$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: vilDbHkq2c3gzI8Nm+VRIOAFXCp411jME7pOF/1W2LM= Subject key identifier: A9:DC:C0:D8:A7:97:D6:D2:0C:2D:3C:D0:5A:A0:E8:3B:45:C7:CE:32 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0C4D Signing time: Fri 12 Jun 2026 18:45:57 +0000 Manifest this update: Fri 12 Jun 2026 18:45:56 +0000 Manifest next update: Fri 19 Jun 2026 18:45:56 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: wmWX1Ddr8c7Q4P+FaS1mdN/iZXVKaP68mHIU1Zaj5nA=) 2: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: PVNVIsAGF4iLu1l85ogTKaGXUTCHGrR1d4s3DuDaU/s=) 3: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: M7Twy19LjGj2zYAkQBPKqFxpHK+7jtbWBpYW+TQys+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Jun 12 18:45:56 2026 GMT Not After : Jun 19 18:45:56 2026 GMT Subject: CN=6a2c53e5-ae90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1b:dc:69:29:21:1a:9d:55:1c:41:53:41:07: 96:9f:bb:2a:aa:da:ce:e8:c8:14:96:90:98:aa:dd: f7:5d:29:d2:55:04:c3:2c:0f:71:d6:48:f9:b6:25: 1f:2a:df:ef:2f:3f:aa:dc:69:e8:30:2d:4e:dc:9c: 80:dc:2e:c4:b8:9e:4c:d5:3a:3e:c9:c4:eb:73:54: 93:01:85:5a:32:79:c6:43:bb:e1:1b:84:28:98:1c: e9:aa:1e:cc:a6:30:fe:f8:f5:17:f8:e4:31:a2:dc: 30:0f:bd:eb:fc:48:fe:b4:d3:01:5b:d6:48:1b:40: 87:a7:40:3f:11:2a:bd:f6:5c:1c:49:23:df:f4:69: b4:06:c5:1c:d4:e5:4b:9d:02:a0:62:36:17:00:20: aa:89:69:5e:38:47:ad:2c:2d:f8:db:dc:56:11:0e: 97:11:7b:57:7e:14:a5:34:98:f1:27:a3:9a:ee:82: c5:f4:5c:fd:b4:89:83:9e:ae:dc:91:fe:d1:e2:25: 2d:5f:f8:c0:08:ba:44:48:7d:9c:32:d0:7a:69:e9: 14:3c:db:d0:f1:b8:db:5c:2a:15:36:b3:ef:0d:2d: 6b:e9:35:2f:c0:28:79:70:cf:39:2d:af:7b:33:51: b7:20:5d:45:9b:ba:79:bd:f4:89:ff:89:7a:05:b0: 26:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DC:C0:D8:A7:97:D6:D2:0C:2D:3C:D0:5A:A0:E8:3B:45:C7:CE:32 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:44:eb:84:12:5c:96:72:3a:c2:17:19:d0:b7:03:57:71:ab: d8:f6:0a:ed:1c:8a:5f:cd:31:f7:2e:35:4e:ac:70:b4:6b:cf: 6e:18:b3:68:07:af:92:93:02:26:31:a2:fb:98:b5:3a:eb:46: 2a:73:1d:87:1b:ae:ea:03:9b:48:ba:d1:76:8d:3e:19:78:d6: 7e:ff:a9:59:71:fe:4f:50:0a:dd:33:4e:e0:3a:5e:0c:ed:e2: 60:a0:81:05:a9:bd:fa:99:3b:7c:cf:cb:c0:51:f2:dd:e7:96: 45:32:82:f3:a8:31:71:6d:b5:d3:f0:3f:4f:e4:de:46:18:0c: d5:b9:00:bd:a3:24:c3:9c:37:b4:b0:df:b3:01:67:a1:86:ea: 94:d4:b2:bf:f5:a7:e8:92:01:a1:c1:36:2f:03:a3:4a:7e:12: 71:58:af:f9:c9:ca:f4:79:89:2a:85:5d:20:2b:aa:7a:91:06: d7:cd:68:19:d0:89:4e:e2:84:55:1c:03:01:58:0e:ce:21:8c: 87:a8:8d:7f:87:21:c3:d1:aa:cd:2e:40:76:66:aa:86:02:6d: 18:23:13:56:b6:7b:64:55:15:89:fc:7b:ef:a6:12:52:d8:dd: 31:e4:51:2b:c3:90:e0:2f:63:d7:44:1d:43:4d:ee:44:d1:d4: 68:18:b3:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjYwNjEyMTg0NTU2WhcNMjYwNjE5MTg0NTU2WjAYMRYwFAYD VQQDEw02YTJjNTNlNS1hZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxvcaSkhGp1VHEFTQQeWn7sqqtrO6MgUlpCYqt33XSnSVQTDLA9x1kj5tiUf Kt/vLz+q3GnoMC1O3JyA3C7EuJ5M1To+ycTrc1STAYVaMnnGQ7vhG4QomBzpqh7M pjD++PUX+OQxotwwD73r/Ej+tNMBW9ZIG0CHp0A/ESq99lwcSSPf9Gm0BsUc1OVL nQKgYjYXACCqiWleOEetLC3429xWEQ6XEXtXfhSlNJjxJ6Oa7oLF9Fz9tImDnq7c kf7R4iUtX/jACLpESH2cMtB6aekUPNvQ8bjbXCoVNrPvDS1r6TUvwCh5cM85La97 M1G3IF1Fm7p5vfSJ/4l6BbAmpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKncwNin l9bSDC080Fqg6DtFx84yMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjkTrhBJclnI6whcZ0LcDV3Gr2PYK7RyKX80x9y41TqxwtGvPbhizaAevkpMC JjGi+5i1OutGKnMdhxuu6gObSLrRdo0+GXjWfv+pWXH+T1AK3TNO4DpeDO3iYKCB Bam9+pk7fM/LwFHy3eeWRTKC86gxcW210/A/T+TeRhgM1bkAvaMkw5w3tLDfswFn oYbqlNSyv/Wn6JIBocE2LwOjSn4ScViv+cnK9HmJKoVdICuqepEG181oGdCJTuKE VRwDAVgOziGMh6iNf4chw9GqzS5AdmaqhgJtGCMTVrZ7ZFUVifx776YSUtjdMeRR K8OQ4C9j10QdQ03uRNHUaBiz6w== -----END CERTIFICATE-----Generated at Sat Jun 13 07:17:03 2026 by rpki-client