$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: JAsB41/1fAsz1uCUZ8g7mS/n3PuBg+xZgwNg6OBvxz8= Subject key identifier: 85:61:56:82:A1:71:29:6E:8B:2F:9A:E1:7D:BA:8C:17:A2:BD:E4:8A Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 01FC Signing time: Sat 13 Jun 2026 03:17:12 +0000 Manifest this update: Sat 13 Jun 2026 03:17:11 +0000 Manifest next update: Sat 20 Jun 2026 03:17:11 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: oCXEQonQG2yxZnE7PWV5NHcfYZtSSy6FI+zUJNlIF8M=) 2: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: ViCudgIPygezvAtMJaZKmsZPceBqOw4Pvj8wkwoWduE=) 3: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: vugsK16sJjvSr8OK0LSYKyoQkwn8bb1O/z7sIhYr5Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 03:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Jun 13 03:17:11 2026 GMT Not After : Jun 20 03:17:11 2026 GMT Subject: CN=6a2ccbb7-fd58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:ba:5d:f0:5b:97:39:90:d2:b2:36:ff:73:39: ea:c6:a2:dd:a2:c9:83:a8:7a:31:31:79:9e:63:c1: 54:81:4f:ed:76:d6:b1:19:a8:86:2f:ef:52:05:07: ca:9b:a4:f6:22:85:1e:64:3c:8a:29:06:53:65:97: 33:9a:bb:0f:52:11:72:24:3b:08:e5:f1:9d:d9:9c: 5f:23:73:a5:2c:ce:fe:d2:d1:a3:62:a0:8c:a1:f2: 7d:81:9e:e7:e5:4a:e7:59:0f:e6:c9:5e:a6:fe:ce: 82:ae:bc:c1:51:0e:0a:39:fa:67:79:ef:7b:5a:5e: bb:62:8b:3c:15:cf:f1:c7:17:d9:12:97:ee:6e:32: 03:fa:56:92:95:7b:19:9d:23:94:3d:4e:d6:6d:fc: 7a:51:9e:a2:ca:b1:93:d6:9e:e6:5c:85:28:20:b6: f7:28:8c:a7:82:20:0c:83:60:02:f4:01:ea:6b:2f: ba:9f:a1:6a:da:5b:0e:56:0a:c4:cf:80:cc:ff:8e: 39:e9:b1:e5:93:21:46:c0:56:18:c2:62:1d:8c:17: 49:01:8d:0d:a2:ed:bf:cf:6d:8e:7c:90:cf:bf:c1: 3e:8e:08:c6:91:98:53:29:74:ea:43:05:ee:ba:84: c5:9b:86:65:68:3c:ba:ce:7d:b9:bb:5d:03:f0:86: 21:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:61:56:82:A1:71:29:6E:8B:2F:9A:E1:7D:BA:8C:17:A2:BD:E4:8A X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0c:25:e7:04:7e:3e:f1:52:da:aa:02:db:8d:70:a7:91:3f: c5:82:98:c9:66:45:bc:5e:33:e1:c5:e3:bc:1a:c7:5e:c7:df: a0:c4:22:a8:ca:7b:f2:d1:1d:00:98:26:71:55:16:8b:06:54: 5f:12:0d:a3:8e:62:22:2c:02:99:bd:69:43:91:15:0f:3b:fb: 2e:87:3a:82:ce:7d:00:71:79:9d:bb:03:2d:c5:de:e9:68:7f: 5d:1e:7f:11:a5:48:85:27:8c:5f:3f:c2:51:2c:69:5d:8c:5c: 80:c0:44:64:11:cf:63:12:56:d3:42:02:cb:0b:f5:d6:84:90: 7b:79:91:54:0d:62:43:5d:49:65:09:84:1b:45:66:01:07:f0: 35:dc:59:86:d6:ea:70:c2:a3:c4:78:42:ef:05:74:e7:ca:98: ba:bd:2e:3d:8b:d1:23:5c:f0:89:f1:fd:6e:bf:f5:bd:fe:da: 57:01:bc:8d:26:e4:35:b0:64:45:c6:91:0e:9f:7f:b3:42:74: 42:0c:b8:4e:22:54:56:b5:2d:74:9b:57:c4:c6:ab:4e:c3:36: ba:a6:3a:3a:d3:42:1c:4e:3b:c1:86:6a:3e:13:ea:c0:fa:ab: 31:e8:e0:ee:91:6a:91:d2:0d:7b:c8:c9:65:cf:80:f0:59:17: f4:2a:9a:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjYwNjEzMDMxNzExWhcNMjYwNjIwMDMxNzExWjAYMRYwFAYD VQQDEw02YTJjY2JiNy1mZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhLpd8FuXOZDSsjb/cznqxqLdosmDqHoxMXmeY8FUgU/tdtaxGaiGL+9SBQfK m6T2IoUeZDyKKQZTZZczmrsPUhFyJDsI5fGd2ZxfI3OlLM7+0tGjYqCMofJ9gZ7n 5UrnWQ/myV6m/s6CrrzBUQ4KOfpnee97Wl67Yos8Fc/xxxfZEpfubjID+laSlXsZ nSOUPU7Wbfx6UZ6iyrGT1p7mXIUoILb3KIyngiAMg2AC9AHqay+6n6Fq2lsOVgrE z4DM/4456bHlkyFGwFYYwmIdjBdJAY0Nou2/z22OfJDPv8E+jgjGkZhTKXTqQwXu uoTFm4ZlaDy6zn25u10D8IYhywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIVhVoKh cSluiy+a4X26jBeiveSKMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPgwl5wR+PvFS2qoC241wp5E/xYKYyWZFvF4z4cXjvBrHXsffoMQiqMp78tEd AJgmcVUWiwZUXxINo45iIiwCmb1pQ5EVDzv7Loc6gs59AHF5nbsDLcXe6Wh/XR5/ EaVIhSeMXz/CUSxpXYxcgMBEZBHPYxJW00ICywv11oSQe3mRVA1iQ11JZQmEG0Vm AQfwNdxZhtbqcMKjxHhC7wV058qYur0uPYvRI1zwifH9br/1vf7aVwG8jSbkNbBk RcaRDp9/s0J0Qgy4TiJUVrUtdJtXxMarTsM2uqY6OtNCHE47wYZqPhPqwPqrMejg 7pFqkdINe8jJZc+A8FkX9CqaTQ== -----END CERTIFICATE-----Generated at Sat Jun 13 14:52:03 2026 by rpki-client