$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: 2yBO+Sa0COBXO5NHHfhExVlwms9ARQzGsDdlZQijAMI= Subject key identifier: B5:76:8C:24:47:96:97:D5:F9:E2:34:FA:CF:89:49:89:81:A8:80:A2 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 1278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 1237 Signing time: Fri 12 Jun 2026 17:06:16 +0000 Manifest this update: Fri 12 Jun 2026 17:06:15 +0000 Manifest next update: Fri 19 Jun 2026 17:06:15 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: HD2xW+7Hqercl8DoxWKId0egcrn3DylwWFyR98/+A3U=) 2: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: O4GHZYhhhQeQ6LqkXDZz5RCZWlPH2Yu/syycOtJ+aIo=) 3: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: cjMy4xbcc0iF8UGid1RrwsR5uCyoVa/GUkRSBBNBNwU=) 4: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: xGiIPlMqdMQ/AkBHGhYb6Ef9QmEy6xUaWuUDzw5uJV4=) 5: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: cQrRnhokY0nhbBJt3bSGZ86zJIUfmyJNDbVOoL1xxrY=) 6: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: GhuUSpOGOhzvETrGv1dHX21uJs7ntpLxSC2vf2RVN+U=) 7: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: BXGE/iZvvWL+dWAxPX7NLNenWS6dQrMTwGLNphzL3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4728 (0x1278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 12 17:06:15 2026 GMT Not After : Jun 19 17:06:15 2026 GMT Subject: CN=6a2c3c87-2b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:be:42:69:02:f8:1d:9b:d6:fd:71:fa:80: 7d:1c:50:35:18:90:a1:73:b0:38:ed:8d:dd:82:b6: 17:9e:11:1e:8b:9a:fa:d4:b6:cc:81:c5:6e:1b:8f: 08:bf:b0:ed:8d:b8:4f:0c:83:27:b8:cf:02:0d:76: 89:3d:4e:1f:92:92:d0:38:8f:ff:c0:5b:83:e8:3e: f6:3c:5f:99:ca:7d:82:87:88:7f:99:81:43:2d:66: d2:65:70:20:7c:a7:2b:ce:43:71:5b:70:9c:8f:73: 35:c7:12:f3:f5:e8:f6:93:4d:37:1a:a7:8d:a0:6a: 3e:30:0d:a6:b4:a1:a6:d7:d8:2a:5d:cf:4c:a1:9b: 6e:47:82:b8:96:29:43:3b:c4:7d:33:14:80:7c:64: c1:36:49:76:bd:28:10:0c:be:76:99:62:d2:61:40: 43:39:1a:c6:e4:75:e7:f8:8d:05:3f:22:88:9f:cc: e6:e8:f8:4a:e0:17:e5:4f:ec:24:46:21:b3:f0:b3: 65:2c:f1:be:13:e8:79:d5:31:d8:75:87:fc:01:2b: d6:48:9c:48:79:ac:f1:a7:39:b3:e9:70:4d:6f:f6: a7:af:52:c8:54:0c:f2:92:9d:0b:64:d3:f3:57:00: d6:d9:ef:d4:fc:b8:62:7e:e1:2d:f9:53:36:c6:f3: ce:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:76:8C:24:47:96:97:D5:F9:E2:34:FA:CF:89:49:89:81:A8:80:A2 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8b:aa:ca:26:98:83:33:9a:15:65:a7:cc:c1:0b:fd:d5:22: 7a:d1:49:a6:ed:9d:3d:ce:66:1c:80:16:19:66:ac:e3:c6:b0: db:61:c0:ee:fa:22:83:be:f7:f6:77:75:58:40:51:d9:68:6d: 4a:2e:8f:06:2d:b4:df:5e:88:3f:0d:ce:c7:f7:cd:47:e4:be: 03:14:cf:5a:a5:da:e6:73:1c:5c:3c:01:ea:6d:04:f3:33:fb: dd:69:aa:18:54:d4:c9:4b:6b:fe:fb:8e:60:b0:9b:46:9f:09: cb:9a:85:19:10:60:92:48:b5:6b:d2:06:41:32:cf:ed:11:a6: 9c:2b:c6:7d:fb:21:f8:98:a8:dd:a0:cc:fa:85:76:8d:59:3a: 45:31:2a:17:31:ea:ae:96:f3:6f:0b:0e:a6:f0:af:fd:78:3d: 70:90:05:c6:58:bc:36:9f:6b:39:30:2c:5f:56:fc:1c:95:1c: 82:e9:be:f0:cf:af:c8:2b:01:72:77:eb:5b:25:ec:c8:5b:ec: dd:1e:13:67:15:bb:cf:66:4d:93:04:97:72:58:69:41:6d:8b: 29:fc:d3:46:e2:5b:0f:9e:18:f9:08:ee:4f:03:14:67:1a:e6: 1f:67:15:1c:2d:d1:ca:61:25:31:d8:a7:20:ab:90:06:c7:f4: e8:57:19:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjYwNjEyMTcwNjE1WhcNMjYwNjE5MTcwNjE1WjAYMRYwFAYD VQQDEw02YTJjM2M4Ny0yYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1K+QmkC+B2b1v1x+oB9HFA1GJChc7A47Y3dgrYXnhEei5r61LbMgcVuG48I v7DtjbhPDIMnuM8CDXaJPU4fkpLQOI//wFuD6D72PF+Zyn2Ch4h/mYFDLWbSZXAg fKcrzkNxW3Ccj3M1xxLz9ej2k003GqeNoGo+MA2mtKGm19gqXc9MoZtuR4K4lilD O8R9MxSAfGTBNkl2vSgQDL52mWLSYUBDORrG5HXn+I0FPyKIn8zm6PhK4BflT+wk RiGz8LNlLPG+E+h51THYdYf8ASvWSJxIeazxpzmz6XBNb/anr1LIVAzykp0LZNPz VwDW2e/U/LhifuEt+VM2xvPOEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLV2jCRH lpfV+eI0+s+JSYmBqICiMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKouqyiaYgzOaFWWnzMEL/dUietFJpu2dPc5mHIAWGWas48aw22HA7voig773 9nd1WEBR2WhtSi6PBi20316IPw3Ox/fNR+S+AxTPWqXa5nMcXDwB6m0E8zP73Wmq GFTUyUtr/vuOYLCbRp8Jy5qFGRBgkki1a9IGQTLP7RGmnCvGffsh+Jio3aDM+oV2 jVk6RTEqFzHqrpbzbwsOpvCv/Xg9cJAFxli8Np9rOTAsX1b8HJUcgum+8M+vyCsB cnfrWyXsyFvs3R4TZxW7z2ZNkwSXclhpQW2LKfzTRuJbD54Y+QjuTwMUZxrmH2cV HC3RymElMdinIKuQBsf06FcZug== -----END CERTIFICATE-----Generated at Sat Jun 13 08:57:44 2026 by rpki-client