$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: bfC9vGZBZs1dkicrVMPPpa1TYKHh/7OxkGvxtBs1ME0= Subject key identifier: B2:08:11:26:E0:D9:59:11:39:58:5E:1C:46:8D:84:2A:63:BA:F7:F9 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0FB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F9E Signing time: Fri 12 Jun 2026 17:29:03 +0000 Manifest this update: Fri 12 Jun 2026 17:29:03 +0000 Manifest next update: Fri 19 Jun 2026 17:29:03 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: GLLZfJ6wZ+5Yt0j/n59VfdEZFxPeXo9NDNjTYIycR74=) 2: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: M1O0TrYvAUms1ssHPRAoRq4bhn4VdK0pL3BB4ocE2jg=) 3: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: rVqpkfIia95fH7hrm3/K25j3N5yZHWL25KnyFo0eRas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4016 (0xfb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Jun 12 17:29:03 2026 GMT Not After : Jun 19 17:29:03 2026 GMT Subject: CN=6a2c41df-db15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4c:b3:f8:aa:9c:66:20:06:ce:a2:a1:40:31: f7:80:0b:37:f9:1b:a5:6e:c3:b6:c3:47:dc:07:86: a7:b6:95:04:be:30:cc:01:59:c2:29:69:54:c3:88: 3c:76:d6:4c:aa:d9:5e:25:3a:7d:f8:7d:dc:23:7d: 7f:da:11:ee:d2:4d:07:f7:17:fb:dc:eb:2e:53:27: f8:73:95:59:6e:1c:a0:1d:04:1b:c5:20:f3:e2:35: 0c:10:11:14:bf:92:2b:12:d0:b1:b2:87:8d:d1:b2: 38:06:e8:55:da:1d:06:1a:47:6b:5c:a2:a3:33:31: d7:4a:b1:bd:57:fd:9d:c5:0d:fd:31:53:8c:51:76: 9a:63:d8:95:5c:92:00:00:c7:07:fe:31:14:b5:1c: 85:f5:08:e3:90:6c:7c:8c:1a:36:c9:b9:27:3d:82: ee:4e:3f:94:59:92:45:06:94:4a:be:e9:a2:43:39: 76:bc:95:36:a5:b5:09:c7:a9:a1:4c:cf:f7:d1:89: e3:c8:d7:c6:47:f5:80:27:2b:63:87:a7:d8:e8:6a: 0b:8b:64:79:c2:a7:1b:df:5b:3b:4a:3e:92:5b:08: 13:93:c8:ba:5d:d9:4e:ef:90:7e:49:5a:a8:d5:49: 85:55:ed:c7:71:8f:8f:15:a6:fc:3f:cb:2a:b8:c4: 30:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:08:11:26:E0:D9:59:11:39:58:5E:1C:46:8D:84:2A:63:BA:F7:F9 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:03:d4:2d:0c:ce:a1:c5:69:ae:6d:cc:4c:b3:91:30:1a:6b: 22:1c:d2:22:ff:57:4e:ab:c4:75:79:2a:f5:59:59:c4:f7:9c: 1b:d1:0a:26:79:fb:6a:b4:4a:a8:93:39:19:15:de:cb:0c:21: d3:03:5c:29:25:2c:fd:ca:74:d4:d7:8d:40:1d:14:8f:30:1e: bb:61:70:ac:53:66:a8:77:ea:72:2c:e4:a9:4e:19:5c:4d:89: 18:19:6e:9a:c9:a9:27:c9:77:31:66:b0:86:22:19:34:42:74: c7:a5:12:52:e4:a1:b3:86:ec:65:59:c3:fe:29:b2:85:8e:83: ea:91:ea:4b:a7:c2:9d:2a:7a:cf:2c:c9:b5:7e:f2:02:68:d5: 5b:73:ad:7b:84:e8:ba:66:5f:dd:22:da:ff:c3:1b:5d:d9:50: b7:07:15:10:6f:4f:91:30:31:eb:15:a5:36:cf:a9:ea:e4:67: 76:ee:49:81:dc:61:41:5b:a5:af:ec:3d:85:2c:1a:7f:5a:ca: 59:aa:10:69:4a:d0:c2:28:12:80:01:ba:13:dd:49:50:6a:4e: 6d:02:ef:1a:3b:b8:6f:04:3a:2c:ce:7d:85:86:fc:d2:b1:ec: 51:37:2b:3c:a8:d8:06:28:5b:31:3f:a8:b4:e0:6d:b5:be:61: 78:9a:ec:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjYwNjEyMTcyOTAzWhcNMjYwNjE5MTcyOTAzWjAYMRYwFAYD VQQDEw02YTJjNDFkZi1kYjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEyz+KqcZiAGzqKhQDH3gAs3+RulbsO2w0fcB4antpUEvjDMAVnCKWlUw4g8 dtZMqtleJTp9+H3cI31/2hHu0k0H9xf73OsuUyf4c5VZbhygHQQbxSDz4jUMEBEU v5IrEtCxsoeN0bI4BuhV2h0GGkdrXKKjMzHXSrG9V/2dxQ39MVOMUXaaY9iVXJIA AMcH/jEUtRyF9QjjkGx8jBo2ybknPYLuTj+UWZJFBpRKvumiQzl2vJU2pbUJx6mh TM/30YnjyNfGR/WAJytjh6fY6GoLi2R5wqcb31s7Sj6SWwgTk8i6XdlO75B+SVqo 1UmFVe3HcY+PFab8P8squMQw4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLIIESbg 2VkROVheHEaNhCpjuvf5MB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADQPULQzOocVprm3MTLORMBprIhzSIv9XTqvEdXkq9VlZxPecG9EKJnn7arRK qJM5GRXeywwh0wNcKSUs/cp01NeNQB0UjzAeu2FwrFNmqHfqcizkqU4ZXE2JGBlu msmpJ8l3MWawhiIZNEJ0x6USUuShs4bsZVnD/imyhY6D6pHqS6fCnSp6zyzJtX7y AmjVW3Ote4ToumZf3SLa/8MbXdlQtwcVEG9PkTAx6xWlNs+p6uRndu5JgdxhQVul r+w9hSwaf1rKWaoQaUrQwigSgAG6E91JUGpObQLvGju4bwQ6LM59hYb80rHsUTcr PKjYBihbMT+otOBttb5heJrssQ== -----END CERTIFICATE-----Generated at Sun Jun 14 03:13:32 2026 by rpki-client