$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: gE+aIjwxwiteTy8ypcs4JwWgijvVIzqSDRCevzYvnf8= Subject key identifier: E8:F5:5F:CB:FA:90:A9:0E:A3:67:68:BC:CF:1E:88:1A:D5:A3:EB:AA Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 35B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 357C Signing time: Fri 12 Jun 2026 14:43:50 +0000 Manifest this update: Fri 12 Jun 2026 14:43:50 +0000 Manifest next update: Fri 19 Jun 2026 14:43:50 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: /P2tv/5DPj+jOammQDNBMAlMxq8kPsSeqSLmVt+SeuQ=) 2: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) 3: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) 4: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13751 (0x35b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Jun 12 14:43:50 2026 GMT Not After : Jun 19 14:43:50 2026 GMT Subject: CN=6a2c1b26-1c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:64:6b:96:b9:db:b2:24:55:c7:c5:67:ae:a7: a1:59:02:01:5b:d6:f5:16:35:73:a3:bb:9f:fc:a5: 49:07:ff:23:01:eb:e8:b0:92:cd:55:09:7e:8b:55: 8d:9e:33:d6:45:b9:54:ed:6f:d1:55:da:a7:24:5f: c0:09:09:8e:68:39:35:a7:39:26:59:8c:56:10:3b: 45:7b:e6:07:e2:d6:9c:28:66:a2:00:23:7e:da:5c: 91:de:04:53:99:f4:94:dc:71:47:41:42:16:6b:14: 85:d0:0c:60:65:62:6f:70:3f:c8:d1:da:75:98:35: cc:76:f3:e6:3f:75:76:02:ae:0f:07:c0:30:2b:7b: 5a:b9:87:61:fc:c2:86:0f:de:a2:a7:3b:f8:28:af: 60:2a:3b:71:c0:54:e9:5c:5a:6f:79:db:4f:d2:18: f0:fd:16:1e:26:6a:3e:62:3e:72:6a:43:da:57:46: ef:a6:9b:fe:50:92:83:73:93:bc:93:25:c6:53:82: cd:6c:2a:1e:7d:eb:a8:04:1f:9e:c8:27:eb:dc:77: da:0b:74:d3:db:0b:1e:03:95:6b:51:d2:6c:28:a4: ee:bb:5b:68:db:10:8e:d7:09:72:f1:55:e3:7d:63: 24:7f:21:46:25:1e:58:5e:af:90:0b:ff:15:13:ae: 23:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F5:5F:CB:FA:90:A9:0E:A3:67:68:BC:CF:1E:88:1A:D5:A3:EB:AA X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:3d:4f:7a:36:65:8a:85:c3:00:86:7d:46:57:1e:6e:40:56: 28:d9:bb:a4:b3:8c:69:7a:ec:c5:c3:58:d6:64:00:6e:e2:8f: 90:4b:3c:d7:70:94:69:b0:7e:53:05:af:86:e0:bf:04:2a:48: 3a:5f:93:d0:f2:ed:3b:b4:55:d2:f5:25:06:c4:5b:de:bd:f1: 08:88:c9:a0:6e:cc:2b:eb:be:b0:84:ed:d7:4a:b5:0f:bc:f2: fd:7a:8f:55:69:0e:eb:ba:19:76:d5:f3:80:a6:e1:ce:b2:7a: 4c:91:f4:53:c8:2a:34:2f:2f:2b:56:86:2f:17:62:23:9f:b9: 08:60:65:db:25:7f:45:5e:18:97:78:9b:da:36:9d:a8:de:4f: c0:15:1d:ed:33:f9:a4:51:d1:dd:1b:b2:84:14:04:27:8e:a0: 7f:c7:d8:a0:0a:46:91:8f:e1:3c:09:8a:a4:c5:43:63:d0:18: 6e:13:db:55:6e:d8:7e:5d:d3:07:70:29:c1:01:5a:bc:b6:aa: 32:ef:8a:cb:5f:09:87:a3:b0:e6:cf:ba:a9:38:d0:a6:4f:ea: 84:15:42:b9:66:5b:1a:85:03:7c:5a:26:77:ee:df:9e:04:7d: 65:30:6b:9b:71:7a:80:6d:11:bb:60:1e:d1:fd:78:47:a8:41: cf:52:de:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwNjEyMTQ0MzUwWhcNMjYwNjE5MTQ0MzUwWjAYMRYwFAYD VQQDEw02YTJjMWIyNi0xYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmWRrlrnbsiRVx8VnrqehWQIBW9b1FjVzo7uf/KVJB/8jAevosJLNVQl+i1WN njPWRblU7W/RVdqnJF/ACQmOaDk1pzkmWYxWEDtFe+YH4tacKGaiACN+2lyR3gRT mfSU3HFHQUIWaxSF0AxgZWJvcD/I0dp1mDXMdvPmP3V2Aq4PB8AwK3tauYdh/MKG D96ipzv4KK9gKjtxwFTpXFpvedtP0hjw/RYeJmo+Yj5yakPaV0bvppv+UJKDc5O8 kyXGU4LNbCoefeuoBB+eyCfr3HfaC3TT2wseA5VrUdJsKKTuu1to2xCO1wly8VXj fWMkfyFGJR5YXq+QC/8VE64jbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOj1X8v6 kKkOo2dovM8eiBrVo+uqMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAD1PejZlioXDAIZ9RlcebkBWKNm7pLOMaXrsxcNY1mQAbuKPkEs813CUabB+ UwWvhuC/BCpIOl+T0PLtO7RV0vUlBsRb3r3xCIjJoG7MK+u+sITt10q1D7zy/XqP VWkO67oZdtXzgKbhzrJ6TJH0U8gqNC8vK1aGLxdiI5+5CGBl2yV/RV4Yl3ib2jad qN5PwBUd7TP5pFHR3RuyhBQEJ46gf8fYoApGkY/hPAmKpMVDY9AYbhPbVW7Yfl3T B3ApwQFavLaqMu+Ky18Jh6Ow5s+6qTjQpk/qhBVCuWZbGoUDfFomd+7fngR9ZTBr m3F6gG0Ru2Ae0f14R6hBz1LerQ== -----END CERTIFICATE-----Generated at Sat Jun 13 10:03:02 2026 by rpki-client