$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: PeajYbIfInrZCSWoBeFxUxbJvFsrQeIIH4g3pzcXlWA= Subject key identifier: E2:C0:3E:C3:2C:C5:9F:9C:86:A3:4D:6C:38:97:A6:35:E0:0B:84:A2 Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1F53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1F3D Signing time: Mon 22 Jun 2026 15:59:29 +0000 Manifest this update: Mon 22 Jun 2026 15:59:28 +0000 Manifest next update: Mon 29 Jun 2026 15:59:28 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: YGn1bFPEz06KJ/5zMRgDDp3VXdkH3DEvrklFX2xujIc=) 2: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: rr7iOLl9TUyzkrsjzgFR/+q8JCXOgUaSGUX032fYyyE=) 3: 4664F7042B7411EF9E28ED19C4F9AE02.roa (hash: 3MKooCBU61wIsuGXSmqPXw064htJ8PtkFCtnxTlqkOw=) 4: 45865ED62B7411EF9E28ED19C4F9AE02.roa (hash: xI4eUzx+xF9lkRKKMTUZaqkPy0rPqkMnNWhaAR/1Rn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 15:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8019 (0x1f53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D, serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: Jun 22 15:59:28 2026 GMT Not After : Jun 29 15:59:28 2026 GMT Subject: CN=6a395be1-b0cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:5f:88:8f:7f:9d:c9:52:06:62:c1:91:6f: 08:e3:41:95:eb:41:d0:a2:04:80:d3:3e:e1:ca:1a: 3f:ee:d9:ce:0d:8c:b9:f8:31:ff:99:f8:e9:35:39: bc:d2:01:38:95:9d:46:5f:15:25:48:03:33:c8:8d: 6d:46:aa:61:5a:dd:a3:f8:6e:f4:e2:33:51:1b:1b: 92:1f:95:a8:7e:e8:53:51:d1:7e:30:24:8e:6f:1c: 29:4c:1e:bd:aa:7f:0e:76:89:f9:ec:d0:75:ca:55: 23:b7:eb:2b:3e:4f:f0:51:59:02:43:1c:82:93:cc: 02:5c:44:90:0e:3a:97:93:0d:4a:7a:01:1b:b2:3b: 9b:df:04:b4:6c:d0:cd:b8:6a:c3:16:a0:e6:a3:da: 67:bf:40:4c:35:28:3d:ce:9c:17:d0:71:58:03:f2: ea:43:77:f7:be:dc:28:03:f9:25:42:91:eb:e0:f5: 43:4a:cc:3e:25:33:73:ad:9d:e1:30:8a:f3:10:19: f0:42:de:81:81:d2:31:e5:6d:ef:8d:21:fb:95:ae: aa:30:66:a9:8e:0a:2c:e0:19:77:39:42:cf:47:ef: e9:8e:64:6e:08:c6:59:d2:23:0b:96:d8:47:90:f0: 68:09:a7:70:e1:77:8a:1f:bd:e2:4a:88:7d:b0:b5: a9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C0:3E:C3:2C:C5:9F:9C:86:A3:4D:6C:38:97:A6:35:E0:0B:84:A2 X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ae:78:f8:34:52:95:3a:1e:63:56:bd:b1:2e:a9:d7:6e:92: 11:61:af:31:71:10:cb:c6:07:1f:1c:2f:20:38:d2:8c:6e:88: 6b:39:12:dd:7c:68:67:1d:a9:ae:b7:3a:a6:20:88:a9:37:b5: f1:dc:59:aa:d3:f8:2a:14:29:b1:fc:62:3d:94:b9:78:6b:b3: 71:7d:96:20:63:ff:6a:73:ff:34:d2:1f:fa:b0:2c:86:59:ea: 2f:a1:a2:93:33:cc:60:c7:c2:92:53:65:b8:45:6c:cb:9d:6a: 1a:b3:cc:00:9e:8e:0a:ef:a5:e6:67:57:05:2c:6b:02:98:d7: 1b:1d:d9:41:a1:32:c0:dc:da:d8:2d:8f:22:58:b1:c9:18:f3: 67:c9:0f:73:8c:db:a2:31:db:de:34:92:8e:47:6a:10:6a:db: c4:43:db:bf:d3:99:23:70:12:6b:ad:fe:2f:37:75:25:08:a5: 31:56:63:ee:7c:5d:b7:ad:15:d4:84:08:d2:43:a6:52:a0:3e: f6:e9:9e:f4:cd:da:2c:b2:b2:cb:e0:4b:8f:14:9f:46:a7:41: 99:62:bb:8c:46:a0:62:05:8b:91:ec:06:b5:0a:23:4a:34:fc: 04:2d:70:71:e0:34:9b:8a:b6:06:2c:92:c5:e2:dd:be:84:c6: a2:b0:cf:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICH1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjYwNjIyMTU1OTI4WhcNMjYwNjI5MTU1OTI4WjAYMRYwFAYD VQQDEw02YTM5NWJlMS1iMGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwblfiI9/nclSBmLBkW8I40GV60HQogSA0z7hyho/7tnODYy5+DH/mfjpNTm8 0gE4lZ1GXxUlSAMzyI1tRqphWt2j+G704jNRGxuSH5WofuhTUdF+MCSObxwpTB69 qn8Odon57NB1ylUjt+srPk/wUVkCQxyCk8wCXESQDjqXkw1KegEbsjub3wS0bNDN uGrDFqDmo9pnv0BMNSg9zpwX0HFYA/LqQ3f3vtwoA/klQpHr4PVDSsw+JTNzrZ3h MIrzEBnwQt6BgdIx5W3vjSH7la6qMGapjgos4Bl3OULPR+/pjmRuCMZZ0iMLlthH kPBoCadw4XeKH73iSoh9sLWpgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOLAPsMs xZ+chqNNbDiXpjXgC4SiMB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAga54+DRSlToeY1a9sS6p126SEWGvMXEQy8YHHxwvIDjSjG6IazkS3XxoZx2p rrc6piCIqTe18dxZqtP4KhQpsfxiPZS5eGuzcX2WIGP/anP/NNIf+rAshlnqL6Gi kzPMYMfCklNluEVsy51qGrPMAJ6OCu+l5mdXBSxrApjXGx3ZQaEywNza2C2PIlix yRjzZ8kPc4zbojHb3jSSjkdqEGrbxEPbv9OZI3ASa63+Lzd1JQilMVZj7nxdt60V 1IQI0kOmUqA+9ume9M3aLLKyy+BLjxSfRqdBmWK7jEagYgWLkewGtQojSjT8BC1w ceA0m4q2BiySxeLdvoTGorDPhA== -----END CERTIFICATE-----Generated at Wed Jun 24 15:36:01 2026 by rpki-client