$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: esDX18DaRfyxPK9jjdeFSiQgy2vK8EqKI8g+CFMhdD8= Subject key identifier: 99:8F:89:AF:BD:B7:20:F6:33:93:B1:7E:2B:78:D0:06:28:2C:5C:89 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0A56 Signing time: Mon 22 Jun 2026 19:43:36 +0000 Manifest this update: Mon 22 Jun 2026 19:43:36 +0000 Manifest next update: Mon 29 Jun 2026 19:43:36 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: w1Pf9KmJjf7eSWVGx1piurljclpJ1CJdZf4VWLGecz0=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: mNeRqaSY4bVJ7ErHkgjVt3OEqspS9nVqduSxSH22Fmw=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: onxrfn2R6ig2K9q93zM3JJGyF8TFo8y2BhAaG52JL84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 19:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Jun 22 19:43:36 2026 GMT Not After : Jun 29 19:43:36 2026 GMT Subject: CN=6a399068-e1bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:13:18:a3:a3:d8:f6:1d:50:4f:bb:9d:ad:29: a1:7d:da:f9:e2:23:f5:2f:2d:59:5b:08:8f:9e:a6: 92:67:b0:e9:40:88:6e:f3:b4:e9:a6:17:89:ce:76: 45:9d:46:ea:1c:f0:9b:25:34:ff:ac:89:1a:a0:00: 91:40:19:0c:df:24:13:ab:7d:dc:e6:da:41:c5:36: cc:00:60:a5:4f:e3:8a:fc:49:c4:af:35:5b:3d:95: 9a:0f:53:04:f3:0e:13:bd:d5:27:3e:4a:05:00:cb: 4c:e9:a9:44:b1:13:c7:cf:50:2b:7c:87:e1:e4:c6: 9c:c9:f8:f1:e7:37:a5:25:01:df:6f:38:ac:5e:44: c6:fc:21:e9:7e:95:89:81:92:c9:06:ec:69:ec:7a: 51:28:09:4e:e3:9e:49:bf:2a:90:8b:a8:61:34:61: 36:3c:16:0c:98:f8:9f:27:54:43:15:39:9f:44:b6: af:c3:97:74:24:eb:4c:58:21:36:7f:f4:f0:f2:45: a5:c3:d4:4b:34:9e:98:c4:8f:12:00:35:a8:b4:2c: 3d:ad:e3:d8:a4:8a:fa:dd:b5:d8:64:0e:58:48:45: e1:1b:54:a4:64:b4:cf:80:ea:c0:a2:19:44:6b:3a: 49:0a:7d:01:6e:ac:5a:ae:6b:c9:ed:50:e6:07:3b: 7a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8F:89:AF:BD:B7:20:F6:33:93:B1:7E:2B:78:D0:06:28:2C:5C:89 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:2a:a9:dc:c7:87:66:03:e0:88:f2:04:cc:1d:46:d2:d8:f8: e4:09:21:ca:d5:36:c8:85:1c:6a:2f:1a:11:96:ac:96:9f:27: 07:da:16:74:ae:92:50:56:58:3f:22:ac:d5:50:c8:7b:55:8e: 5f:68:6c:c1:5e:20:a2:ff:06:8b:3d:70:70:5b:b2:81:9f:c6: 31:a1:b0:a9:4b:82:fd:dc:3a:2d:e9:92:a8:55:24:e8:88:c9: 61:80:97:9b:a6:ec:2f:f2:37:d0:d9:55:56:cc:85:74:bd:d9: 97:13:9a:74:3f:d3:8e:c5:8a:19:7d:02:33:7b:dc:b5:dc:5b: 82:bc:70:e2:58:78:d2:ae:01:85:de:6e:34:23:7e:45:cc:f7: e2:50:63:94:3c:40:b0:b9:11:4a:62:9a:38:8e:3f:71:9a:0d: d8:93:fa:56:06:72:75:06:99:1e:3f:8e:16:7f:d7:dc:d9:41: a3:04:bd:f4:13:c6:8f:86:5e:15:f7:19:4d:35:bf:d9:0a:46: 55:b8:05:a0:bb:57:69:5e:38:8e:ad:27:0d:ea:2f:20:3e:55: ec:e9:ba:f5:1e:e8:0b:a5:dd:1e:22:d6:16:77:18:03:1e:c4: 3a:71:7a:dd:ca:7a:f0:a2:7c:f6:70:5e:dc:c8:a1:01:64:ba: 84:4e:95:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjYwNjIyMTk0MzM2WhcNMjYwNjI5MTk0MzM2WjAYMRYwFAYD VQQDEw02YTM5OTA2OC1lMWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlBMYo6PY9h1QT7udrSmhfdr54iP1Ly1ZWwiPnqaSZ7DpQIhu87TppheJznZF nUbqHPCbJTT/rIkaoACRQBkM3yQTq33c5tpBxTbMAGClT+OK/EnErzVbPZWaD1ME 8w4TvdUnPkoFAMtM6alEsRPHz1ArfIfh5Macyfjx5zelJQHfbzisXkTG/CHpfpWJ gZLJBuxp7HpRKAlO455JvyqQi6hhNGE2PBYMmPifJ1RDFTmfRLavw5d0JOtMWCE2 f/Tw8kWlw9RLNJ6YxI8SADWotCw9rePYpIr63bXYZA5YSEXhG1SkZLTPgOrAohlE azpJCn0BbqxarmvJ7VDmBzt6NwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJmPia+9 tyD2M5Oxfit40AYoLFyJMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASyqp3MeHZgPgiPIEzB1G0tj45AkhytU2yIUcai8aEZaslp8nB9oWdK6SUFZY PyKs1VDIe1WOX2hswV4gov8Giz1wcFuygZ/GMaGwqUuC/dw6LemSqFUk6IjJYYCX m6bsL/I30NlVVsyFdL3ZlxOadD/TjsWKGX0CM3vctdxbgrxw4lh40q4Bhd5uNCN+ Rcz34lBjlDxAsLkRSmKaOI4/cZoN2JP6VgZydQaZHj+OFn/X3NlBowS99BPGj4Ze FfcZTTW/2QpGVbgFoLtXaV44jq0nDeovID5V7Om69R7oC6XdHiLWFncYAx7EOnF6 3cp68KJ89nBe3MihAWS6hE6VLQ== -----END CERTIFICATE-----Generated at Wed Jun 24 15:33:26 2026 by rpki-client