$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: yLr/sOGA7qNBX49mdAZQkFBfBttGtO7k65ToHQ/roKc= Subject key identifier: 8C:CC:27:30:DD:9B:21:2D:92:B2:57:DC:4B:D8:ED:18:7C:10:51:70 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 08C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 0875 Signing time: Fri 12 Jun 2026 20:58:09 +0000 Manifest this update: Fri 12 Jun 2026 20:58:09 +0000 Manifest next update: Fri 19 Jun 2026 20:58:09 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: VRXOy7eQuT1+vsJGOPfuL3k0Gj1Gz8E3vXw93ruHxqM=) 2: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: 2mIyjIYN6IO7ZQ4FUwscfGnk78kTtsjolDojwIN0av0=) 3: B512A570109211ECA693D74EC4F9AE02.roa (hash: L7d1U3gGL3grFk1wnPeyJKdZ3FejFM4vvmLKY3IRi5A=) 4: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: +r+gvF4pkq6hFHbY+ZoaIiUoalmLLSMykW5BxcQDeFU=) 5: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: JkwlB4IFE4Dgm1EcLQn9CRo6PclYWkjqCYFJJbMHsj0=) 6: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: +cRs2PboXe8g3+V+AJzpQpdTweZR3TGc016yIhZSQMI=) 7: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: i7X6zewMmXOfmuZsHLNceM/lQghxWwQZ7AxU0vSWV0M=) 8: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: ESImnuHKksdWJK2TDU4E1UVvcvoZ37KeHVw4wPPeVXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Jun 12 20:58:09 2026 GMT Not After : Jun 19 20:58:09 2026 GMT Subject: CN=6a2c72e1-d70d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:67:db:c9:bd:05:ae:bf:0f:6f:b6:d4:b5:98: 8d:6a:55:30:13:81:b3:0f:1c:bb:da:65:08:af:a7: b2:d2:66:93:0c:0b:a9:11:12:49:18:7a:02:cb:99: 63:a7:3b:f3:a5:d4:2f:27:16:9a:9a:81:77:38:e4: 29:c4:50:68:20:2d:7c:8e:f7:00:f3:52:02:6b:66: 8e:f4:ab:bc:10:c4:2b:45:9a:74:d3:51:68:66:bd: c8:8f:b5:a5:ae:5e:0d:8d:b9:7f:2d:79:fa:2b:a6: 60:57:af:cf:29:c7:c1:1f:c7:42:59:8f:bf:44:9b: 51:c1:96:f3:33:07:f8:81:6f:e0:59:2d:ad:c4:4f: 2f:24:58:71:d4:56:cc:28:52:aa:39:35:da:97:22: 8e:84:fc:35:fc:bb:95:8f:c8:13:8d:04:c0:36:da: 69:a4:af:1f:7b:98:73:a4:c0:7c:bf:d9:7b:60:1f: 9e:e6:2f:2b:27:d5:9d:ff:a4:b1:47:a3:a2:0b:97: 9a:d9:ae:fb:95:d8:c4:04:70:0b:46:6d:f5:6c:a0: 0c:16:e6:32:cf:ab:1b:63:9c:a6:04:5b:6d:03:82: b9:2f:96:ee:a1:c4:24:87:d6:d4:e5:e2:c2:d1:42: 32:11:f5:02:15:23:9b:43:65:12:9c:ed:0d:e1:c4: 97:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CC:27:30:DD:9B:21:2D:92:B2:57:DC:4B:D8:ED:18:7C:10:51:70 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:64:24:a6:b3:6b:d9:a0:2b:2e:63:8b:8b:e2:2c:76:8b:b9: 2e:aa:79:c2:08:a0:12:20:87:10:b2:44:38:1f:13:b9:db:c3: 91:79:3c:cb:d7:99:7b:e5:d3:c7:97:96:3d:b4:7c:ee:41:2b: 42:f2:31:7e:b5:53:bc:bf:d5:0e:43:c1:1d:20:3a:d2:54:ed: 67:d8:79:37:9f:1a:32:1c:1e:d9:2e:80:3e:06:4f:7f:e4:88: e2:9f:47:91:bc:05:4e:9d:14:d4:6f:44:e9:74:9b:e7:79:b7: 51:23:84:73:e6:68:4d:48:a2:cf:ef:79:cb:f0:48:80:90:7d: de:d3:53:cb:fc:92:55:9f:ae:63:b6:38:65:29:f6:df:66:d4: ba:07:7f:46:5b:c8:22:87:0f:6e:16:70:53:b7:b1:da:47:76: 19:79:5f:46:4e:56:3f:00:6b:3c:97:f7:3e:bc:fb:0e:37:ec: b3:f2:ce:3d:8e:ab:1c:db:03:87:23:21:72:22:90:d9:d0:a4: 90:18:00:3c:9c:c1:6e:31:84:fd:9b:01:f3:63:3b:29:05:04: 34:5a:c0:26:a8:55:59:08:8e:23:f6:93:0a:05:ef:f9:a1:b6: c2:c6:77:95:e3:21:a4:66:7c:bb:06:fd:47:aa:d0:2c:dc:43: 56:a8:90:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjYwNjEyMjA1ODA5WhcNMjYwNjE5MjA1ODA5WjAYMRYwFAYD VQQDEw02YTJjNzJlMS1kNzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62fbyb0Frr8Pb7bUtZiNalUwE4GzDxy72mUIr6ey0maTDAupERJJGHoCy5lj pzvzpdQvJxaamoF3OOQpxFBoIC18jvcA81ICa2aO9Ku8EMQrRZp001FoZr3Ij7Wl rl4Njbl/LXn6K6ZgV6/PKcfBH8dCWY+/RJtRwZbzMwf4gW/gWS2txE8vJFhx1FbM KFKqOTXalyKOhPw1/LuVj8gTjQTANtpppK8fe5hzpMB8v9l7YB+e5i8rJ9Wd/6Sx R6OiC5ea2a77ldjEBHALRm31bKAMFuYyz6sbY5ymBFttA4K5L5buocQkh9bU5eLC 0UIyEfUCFSObQ2USnO0N4cSXqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIzMJzDd myEtkrJX3EvY7Rh8EFFwMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAamQkprNr2aArLmOLi+Isdou5Lqp5wgigEiCHELJEOB8TudvDkXk8y9eZe+XT x5eWPbR87kErQvIxfrVTvL/VDkPBHSA60lTtZ9h5N58aMhwe2S6APgZPf+SI4p9H kbwFTp0U1G9E6XSb53m3USOEc+ZoTUiiz+95y/BIgJB93tNTy/ySVZ+uY7Y4ZSn2 32bUugd/RlvIIocPbhZwU7ex2kd2GXlfRk5WPwBrPJf3Prz7Djfss/LOPY6rHNsD hyMhciKQ2dCkkBgAPJzBbjGE/ZsB82M7KQUENFrAJqhVWQiOI/aTCgXv+aG2wsZ3 leMhpGZ8uwb9R6rQLNxDVqiQUg== -----END CERTIFICATE-----Generated at Sat Jun 13 22:02:04 2026 by rpki-client