$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: DQVXdJId85chTO1CyiXkVYXBhFTuaO/D+egqO4fWYtA= Subject key identifier: 76:ED:2F:64:30:3D:E2:96:91:C0:2F:9D:A4:28:32:5F:FD:A0:D4:F7 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0E2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DFA Signing time: Fri 12 Jun 2026 17:51:22 +0000 Manifest this update: Fri 12 Jun 2026 17:51:21 +0000 Manifest next update: Fri 19 Jun 2026 17:51:21 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: spgin5CiR22z5UUPiYtGe7FjRTDcoh8JbY3iNn/63Gc=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: meOmGfY3r0GblklalG+4OMMAMZcdYPQdKS2Ett97RO8=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: T5GAbC0yTN338KtcDTUO9gQz4ASEYtGI5aC6qczg2W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:51:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3627 (0xe2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Jun 12 17:51:21 2026 GMT Not After : Jun 19 17:51:21 2026 GMT Subject: CN=6a2c471a-2a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:12:45:9f:99:6a:23:da:ba:61:62:f2:06: 56:20:bd:93:c0:6d:6b:bd:12:16:35:46:3e:1b:6d: c3:23:57:db:1f:38:c6:2e:28:e9:49:08:04:0c:0e: 10:3b:5a:d0:da:4d:b7:8f:61:a5:f4:da:57:0c:10: e9:20:02:e9:1c:ec:bb:4f:57:13:8c:b7:8a:d7:ee: fc:67:4e:a6:3f:5b:f9:54:12:70:dc:0f:29:1c:e8: 52:5d:de:a8:22:84:a8:e8:76:f8:d2:de:52:b9:31: c6:08:8f:a8:78:d4:73:f1:49:60:af:0c:ea:60:38: d0:d2:c1:cd:db:5b:99:a2:85:ff:e7:38:60:bd:d4: 3f:a4:bc:d8:ae:d2:83:ca:75:77:ed:7b:01:1f:6c: 09:a8:0f:59:91:95:a3:7b:f8:39:25:63:f6:c9:7e: 31:c0:5a:7d:b5:a0:66:ff:bc:9b:3e:92:81:31:7e: 22:48:b8:7c:44:f4:c1:d5:a3:2b:7a:06:19:77:73: 8c:75:ed:b4:e6:93:73:1f:d1:ec:85:a4:b7:b9:b9: 35:ac:09:67:c4:57:04:88:42:cf:4d:f5:e6:67:5c: 8e:6d:81:9e:7b:28:15:4c:94:62:b1:08:f0:0d:98: fd:ca:93:d4:fa:c1:eb:e6:d3:ce:ae:c5:49:10:03: 9a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:ED:2F:64:30:3D:E2:96:91:C0:2F:9D:A4:28:32:5F:FD:A0:D4:F7 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:7c:2a:2e:eb:dd:9c:1f:d6:16:46:74:80:56:c8:26:e1:1e: 4f:62:c1:76:98:f4:67:20:f9:e9:8b:6d:7d:56:70:f4:e2:ae: e4:5f:8c:86:20:ff:ce:58:7f:2f:81:bf:38:fc:34:23:89:56: e9:f9:cd:d6:20:34:98:5b:3a:fa:bf:d1:12:55:4e:2c:47:84: bc:4d:48:30:19:ab:8a:05:3c:3c:ef:40:72:4f:98:fb:ca:cf: 66:46:fe:99:a6:5f:26:8b:aa:8b:4c:b8:f5:5e:76:55:40:5f: 1c:0d:ec:55:2a:83:f3:06:ad:c8:da:13:f7:7b:ff:da:5f:2b: b8:8a:1d:10:92:d1:3f:9e:81:b0:86:56:34:b7:dd:c3:c9:e1: 30:de:88:f8:83:ea:eb:e2:27:e3:04:84:49:68:0e:05:c7:cc: bd:86:da:c6:a4:12:9c:77:90:b0:49:3b:10:72:d9:47:fd:42: be:09:48:e6:9a:ea:d4:94:75:38:31:ee:06:64:22:2b:e0:f3: fc:ab:41:bc:ee:85:b7:84:71:fc:db:d4:50:8e:1d:c1:2a:d2: 90:d9:b4:54:3f:00:7c:0f:e0:56:24:4c:bf:05:96:43:7b:0c: c2:63:a3:37:ce:09:58:4c:ce:8e:a7:d6:58:7e:16:16:10:e4: 46:46:d7:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwNjEyMTc1MTIxWhcNMjYwNjE5MTc1MTIxWjAYMRYwFAYD VQQDEw02YTJjNDcxYS0yYTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzgSRZ+ZaiPaumFi8gZWIL2TwG1rvRIWNUY+G23DI1fbHzjGLijpSQgEDA4Q O1rQ2k23j2Gl9NpXDBDpIALpHOy7T1cTjLeK1+78Z06mP1v5VBJw3A8pHOhSXd6o IoSo6Hb40t5SuTHGCI+oeNRz8UlgrwzqYDjQ0sHN21uZooX/5zhgvdQ/pLzYrtKD ynV37XsBH2wJqA9ZkZWje/g5JWP2yX4xwFp9taBm/7ybPpKBMX4iSLh8RPTB1aMr egYZd3OMde205pNzH9HshaS3ubk1rAlnxFcEiELPTfXmZ1yObYGeeygVTJRisQjw DZj9ypPU+sHr5tPOrsVJEAOaXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHbtL2Qw PeKWkcAvnaQoMl/9oNT3MB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGXwqLuvdnB/WFkZ0gFbIJuEeT2LBdpj0ZyD56YttfVZw9OKu5F+MhiD/zlh/ L4G/OPw0I4lW6fnN1iA0mFs6+r/RElVOLEeEvE1IMBmrigU8PO9Ack+Y+8rPZkb+ maZfJouqi0y49V52VUBfHA3sVSqD8watyNoT93v/2l8ruIodEJLRP56BsIZWNLfd w8nhMN6I+IPq6+In4wSESWgOBcfMvYbaxqQSnHeQsEk7EHLZR/1CvglI5prq1JR1 ODHuBmQiK+Dz/KtBvO6Ft4Rx/NvUUI4dwSrSkNm0VD8AfA/gViRMvwWWQ3sMwmOj N84JWEzOjqfWWH4WFhDkRkbXeg== -----END CERTIFICATE-----Generated at Sat Jun 13 07:35:36 2026 by rpki-client