$ rpki-client -vvf rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft File: I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft (raw, json) Hash identifier: 4NvabSd+Wbm7YZ7P1bfDm3p9EEk0HEJbyQ9FZN7ELTM= Subject key identifier: A5:8B:05:B7:2B:C7:26:B9:1B:D6:AF:A6:7C:EC:C5:03:82:05:DC:BA Authority key identifier: 23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28 Certificate issuer: /CN=A919DB08/serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft Manifest number: 3F Signing time: Mon 01 Jun 2026 09:22:10 +0000 Manifest this update: Mon 01 Jun 2026 09:22:09 +0000 Manifest next update: Mon 08 Jun 2026 09:22:09 +0000 Files and hashes: 1: I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl (hash: EbgfwMIdIIJ5TbpSpMqIEFTPoLDu+ltRdbbJWPC4Cls=) 2: 3F7E724808FA11F1B69E3FD3313D8C67.roa (hash: NZDM0P5b400zVrhyd2jzSLfxw/qGeaxR3jXe0NSn67o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 09:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DB08, serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828 Validity Not Before: Jun 1 09:22:09 2026 GMT Not After : Jun 8 09:22:09 2026 GMT Subject: CN=6a1d4f42-24dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:48:e7:c8:a7:d6:02:6f:8f:b0:37:95:52:87: 9b:38:56:bb:7f:04:89:47:07:48:00:9c:f4:af:78: 85:27:4c:60:bc:98:1c:fb:b6:ec:a6:ae:7e:7d:9b: 4c:40:5d:21:23:83:f3:20:cc:05:0a:cf:59:54:f6: 90:18:3f:60:83:d1:ef:0a:33:fb:94:8b:ae:29:3c: d7:ec:f7:f6:c6:f4:c1:e1:c3:c6:4b:fd:89:a1:4f: 80:5f:5a:df:51:90:4b:01:03:b6:c3:45:69:c5:14: cd:87:1a:67:ee:ab:74:ae:a7:01:f3:38:7f:ee:66: 98:0c:ce:34:72:6e:ee:1a:8d:73:6b:1a:13:1f:b4: ff:f8:8d:f5:4f:b8:0f:50:71:fa:cc:08:c8:92:82: 97:fa:55:a3:67:c2:ff:16:34:95:d3:47:45:ac:ed: 6e:f3:a9:d1:f8:28:fc:c9:d4:bd:99:63:b3:d0:15: ec:1c:c0:eb:94:dd:07:32:5f:97:68:3f:99:03:3f: dc:11:e2:2c:33:73:e3:2c:a2:d7:fd:67:61:37:11: 76:f5:30:b2:79:12:d1:29:b9:8f:ed:8a:ea:ee:67: 67:58:f4:49:19:27:28:2f:59:c5:90:3c:dd:e5:41: b1:63:02:76:cb:4a:d9:1f:92:2c:f2:42:08:a6:27: 36:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8B:05:B7:2B:C7:26:B9:1B:D6:AF:A6:7C:EC:C5:03:82:05:DC:BA X509v3 Authority Key Identifier: keyid:23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e5:e7:d4:92:94:34:52:05:27:8d:8f:28:aa:69:cf:cd:b2: 84:3e:64:9b:0e:57:5a:5f:48:39:b0:70:7b:71:28:4e:01:c2: 40:5b:f5:90:a8:fc:5f:76:87:8e:73:87:4f:f8:70:12:6b:51: f6:de:2a:de:fb:8b:f4:76:e0:a6:e0:f8:e6:8c:27:9f:06:a2: 99:bf:a4:d1:1c:a3:2d:c0:4b:be:fc:11:8b:23:1f:ec:20:62: ec:a6:43:a8:41:34:55:cd:90:ac:93:a8:0a:4c:c7:15:4f:30: 0b:e1:0a:63:2b:47:7b:6d:55:aa:72:b1:82:93:3d:e6:85:fb: af:e8:f8:4e:36:27:e2:bb:77:d5:e4:3e:96:84:35:53:cc:c0: d7:12:e9:1f:f5:66:b5:75:3b:c9:8d:d7:a3:3a:8c:69:36:7e: e3:aa:7f:06:c0:ca:36:c7:d9:09:e3:02:27:20:d1:42:00:28: 1c:f7:3a:e5:c9:51:70:51:be:a7:38:77:75:33:c3:41:5c:5f: 7c:1c:e4:0b:71:e1:a4:df:ab:42:23:87:1a:db:f3:2a:05:36: d5:60:e3:96:1c:d1:62:85:ea:66:13:0a:a0:bf:0b:bf:24:aa: f9:4a:bb:e5:32:46:27:8e:d2:1a:d3:f5:26:73:fc:47:92:bc: 2b:2a:e0:1a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 REIwODExMC8GA1UEBRMoMjM5MUZCNEQ5QUVENDRBQjgwRTZBRkQ4RDgyMEExQzA2 NDQzOTgyODAeFw0yNjA2MDEwOTIyMDlaFw0yNjA2MDgwOTIyMDlaMBgxFjAUBgNV BAMTDTZhMWQ0ZjQyLTI0ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaSOfIp9YCb4+wN5VSh5s4Vrt/BIlHB0gAnPSveIUnTGC8mBz7tuymrn59m0xA XSEjg/MgzAUKz1lU9pAYP2CD0e8KM/uUi64pPNfs9/bG9MHhw8ZL/YmhT4BfWt9R kEsBA7bDRWnFFM2HGmfuq3SupwHzOH/uZpgMzjRybu4ajXNrGhMftP/4jfVPuA9Q cfrMCMiSgpf6VaNnwv8WNJXTR0Ws7W7zqdH4KPzJ1L2ZY7PQFewcwOuU3QcyX5do P5kDP9wR4iwzc+Msotf9Z2E3EXb1MLJ5EtEpuY/tiuruZ2dY9EkZJygvWcWQPN3l QbFjAnbLStkfkizyQgimJzYlAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUpYsFtyvH Jrkb1q+mfOzFA4IF3LowHwYDVR0jBBgwFoAUI5H7TZrtRKuA5q/Y2CChwGRDmCgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQjA4LzM4ODZFOEI4MDhG OTExRjE4MDg0RDA4NjMxM0Q4QzY3L0k1SDdUWnJ0Ukt1QTVxX1kyQ0Nod0dSRG1D Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSTVIN1RacnRSS3VBNXFfWTJDQ2h3R1JEbUNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE QjA4LzM4ODZFOEI4MDhGOTExRjE4MDg0RDA4NjMxM0Q4QzY3L0k1SDdUWnJ0Ukt1 QTVxX1kyQ0Nod0dSRG1DZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA35efUkpQ0UgUnjY8oqmnPzbKEPmSbDldaX0g5sHB7cShOAcJAW/WQqPxfdoeO c4dP+HASa1H23ire+4v0duCm4PjmjCefBqKZv6TRHKMtwEu+/BGLIx/sIGLspkOo QTRVzZCsk6gKTMcVTzAL4QpjK0d7bVWqcrGCkz3mhfuv6PhONifiu3fV5D6WhDVT zMDXEukf9Wa1dTvJjdejOoxpNn7jqn8GwMo2x9kJ4wInINFCACgc9zrlyVFwUb6n OHd1M8NBXF98HOQLceGk36tCI4ca2/MqBTbVYOOWHNFihepmEwqgvwu/JKr5Srvl MkYnjtIa0/Umc/xHkrwrKuAa -----END CERTIFICATE-----Generated at Tue Jun 2 21:33:41 2026 by rpki-client