$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: pXX7PWcV2XKE9UwF7X4xYFvRZBPK1y7Z+i6Imb29VP4= Subject key identifier: 98:8E:6A:72:28:14:E1:39:94:44:C4:F2:F0:58:E8:23:2D:83:F7:13 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 01CE Signing time: Thu 11 Jun 2026 06:02:07 +0000 Manifest this update: Thu 11 Jun 2026 06:02:07 +0000 Manifest next update: Thu 18 Jun 2026 06:02:07 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: E2DU6QhxWlJ5UbKnHDBnVMQiyJH2Ye8bnqWuG5Nx+Xw=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: gXURQ3TI01OPFheyWVk20K8W06Uu/H87clLm9KAplj4=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: e+A9R6047fz/CtRSSMnfQGJqOvNAoPOsGN6eczRG5bA=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: zRLwbdLjJcZ9xIvEJX9pjeEu223B0K+u9rS591OrK1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 06:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Jun 11 06:02:07 2026 GMT Not After : Jun 18 06:02:07 2026 GMT Subject: CN=6a2a4f5f-247c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9c:9a:74:55:1e:99:ba:6b:d4:b8:46:87:dd: c4:aa:d1:cd:1e:cf:79:8c:27:0c:6a:6d:f4:d0:da: bb:1f:5a:0d:b7:88:36:57:98:86:8d:3c:d4:56:25: 8a:30:26:47:00:8b:b2:f5:7c:0d:3a:fb:cb:dd:c2: 7b:09:da:95:95:ac:44:1d:d6:7f:1e:41:92:0f:5a: 75:fd:bf:aa:89:d6:00:5a:65:93:83:6d:9a:af:bd: e3:43:4c:9f:52:59:b1:6d:d0:3f:46:3d:6c:54:5f: 42:e2:ba:02:87:e7:1e:ba:97:04:25:36:89:4e:52: 22:ce:45:e8:5e:c1:c5:a6:73:c0:36:c9:f5:7b:65: 55:81:77:1e:d0:a1:6d:3a:98:fd:97:d2:04:6c:5e: 0b:f2:fe:81:96:6f:7c:bf:a5:1c:c0:1a:0e:63:87: 5b:83:9b:9e:4d:96:d1:73:73:44:66:cf:62:ec:d9: 49:7c:e9:d6:a5:37:e2:05:96:a3:e8:1f:7b:13:19: 4c:4a:28:05:08:0c:fc:0e:f5:f6:1b:72:0b:d6:1f: 74:db:60:8f:ae:2f:f8:34:d3:e6:a1:64:08:2f:d0: ac:a3:cd:59:6e:16:64:dd:cf:4a:61:a7:8e:93:8e: 57:ed:3c:ef:fd:9d:7f:10:b6:ac:09:e3:a5:0b:c7: fa:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8E:6A:72:28:14:E1:39:94:44:C4:F2:F0:58:E8:23:2D:83:F7:13 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5f:ef:61:5c:24:59:7c:23:bf:ff:e6:68:74:59:48:b9:8d: de:d7:6b:e3:a0:79:bf:03:07:90:be:ad:e6:46:07:f9:3d:e5: 0a:96:4c:49:da:cc:8c:99:8f:6b:63:ff:62:8a:89:53:16:10: ac:5f:94:6d:c1:8b:5a:78:6e:c3:55:9e:5b:a4:3a:a5:46:1d: 7e:2a:a8:c9:3b:d6:ec:59:7b:c0:4c:cc:12:ca:cd:7c:22:10: 7d:ae:2f:89:59:c0:95:4f:28:da:8e:72:85:dc:86:10:f0:55: a0:a6:a6:26:ca:88:b1:e2:32:a0:67:90:3d:d6:99:ab:b1:01: 25:cf:ef:ae:4b:63:9f:a8:47:ba:e8:3a:4f:36:3f:58:c6:d3: 7c:0b:d8:e4:24:d6:5a:c6:02:0a:f2:3d:b6:c1:b1:6b:44:9e: 49:6b:41:62:0a:be:95:3c:0a:db:51:66:6c:ae:08:62:a4:cc: 31:56:be:f1:c5:1a:30:3b:63:fa:fa:98:8d:0d:eb:50:d6:a9: 3c:d2:a4:6a:ce:b1:77:4c:31:f9:c2:cc:f6:c4:22:d3:5b:21: e8:c8:d3:af:10:64:2d:d7:19:65:c3:c5:d4:71:2d:7e:03:f9: 44:bb:38:e3:51:53:f0:17:68:db:7d:6b:14:c2:ab:54:e7:8e: 43:bb:44:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjYwNjExMDYwMjA3WhcNMjYwNjE4MDYwMjA3WjAYMRYwFAYD VQQDEw02YTJhNGY1Zi0yNDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZyadFUembpr1LhGh93EqtHNHs95jCcMam300Nq7H1oNt4g2V5iGjTzUViWK MCZHAIuy9XwNOvvL3cJ7CdqVlaxEHdZ/HkGSD1p1/b+qidYAWmWTg22ar73jQ0yf UlmxbdA/Rj1sVF9C4roCh+ceupcEJTaJTlIizkXoXsHFpnPANsn1e2VVgXce0KFt Opj9l9IEbF4L8v6Blm98v6UcwBoOY4dbg5ueTZbRc3NEZs9i7NlJfOnWpTfiBZaj 6B97ExlMSigFCAz8DvX2G3IL1h9022CPri/4NNPmoWQIL9Cso81ZbhZk3c9KYaeO k45X7Tzv/Z1/ELasCeOlC8f6UQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJiOanIo FOE5lETE8vBY6CMtg/cTMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXF/vYVwkWXwjv//maHRZSLmN3tdr46B5vwMHkL6t5kYH+T3lCpZMSdrMjJmP a2P/YoqJUxYQrF+UbcGLWnhuw1WeW6Q6pUYdfiqoyTvW7Fl7wEzMEsrNfCIQfa4v iVnAlU8o2o5yhdyGEPBVoKamJsqIseIyoGeQPdaZq7EBJc/vrktjn6hHuug6TzY/ WMbTfAvY5CTWWsYCCvI9tsGxa0SeSWtBYgq+lTwK21FmbK4IYqTMMVa+8cUaMDtj +vqYjQ3rUNapPNKkas6xd0wx+cLM9sQi01sh6MjTrxBkLdcZZcPF1HEtfgP5RLs4 41FT8Bdo231rFMKrVOeOQ7tEMQ== -----END CERTIFICATE-----Generated at Fri Jun 12 03:55:55 2026 by rpki-client