$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: DA0PHMpQsUKFY8ylJV3OO4+5phnumdRzgM0kQpKxmq8= Subject key identifier: 03:52:D7:E1:C1:62:67:7A:52:53:FC:6F:C8:07:45:71:43:CB:2B:6D Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 0126 Signing time: Fri 12 Jun 2026 22:30:36 +0000 Manifest this update: Fri 12 Jun 2026 22:30:36 +0000 Manifest next update: Fri 19 Jun 2026 22:30:36 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: LV+NyrPTpCuIrG24gzzI2QWE0dvQLmp1gYrcP516vac=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: ASL8/2HCWAJCmthowgFWIUdkitcmGIEB/XyIsZpt42w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Jun 12 22:30:36 2026 GMT Not After : Jun 19 22:30:36 2026 GMT Subject: CN=6a2c888c-f289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:86:10:ea:27:18:ac:16:00:7c:76:f4:a1:64: 5e:83:88:4f:d7:ad:53:57:ff:6e:15:08:1c:ae:ab: 28:4b:e7:7f:38:9a:0e:bb:62:61:ce:1a:a2:f6:c1: 86:d7:b6:b1:d6:3b:51:15:c3:79:39:91:c0:21:79: ee:b4:c6:62:c3:6d:88:c1:ac:3b:de:73:f5:68:08: 62:cf:7f:6c:0c:af:9a:fc:d5:f5:c5:80:10:6c:24: b7:d1:e2:c0:37:1e:c0:c5:8c:98:e3:32:bc:b5:78: 25:b1:d4:27:c9:e5:4b:b9:7b:ea:f5:71:8d:94:75: 42:66:40:af:ae:22:a9:47:90:8d:4c:c3:df:62:2f: 14:87:12:59:08:45:3b:4f:b2:1a:cd:43:92:d8:4b: 13:b2:a0:85:91:00:bc:f6:df:c6:c8:54:c1:68:49: 61:d0:d7:51:3c:0e:2e:c0:b3:52:8a:f3:dc:fd:b2: 0c:69:6f:bc:29:63:da:f7:ee:38:7f:dd:73:49:73: cf:9c:e3:ba:bb:86:31:84:d1:c2:7a:9d:91:74:ee: e9:20:0b:a4:d7:7e:46:6b:1b:4c:a6:5d:46:bb:0b: 9b:f7:98:3e:35:ac:12:94:40:42:2f:e0:86:9a:f2: a8:7f:7e:9b:53:ee:2a:a5:9b:6a:72:a5:71:18:f4: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:52:D7:E1:C1:62:67:7A:52:53:FC:6F:C8:07:45:71:43:CB:2B:6D X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a9:c2:54:fc:55:96:a6:00:07:6d:e5:c8:cc:43:9b:0c:f2: f9:a7:79:d2:b5:c1:0b:b7:26:da:76:30:fd:ee:3c:07:cc:63: 87:24:3d:8a:82:39:5c:31:1c:bf:df:29:2a:5c:52:82:06:1e: 31:b4:3f:6c:f3:4c:ce:4a:85:04:fd:12:28:d9:cc:2b:c8:6b: 37:41:70:1b:46:e7:77:77:40:25:53:44:5f:0a:fe:64:6f:09: b5:61:a2:b3:dd:ac:00:56:3a:68:8a:e1:a3:5b:e9:f6:2c:78: 4e:0f:d7:d1:ae:ef:1b:1e:97:64:11:9d:69:25:c6:46:80:57: 51:d0:4f:5b:8a:ad:36:f1:89:8e:a6:ab:5a:7a:b7:7a:ea:76: 61:8d:40:0a:62:7e:f5:f1:d3:ed:52:7b:6f:ad:79:14:04:a0: 5f:f9:a5:0e:5e:99:42:c0:e4:a3:69:2c:46:cb:c6:52:66:43: a8:15:a7:71:5c:98:f5:3c:cb:40:1e:25:b7:71:fb:2b:21:46: 89:f9:54:8b:b9:97:b6:02:97:68:a1:4d:c5:20:4f:69:96:30: db:67:5d:4b:bd:08:70:71:b5:b3:76:43:78:b0:7a:2b:1f:d2: fc:3b:78:36:e2:38:0f:ba:13:11:f9:1e:8e:9a:28:60:ea:f9: 12:88:0b:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjYwNjEyMjIzMDM2WhcNMjYwNjE5MjIzMDM2WjAYMRYwFAYD VQQDEw02YTJjODg4Yy1mMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoYQ6icYrBYAfHb0oWReg4hP161TV/9uFQgcrqsoS+d/OJoOu2Jhzhqi9sGG 17ax1jtRFcN5OZHAIXnutMZiw22Iwaw73nP1aAhiz39sDK+a/NX1xYAQbCS30eLA Nx7AxYyY4zK8tXglsdQnyeVLuXvq9XGNlHVCZkCvriKpR5CNTMPfYi8UhxJZCEU7 T7IazUOS2EsTsqCFkQC89t/GyFTBaElh0NdRPA4uwLNSivPc/bIMaW+8KWPa9+44 f91zSXPPnOO6u4YxhNHCep2RdO7pIAuk135GaxtMpl1Guwub95g+NawSlEBCL+CG mvKof36bU+4qpZtqcqVxGPSJbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFANS1+HB Ymd6UlP8b8gHRXFDyyttMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJqnCVPxVlqYAB23lyMxDmwzy+ad50rXBC7cm2nYw/e48B8xjhyQ9ioI5XDEc v98pKlxSggYeMbQ/bPNMzkqFBP0SKNnMK8hrN0FwG0bnd3dAJVNEXwr+ZG8JtWGi s92sAFY6aIrho1vp9ix4Tg/X0a7vGx6XZBGdaSXGRoBXUdBPW4qtNvGJjqarWnq3 eup2YY1ACmJ+9fHT7VJ7b615FASgX/mlDl6ZQsDko2ksRsvGUmZDqBWncVyY9TzL QB4lt3H7KyFGiflUi7mXtgKXaKFNxSBPaZYw22ddS70IcHG1s3ZDeLB6Kx/S/Dt4 NuI4D7oTEfkejpooYOr5EogLjA== -----END CERTIFICATE-----Generated at Sat Jun 13 14:35:11 2026 by rpki-client