$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: DQaZuFkfHoMHh+SKM5OuHGEpD3KqvsID6SzeqUuUbSA= Subject key identifier: FC:07:09:9B:B7:39:FA:C6:D6:F9:44:14:74:83:E9:B2:D0:D6:CA:14 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 06DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 06D8 Signing time: Fri 12 Jun 2026 22:19:52 +0000 Manifest this update: Fri 12 Jun 2026 22:19:51 +0000 Manifest next update: Fri 19 Jun 2026 22:19:51 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: u7NxO3sAaOjesH5GOpxfYAox9UkN6/PBiF3KqNTss24=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: u5ce3mhL9MTgfMANLqmHFxu4YGZmlzL+s2cu4dHRCdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Jun 12 22:19:51 2026 GMT Not After : Jun 19 22:19:51 2026 GMT Subject: CN=6a2c8608-5ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3a:d1:ce:e0:95:4d:39:d1:e2:d7:fa:e2:b2: 4a:f0:ed:05:cb:3d:70:92:59:61:9a:5b:c1:f4:2a: fb:f2:65:40:96:52:07:ab:31:d1:99:0f:3b:7c:7a: e7:2b:44:82:a7:5f:8b:e1:4a:5a:64:45:6f:f2:e3: 90:6c:b5:de:f7:66:ae:8d:ec:91:40:3d:14:0f:0a: 42:8a:09:e2:a9:8e:07:8f:cb:26:b2:c0:ba:08:d9: 32:e0:77:26:c8:1f:8d:a1:58:b1:cb:e5:31:24:ee: d8:01:b0:a2:22:b5:ac:d6:e0:ea:73:a8:53:20:da: 8b:62:4f:6f:67:00:cf:a9:62:42:39:49:9a:92:c6: 92:71:9d:66:6f:3b:6f:92:82:f6:cb:af:f6:05:ee: dd:b7:82:da:8c:2e:ee:77:3c:c1:08:a0:46:d8:d6: 6a:f8:79:87:b0:59:ad:f8:04:c1:93:91:aa:73:06: c2:0e:6d:29:c4:18:01:10:bf:9e:a7:08:9c:39:75: be:58:b1:f0:23:97:b5:ab:88:1d:3e:2c:1a:fb:e4: 97:22:e8:08:65:59:c5:a7:f4:b5:32:2e:4a:37:f4: 90:e7:65:2a:15:b1:2d:02:6b:ed:dd:e4:6f:a6:ed: 1f:7d:cc:46:0c:d6:03:1b:f8:e0:e7:6f:ba:e6:bf: 10:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:07:09:9B:B7:39:FA:C6:D6:F9:44:14:74:83:E9:B2:D0:D6:CA:14 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:57:f7:30:39:d0:0f:b2:66:7e:d6:9f:fe:93:de:f8:8f:6b: eb:ec:a9:32:b9:9e:07:7a:01:57:d9:82:5c:c9:01:52:e4:11: 0f:b0:2f:a2:3d:2d:78:13:54:69:e8:fa:c2:f3:79:6d:2c:35: 94:f8:89:bd:b6:fc:8d:44:af:b1:a6:36:6b:40:80:0b:ef:72: 7e:19:29:b0:c0:6f:f3:1d:bf:24:4a:b5:01:41:63:78:8c:a8: 4a:fb:1b:fe:63:45:a4:3c:97:be:66:11:37:71:4c:06:17:47: a7:22:0c:20:a0:e6:2a:7d:57:f5:2b:01:e5:61:ed:c8:da:a9: 4d:c1:03:a0:ee:b7:31:18:09:63:5e:44:bc:d8:a6:15:62:d9: 01:62:5b:2a:01:71:d8:4a:68:eb:63:9a:1f:e7:66:24:92:2b: 36:76:78:62:76:bb:8f:6d:89:5e:91:85:ec:70:6f:62:54:1e: ff:4d:e1:85:25:a9:f7:93:4f:e5:a4:54:3a:55:b6:58:a5:ef: 5c:6c:03:4f:43:22:30:c1:c1:a6:c5:cf:7e:11:83:d8:cd:fe: 15:42:18:99:82:ce:41:cb:02:98:3b:08:aa:52:84:26:24:ed: cb:c1:0f:85:80:c7:65:36:e8:43:66:85:a3:af:e7:25:b3:7b: e7:f8:6e:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjYwNjEyMjIxOTUxWhcNMjYwNjE5MjIxOTUxWjAYMRYwFAYD VQQDEw02YTJjODYwOC01ZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDrRzuCVTTnR4tf64rJK8O0Fyz1wkllhmlvB9Cr78mVAllIHqzHRmQ87fHrn K0SCp1+L4UpaZEVv8uOQbLXe92aujeyRQD0UDwpCigniqY4Hj8smssC6CNky4Hcm yB+NoVixy+UxJO7YAbCiIrWs1uDqc6hTINqLYk9vZwDPqWJCOUmaksaScZ1mbztv koL2y6/2Be7dt4LajC7udzzBCKBG2NZq+HmHsFmt+ATBk5GqcwbCDm0pxBgBEL+e pwicOXW+WLHwI5e1q4gdPiwa++SXIugIZVnFp/S1Mi5KN/SQ52UqFbEtAmvt3eRv pu0ffcxGDNYDG/jg52+65r8QfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPwHCZu3 OfrG1vlEFHSD6bLQ1soUMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMVf3MDnQD7Jmftaf/pPe+I9r6+ypMrmeB3oBV9mCXMkBUuQRD7Avoj0teBNU aej6wvN5bSw1lPiJvbb8jUSvsaY2a0CAC+9yfhkpsMBv8x2/JEq1AUFjeIyoSvsb /mNFpDyXvmYRN3FMBhdHpyIMIKDmKn1X9SsB5WHtyNqpTcEDoO63MRgJY15EvNim FWLZAWJbKgFx2Epo62OaH+dmJJIrNnZ4Yna7j22JXpGF7HBvYlQe/03hhSWp95NP 5aRUOlW2WKXvXGwDT0MiMMHBpsXPfhGD2M3+FUIYmYLOQcsCmDsIqlKEJiTty8EP hYDHZTboQ2aFo6/nJbN75/huoA== -----END CERTIFICATE-----Generated at Sat Jun 13 13:30:42 2026 by rpki-client