17DOt/7ervGgxT+I2LGuePQWnFM97yFMufiJzXUMSqZPBUR CtZCu9eJQR/wRWLrg03kfr7g5KGJRBEbS7HCbHmELWDS84JbfvtNiKyNT7fMP6Fu TfnKte8l1PfTvJN390uTRqjzR7q/kAKJKi+tIIgAbmgbDY83T16JDuOxRGMqXEzc AAtSR51dkyCPDxvupL/iX2XZyJvFndrcJSprWyBw6mgf6BFQAUFEQ76rvUhrozMt MURl4EQ46vEFzinDF0tE/z6bwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGW5rJC4 cglWwo7YEZ2c1MXoCVT5MB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlPkCgspmZ3tT8puN4GHJGrDsEsgcpqrC1OcjzIbvhpx+1rnfaZewEjcHBYkZ VZva3YerZenEn6L2FKpAReznS3ir9zqfBTlyqdvr+jd3oNaIzIpXqOgBqvGJEFH7 Ks50bY5WicZjdsy/c8kiTsZqDTDaRLwv9cU1ePJrduA2WVUgEo+NyFuK6NeoaLlk 46+ZFoijikknhX6V5aADss7wO3vc4sJ9ck78vsu0qLOWQlNx29lHQ7hLiTLYMQjU Ya0+gJf0DJUyVLhRDkGy04hbd/kGwDHuO3g4sXamf8tvGMv9bAjHtCxD2X1XmXa7 XWzb9zpCDMQcKSjWkf13dL7CrQ== -----END CERTIFICATE-----Generated at Sat Jun 6 12:12:21 2026 by rpki-client