$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: 90axSUmCIqBHSt4UccfwSgLzxsb/d3zVYtPOPuI7RLA= Subject key identifier: 99:E0:06:F4:F9:C8:50:A2:0B:29:F2:8A:DA:27:B9:66:3E:9A:33:43 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 10DF Signing time: Fri 12 Jun 2026 14:25:00 +0000 Manifest this update: Fri 12 Jun 2026 14:25:00 +0000 Manifest next update: Fri 19 Jun 2026 14:25:00 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: ai2ZISyFtDdasPj9i14yZcW0B6OBh5VvfaJ0/nmDvSY=) 2: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: dZjVpX0OHFb95lVF9Cf+7jCMCOq6ryMRIoLMcRSlevM=) 3: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: FcrkIqa4XDgVdyeOamaFQqlLus8d1JT70DNswdpetnU=) 4: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: QAfeG31AUJ9ysS7/jFhyhx6FaI+gxOiP1E4c7gwnNZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4345 (0x10f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Jun 12 14:25:00 2026 GMT Not After : Jun 19 14:25:00 2026 GMT Subject: CN=6a2c16bc-02ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:ac:8b:03:1f:d5:5b:2f:9e:6c:1b:31:6b: 12:c7:bc:da:c8:a0:08:19:36:8c:ec:6b:26:38:f8: 21:a4:28:c9:c2:9a:3a:60:92:92:b8:22:2d:80:53: 71:be:e3:bf:73:8b:c1:ad:8c:94:fb:c7:94:b7:7b: 82:bf:cc:b6:2f:1a:55:d9:4b:28:c5:06:55:94:1e: 5d:46:ab:35:9f:1e:d8:6b:15:ec:40:49:26:82:c7: 7e:ad:82:a1:47:36:66:20:70:3d:bf:26:5c:fb:33: 4b:4c:69:d8:ae:3b:ad:f4:c5:12:47:ae:14:b2:91: dd:f5:3b:ff:82:59:86:77:17:bf:81:19:d9:eb:84: 23:a3:8e:e5:04:52:e9:af:31:f7:41:e6:8e:1d:fe: d0:38:b6:28:2e:ce:ad:05:a5:49:84:99:73:ec:3a: 14:39:77:c2:df:22:05:f5:97:6d:6b:36:69:13:e3: f4:53:e0:e6:31:f9:c7:ba:78:74:7a:63:7a:9d:41: ec:23:1e:f9:21:e6:1d:d1:d1:e8:e4:3e:26:23:57: 2a:11:95:0a:11:7f:fd:8b:26:cc:a8:93:09:03:df: 9a:bf:c5:b0:a9:9b:be:66:5e:28:01:fe:ca:87:e4: 9b:85:a2:71:de:cb:03:03:a3:06:10:1c:8b:f7:2a: fb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E0:06:F4:F9:C8:50:A2:0B:29:F2:8A:DA:27:B9:66:3E:9A:33:43 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:55:8b:51:90:f0:27:7e:69:b3:5b:fd:fc:25:98:6b:ba:45: 2b:2e:36:90:d8:94:56:ea:af:25:3a:76:ea:4e:9f:2d:57:ae: ea:e2:5a:d1:e4:62:4c:1e:cf:3d:12:b2:df:45:a0:d6:23:dd: 0a:ee:f8:72:b3:5e:dd:39:11:cf:b8:30:6d:8a:13:8d:74:c4: e4:f5:1b:c9:a9:6d:87:09:61:37:ec:e5:96:2f:21:05:a2:5b: 1d:8a:ec:82:43:8b:af:5f:20:91:ad:50:62:07:fd:98:54:c1: 33:94:65:31:a7:98:60:41:d2:f0:7a:65:9b:68:a6:ca:70:0b: 73:f0:dc:f6:7e:b5:a4:b9:a5:5a:ab:37:80:83:42:5d:14:c7: 17:8a:8d:8c:bd:38:9b:17:0d:b8:89:27:03:bf:1c:a1:7e:30: 60:f3:16:3f:00:27:5b:a2:f1:b6:0f:fd:b4:c1:b0:67:3b:1a: 2b:fe:4e:bc:8d:9b:bc:ce:b1:b3:4e:45:81:3d:ac:f9:cc:74: ad:84:a6:1b:1e:6d:73:a4:a0:f5:e4:cc:16:82:e0:6b:f9:04: 3f:7a:bb:82:59:c5:1e:3b:e2:c7:9c:02:57:56:5c:31:e4:92: 07:5d:cc:18:ae:aa:bc:57:52:f9:cd:b4:78:69:32:d0:c1:87: 64:f0:db:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwNjEyMTQyNTAwWhcNMjYwNjE5MTQyNTAwWjAYMRYwFAYD VQQDEw02YTJjMTZiYy0wMmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CqsiwMf1VsvnmwbMWsSx7zayKAIGTaM7GsmOPghpCjJwpo6YJKSuCItgFNx vuO/c4vBrYyU+8eUt3uCv8y2LxpV2UsoxQZVlB5dRqs1nx7YaxXsQEkmgsd+rYKh RzZmIHA9vyZc+zNLTGnYrjut9MUSR64UspHd9Tv/glmGdxe/gRnZ64Qjo47lBFLp rzH3QeaOHf7QOLYoLs6tBaVJhJlz7DoUOXfC3yIF9ZdtazZpE+P0U+DmMfnHunh0 emN6nUHsIx75IeYd0dHo5D4mI1cqEZUKEX/9iybMqJMJA9+av8WwqZu+Zl4oAf7K h+SbhaJx3ssDA6MGEByL9yr74QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJngBvT5 yFCiCynyitonuWY+mjNDMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADVWLUZDwJ35ps1v9/CWYa7pFKy42kNiUVuqvJTp26k6fLVeu6uJa0eRiTB7P PRKy30Wg1iPdCu74crNe3TkRz7gwbYoTjXTE5PUbyalthwlhN+zlli8hBaJbHYrs gkOLr18gka1QYgf9mFTBM5RlMaeYYEHS8Hplm2imynALc/Dc9n61pLmlWqs3gINC XRTHF4qNjL04mxcNuIknA78coX4wYPMWPwAnW6Lxtg/9tMGwZzsaK/5OvI2bvM6x s05FgT2s+cx0rYSmGx5tc6Sg9eTMFoLga/kEP3q7glnFHjvix5wCV1ZcMeSSB13M GK6qvFdS+c20eGky0MGHZPDbCA== -----END CERTIFICATE-----Generated at Sat Jun 13 21:45:41 2026 by rpki-client