$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: UOM8dWLOV6Mw+qjnr24gB6lPUdqTW/jWiamKqE/bgs4= Subject key identifier: EA:83:5D:48:BC:BE:D1:C8:1F:7C:80:A3:6B:6E:D9:08:AE:3D:DB:8C Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 2998 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 291B Signing time: Fri 12 Jun 2026 15:34:40 +0000 Manifest this update: Fri 12 Jun 2026 15:34:40 +0000 Manifest next update: Fri 19 Jun 2026 15:34:40 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: BXFiFNTj+8IAjYSNcZNhIbawACJ3mAnjry+9l/oK/tw=) 2: 57D5BBF870F211F086293675C4F9AE02.roa (hash: DeKhzeI6csoLVB/N7GeSeQ/TlM+YbpCUPGuUuLwXV4E=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: e8QtZE9yszuYCxHhJN7AlKtSnjkZn1yLygAtwcSvRbk=) 4: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: 9cZ6L/GPvQKK4pJ4l7g4uN4OgEx5HSReU5gKVwtDiRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10648 (0x2998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447, serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: Jun 12 15:34:40 2026 GMT Not After : Jun 19 15:34:40 2026 GMT Subject: CN=6a2c2710-e669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:72:23:d7:e4:9e:c2:ab:50:4e:b3:ae:2c:36: f6:c3:6c:f6:7d:5f:3c:af:75:89:3b:87:9e:2a:2f: 2d:91:f1:41:28:fc:65:4d:84:43:5f:46:91:d8:11: f3:43:97:14:5b:a7:4a:e3:4f:b6:8e:9c:41:ad:64: 91:be:76:b9:92:f7:02:1c:c3:bf:c2:16:ba:c5:38: cb:73:11:07:d1:01:89:84:a3:e7:f7:23:aa:59:24: cc:13:d2:9f:71:eb:41:16:30:14:de:ff:d4:97:01: 57:34:4a:21:b2:96:22:97:d0:f4:d6:22:63:34:4b: e1:ca:0f:05:82:1a:5d:c8:c2:e1:26:70:ec:6d:d9: e8:bb:ca:b3:6d:9a:bc:d6:ac:1c:56:4d:97:53:75: 92:1b:0b:82:f9:25:ff:da:b2:fa:e5:71:86:43:cb: f1:d8:a1:10:ee:40:c0:07:5f:94:e1:08:50:3e:7d: d8:b1:8a:0d:45:c3:ba:5f:75:85:3e:8e:4e:c6:9f: 24:9d:08:5a:ee:79:ea:5d:e5:6c:7a:b4:0e:59:b3: ae:da:f6:84:26:20:db:78:60:a3:bc:11:69:12:82: b3:a0:1c:70:d2:d0:25:dc:f6:c6:29:a0:4e:5a:f6: c6:20:42:26:87:1c:14:30:d5:dd:34:52:a5:02:01: 61:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:83:5D:48:BC:BE:D1:C8:1F:7C:80:A3:6B:6E:D9:08:AE:3D:DB:8C X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:39:f3:d5:c8:1d:31:d6:6b:1e:84:32:d0:d3:d2:e5:6b:74: 98:64:30:50:c9:57:20:d1:69:b4:9b:8b:2c:d0:38:e1:57:f1: 7b:47:1d:79:81:68:a6:a7:68:66:f0:27:b4:84:13:2f:8c:6b: 7d:b1:7b:c8:e9:37:c1:14:42:29:85:ee:2e:34:82:57:d9:57: 45:3c:70:85:a4:7e:5a:53:09:f0:ac:56:03:7e:b9:f5:44:41: 0f:ab:ac:90:32:b7:91:47:f9:25:65:da:21:60:fc:69:a5:b5: 9c:2a:56:2f:6b:a5:f6:ac:1a:89:ec:97:ad:c1:3b:fc:97:cf: 88:f9:aa:62:81:11:c3:08:da:e5:4d:cf:73:05:bb:fc:26:c8: 08:f5:a9:40:9c:3f:9b:22:c5:9a:19:b8:65:0b:63:c2:96:77: 46:86:52:aa:d7:09:89:2c:79:df:19:7f:76:ae:12:87:1b:d6: 4e:a9:46:31:d9:e0:5a:5a:14:9a:2d:38:67:8d:42:6f:7f:82: 34:a3:c6:bc:5b:1a:2d:0f:7d:bf:0f:f0:14:13:38:c1:7d:c6: a9:fe:dd:fe:53:dc:33:64:3b:4d:8a:6c:31:8e:19:ab:02:de: eb:04:b8:27:48:a8:20:0c:b8:93:49:f6:61:44:11:31:c2:79: 5c:bd:10:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjYwNjEyMTUzNDQwWhcNMjYwNjE5MTUzNDQwWjAYMRYwFAYD VQQDEw02YTJjMjcxMC1lNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3Ij1+SewqtQTrOuLDb2w2z2fV88r3WJO4eeKi8tkfFBKPxlTYRDX0aR2BHz Q5cUW6dK40+2jpxBrWSRvna5kvcCHMO/wha6xTjLcxEH0QGJhKPn9yOqWSTME9Kf cetBFjAU3v/UlwFXNEohspYil9D01iJjNEvhyg8FghpdyMLhJnDsbdnou8qzbZq8 1qwcVk2XU3WSGwuC+SX/2rL65XGGQ8vx2KEQ7kDAB1+U4QhQPn3YsYoNRcO6X3WF Po5Oxp8knQha7nnqXeVserQOWbOu2vaEJiDbeGCjvBFpEoKzoBxw0tAl3PbGKaBO WvbGIEImhxwUMNXdNFKlAgFhxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqDXUi8 vtHIH3yAo2tu2QiuPduMMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARznz1cgdMdZrHoQy0NPS5Wt0mGQwUMlXINFptJuLLNA44Vfxe0cdeYFopqdo ZvAntIQTL4xrfbF7yOk3wRRCKYXuLjSCV9lXRTxwhaR+WlMJ8KxWA3659URBD6us kDK3kUf5JWXaIWD8aaW1nCpWL2ul9qwaieyXrcE7/JfPiPmqYoERwwja5U3PcwW7 /CbICPWpQJw/myLFmhm4ZQtjwpZ3RoZSqtcJiSx53xl/dq4ShxvWTqlGMdngWloU mi04Z41Cb3+CNKPGvFsaLQ99vw/wFBM4wX3Gqf7d/lPcM2Q7TYpsMY4ZqwLe6wS4 J0ioIAy4k0n2YUQRMcJ5XL0Qbw== -----END CERTIFICATE-----Generated at Sun Jun 14 03:03:23 2026 by rpki-client