$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: F0YPqYHAQZ0HJNCo9DnTVGTu2L9AQeg8JoPBJgUimV4= Subject key identifier: 26:55:C2:E5:0B:2F:D6:5F:5A:50:FA:8F:C3:D4:91:9A:C8:0F:20:CA Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 045E Signing time: Sat 13 Jun 2026 00:17:31 +0000 Manifest this update: Sat 13 Jun 2026 00:17:30 +0000 Manifest next update: Sat 20 Jun 2026 00:17:30 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: uU/6tOCclx19h1tUBOcrySKU1QjTZNpsHBOIo1ZzPpk=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: NtIL0Ds6f0ZS7MHa9CMEFQcx6i11Pda/8hAwPCcExQg=) 3: F570D764773F11F09FC02036C4F9AE02.roa (hash: gvPu45DyIqZBu1jQxEhjgfSh962TYPXbAHfGb3N8kR4=) 4: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: cl/4/5b1299P9Rw9mt6jtdWymjlwHiUICZ1E9aWqHuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Jun 13 00:17:30 2026 GMT Not After : Jun 20 00:17:30 2026 GMT Subject: CN=6a2ca19b-9106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:09:31:0e:38:1b:24:6e:03:92:aa:2f:0c:f2: 02:66:25:1d:f7:fd:a4:8c:4d:d2:37:67:d8:f9:50: 08:86:4c:be:8b:d0:5b:d8:05:8d:1a:34:6c:46:b6: 84:01:3f:d9:09:ba:a8:67:71:fe:45:5f:ad:4a:1a: 50:32:fa:07:63:ef:2b:4c:ad:a0:f5:42:ef:94:ab: 66:e4:8f:ad:db:9f:47:69:38:b4:f6:a7:51:99:53: 21:c3:a8:3a:87:5e:e1:05:4e:bc:42:4b:37:a7:0f: 54:3c:61:83:9e:78:17:3d:46:50:cc:ad:67:c8:7e: 9a:11:f0:87:0b:90:46:d9:31:ea:40:30:68:80:c8: 74:08:7d:04:33:a1:77:c5:fb:76:67:74:11:21:50: be:1a:fa:6e:98:8d:60:03:a9:79:4c:54:3b:32:59: 97:3d:b6:97:54:d1:9a:6f:31:de:3f:5d:7a:b9:6c: ef:0f:12:d5:ce:33:97:f1:1f:95:ad:e7:f9:0d:52: bf:5e:e3:79:14:e4:69:f9:45:86:37:74:4f:19:f9: cc:04:da:77:20:98:5c:48:3f:ee:46:d9:eb:d7:9b: a4:9d:12:4f:d5:cd:bc:f8:72:a6:a5:72:72:bf:04: 76:ec:35:ae:d6:fa:5c:01:97:b5:e5:0c:a3:db:65: 0d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:55:C2:E5:0B:2F:D6:5F:5A:50:FA:8F:C3:D4:91:9A:C8:0F:20:CA X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:82:b4:21:02:95:92:56:10:07:f8:a4:62:0d:4b:67:76:e3: 6e:3e:e3:37:1b:24:01:4c:0f:38:b3:2a:72:aa:29:1f:69:ae: a2:1f:e7:07:a5:4d:c3:d8:0e:1e:ff:4b:29:ae:29:7e:4a:f9: d8:7b:e9:d3:67:ec:f4:aa:a2:1c:9c:84:a7:45:a2:66:4d:a0: 10:6b:da:1d:4f:3d:d2:39:8c:a1:11:1f:fb:47:a5:62:33:35: 1e:ab:d4:a4:ba:93:52:d7:2e:5d:eb:b3:a8:7b:c9:75:74:50: 03:f6:ab:1d:da:e5:51:dc:c2:c7:d4:11:f0:94:b9:95:fb:06: 6d:de:40:2a:2a:90:ff:48:9f:74:cf:b4:33:57:51:01:2d:17: c6:00:88:4b:30:4c:4e:d1:0a:85:4e:fd:90:dc:ff:01:f0:2e: f3:4a:ca:e4:c6:4d:32:37:e1:88:7b:9c:4f:23:8c:db:f2:c7: bb:88:20:8f:f9:a3:4e:13:07:03:eb:00:4c:50:12:fe:dc:b4: 1c:c3:c8:00:09:d9:9a:bf:5a:99:a9:42:76:b9:aa:36:92:44: 00:04:c3:67:e8:5d:03:e4:c9:ac:5d:23:9a:dd:36:17:1d:dd: ad:fc:83:e5:ce:ce:5d:75:7f:4f:ac:30:03:27:ae:cd:a9:79: 10:f0:a8:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjYwNjEzMDAxNzMwWhcNMjYwNjIwMDAxNzMwWjAYMRYwFAYD VQQDEw02YTJjYTE5Yi05MTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAkxDjgbJG4DkqovDPICZiUd9/2kjE3SN2fY+VAIhky+i9Bb2AWNGjRsRraE AT/ZCbqoZ3H+RV+tShpQMvoHY+8rTK2g9ULvlKtm5I+t259HaTi09qdRmVMhw6g6 h17hBU68Qks3pw9UPGGDnngXPUZQzK1nyH6aEfCHC5BG2THqQDBogMh0CH0EM6F3 xft2Z3QRIVC+GvpumI1gA6l5TFQ7MlmXPbaXVNGabzHeP116uWzvDxLVzjOX8R+V ref5DVK/XuN5FORp+UWGN3RPGfnMBNp3IJhcSD/uRtnr15uknRJP1c28+HKmpXJy vwR27DWu1vpcAZe15Qyj22UNlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCZVwuUL L9ZfWlD6j8PUkZrIDyDKMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsYK0IQKVklYQB/ikYg1LZ3bjbj7jNxskAUwPOLMqcqopH2muoh/nB6VNw9gO Hv9LKa4pfkr52Hvp02fs9KqiHJyEp0WiZk2gEGvaHU890jmMoREf+0elYjM1HqvU pLqTUtcuXeuzqHvJdXRQA/arHdrlUdzCx9QR8JS5lfsGbd5AKiqQ/0ifdM+0M1dR AS0XxgCISzBMTtEKhU79kNz/AfAu80rK5MZNMjfhiHucTyOM2/LHu4ggj/mjThMH A+sATFAS/ty0HMPIAAnZmr9amalCdrmqNpJEAATDZ+hdA+TJrF0jmt02Fx3drfyD 5c7OXXV/T6wwAyeuzal5EPCoJQ== -----END CERTIFICATE-----Generated at Sat Jun 13 14:32:04 2026 by rpki-client