$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: 7yKGIHgl9HQ1bdVvqXpFLH7dT6IiQLUcv3PdG+46L3k= Subject key identifier: C6:53:A3:98:AF:42:73:B2:7D:84:A4:4F:16:A4:DB:49:64:62:68:9C Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 3597 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 356B Signing time: Thu 11 Jun 2026 15:32:15 +0000 Manifest this update: Thu 11 Jun 2026 15:32:14 +0000 Manifest next update: Thu 18 Jun 2026 15:32:14 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: DSKFOtVMlOPZ3Wfwzb0s1L38nQZO0960etwjc+u07VM=) 2: B683232C65AA11F1B5A6BBF27847A888.roa (hash: ui+fKkNRAL+b96meDYqRb3fMZ9lGNQU6S4pF6IMCEJk=) 3: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: uTwgdWpEtjV1ALHAM8OqP3F4AfwGv1rbWW6ZiHZWVyg=) 4: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: kemAcHttVJ/67VTbPvla1uxc5lCQKg8ypYYWxu51V6g=) 5: 1F40296A65AA11F1A2780DB67847A888.roa (hash: xCeE3NkSHLJX8hWD3lcocXTFRBLR4NjlfyWa7eSQ5Q0=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: x1jt7itPjnC6MQbNejsBQgbeqBxLH2bZYuNPNtNXfYM=) 7: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: x81djxirc4TZ7LBWsfaYDwm6dEqBh0TJcdGGB4pBfl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 15:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13719 (0x3597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Jun 11 15:32:14 2026 GMT Not After : Jun 18 15:32:14 2026 GMT Subject: CN=6a2ad4ff-24d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:44:c8:6f:50:c4:01:ee:d2:9f:ee:12:8d:fd: 51:bc:07:99:86:77:c0:64:e7:95:1e:d9:e7:69:32: 23:56:74:70:4a:98:f8:2e:36:f3:7a:0d:56:a4:ec: d4:24:f5:87:70:db:30:ef:f0:1a:c7:d6:f2:9c:98: 30:a3:4a:7e:ff:d7:c4:c4:55:92:d6:4d:87:9c:a0: 93:32:45:0f:f7:9d:a2:03:bb:d7:76:1e:86:03:48: 4d:a7:8f:19:35:3b:10:82:9b:19:e4:57:cd:ff:68: a6:6a:f5:6e:0e:1b:6a:a7:8d:f3:fe:6f:5e:12:d0: d3:6f:b8:35:29:e9:22:a3:ff:f4:aa:da:1c:41:bd: d6:d7:69:22:1c:7d:96:c4:f1:cd:43:eb:dc:83:35: af:e7:cc:1f:9f:ac:e6:c0:ec:dc:b7:13:eb:18:ec: 53:20:e6:6d:d9:d6:ff:27:73:93:f4:25:7f:31:07: 7a:70:03:35:81:2a:67:41:d5:20:44:08:eb:72:91: 44:02:d1:be:bd:10:89:1f:83:b9:79:21:80:9e:c0: 99:7d:94:1e:d4:ad:56:dc:9b:9a:17:46:51:63:f8: 18:55:c3:5b:9b:fd:4c:66:ca:15:3a:9a:2a:2d:e0: fd:e5:1b:22:2c:d4:71:37:1a:5a:45:77:8d:9d:92: 35:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:53:A3:98:AF:42:73:B2:7D:84:A4:4F:16:A4:DB:49:64:62:68:9C X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:68:cd:08:c3:b1:63:52:7b:da:e6:18:ee:71:10:56:ff:93: 89:f3:fe:44:40:14:0e:e3:cb:75:c0:e9:3b:1c:45:72:6f:35: cb:3e:c7:7e:a9:2c:50:5c:b3:23:be:c5:da:23:9a:95:6c:fc: 12:91:5f:3a:b2:93:77:0e:d2:5c:6f:8f:f1:df:ec:bb:75:86: 75:a0:e5:02:2a:2d:ac:54:a1:81:6e:a7:73:06:9e:42:6f:98: 65:3b:2c:b7:ea:dd:07:ab:81:71:9e:59:5e:96:c6:90:b6:0c: 26:85:88:fc:a2:e7:1b:33:a0:24:72:fb:c7:98:ac:d7:ec:d9: 86:d6:8c:33:b1:1f:57:cf:19:6b:5e:70:8a:69:48:43:e8:8a: 24:50:a4:1e:3a:ab:63:9c:b5:18:3d:9f:3a:a5:93:f6:f0:79: cd:55:99:27:88:0d:9f:2a:1a:62:cd:21:e7:e8:53:9c:10:4c: 7e:3a:b1:39:8e:29:b8:d8:3d:40:0d:c3:39:98:21:53:9f:07: 02:27:d8:99:db:d7:44:dc:ba:b9:31:fa:69:e6:e9:0b:28:e9: e0:97:61:9e:cc:22:e5:9f:98:54:99:3e:c9:f7:7c:f6:1e:8d: f8:82:85:c8:05:c6:e0:79:a9:d2:08:df:a7:79:65:12:3c:55: 47:ba:7f:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwNjExMTUzMjE0WhcNMjYwNjE4MTUzMjE0WjAYMRYwFAYD VQQDEw02YTJhZDRmZi0yNGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+kTIb1DEAe7Sn+4Sjf1RvAeZhnfAZOeVHtnnaTIjVnRwSpj4Ljbzeg1WpOzU JPWHcNsw7/Aax9bynJgwo0p+/9fExFWS1k2HnKCTMkUP952iA7vXdh6GA0hNp48Z NTsQgpsZ5FfN/2imavVuDhtqp43z/m9eEtDTb7g1Kekio//0qtocQb3W12kiHH2W xPHNQ+vcgzWv58wfn6zmwOzctxPrGOxTIOZt2db/J3OT9CV/MQd6cAM1gSpnQdUg RAjrcpFEAtG+vRCJH4O5eSGAnsCZfZQe1K1W3JuaF0ZRY/gYVcNbm/1MZsoVOpoq LeD95RsiLNRxNxpaRXeNnZI1HwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMZTo5iv QnOyfYSkTxak20lkYmicMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA02jNCMOxY1J72uYY7nEQVv+TifP+REAUDuPLdcDpOxxFcm81yz7HfqksUFyz I77F2iOalWz8EpFfOrKTdw7SXG+P8d/su3WGdaDlAiotrFShgW6ncwaeQm+YZTss t+rdB6uBcZ5ZXpbGkLYMJoWI/KLnGzOgJHL7x5is1+zZhtaMM7EfV88Za15wimlI Q+iKJFCkHjqrY5y1GD2fOqWT9vB5zVWZJ4gNnyoaYs0h5+hTnBBMfjqxOY4puNg9 QA3DOZghU58HAifYmdvXRNy6uTH6aebpCyjp4Jdhnswi5Z+YVJk+yfd89h6N+IKF yAXG4Hmp0gjfp3llEjxVR7p/yA== -----END CERTIFICATE-----Generated at Fri Jun 12 08:09:57 2026 by rpki-client