$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: O9Z7A3yFj9TjnseMoi4jlreKrSve+0dyUpxlrVGGiyo= Subject key identifier: 31:C3:09:B0:B7:BE:DD:42:21:4B:5D:27:B3:E0:11:70:B0:FB:85:F2 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 10CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 10B9 Signing time: Fri 12 Jun 2026 17:18:04 +0000 Manifest this update: Fri 12 Jun 2026 17:18:03 +0000 Manifest next update: Fri 19 Jun 2026 17:18:03 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: 5stSkg/JplZaCzLonTI2aHDUku3Au1JeWNKSPq8HfSk=) 2: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: vMIdusdjtj9hlcGq2gI+hsj/mLp2lRpI2Yrz/QIdsz8=) 3: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: xjuxHTm+G9he/JFBNF/J7ScezC0X5PCaznrRtGeATtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Jun 12 17:18:03 2026 GMT Not After : Jun 19 17:18:03 2026 GMT Subject: CN=6a2c3f4c-31ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:75:85:ce:51:7c:21:33:20:be:ed:75:a5:ea: 10:7b:6a:e6:6f:43:f1:c3:66:45:db:13:c6:76:61: cb:3c:07:12:67:81:90:81:07:b4:b8:eb:a3:8d:5c: bd:0f:64:eb:8e:ff:8d:08:6d:57:c4:c5:ea:37:17: a9:91:84:2a:e9:3b:c8:0a:4e:f1:b9:46:78:8f:9c: 7e:95:4c:40:df:c9:ca:a8:2f:06:f8:9f:bf:7a:3b: 1e:15:3f:11:9f:f0:d5:d2:e2:09:68:a0:d6:eb:c8: d2:fd:56:b3:d3:38:04:b9:16:56:76:fc:00:5f:42: 57:ab:f3:4f:ee:85:1d:32:ec:77:60:3e:93:7f:c0: 94:33:d6:27:01:bc:03:5f:58:44:b6:df:7b:a6:23: 41:03:d8:90:c9:98:6b:bb:18:0c:b1:fd:4f:41:a4: cd:82:01:b9:7e:cd:a7:98:59:07:9c:d6:38:89:20: 60:1a:cf:5f:f0:43:c9:80:7d:e0:ce:05:b7:71:3f: 85:99:ab:e6:b3:28:f5:08:06:7e:c4:78:ad:ea:07: 57:44:d7:18:3d:3d:ae:88:65:4f:a0:07:b7:71:4d: 6d:04:1f:dc:36:02:c0:9d:d3:83:5e:32:83:d0:c5: ca:60:81:62:a3:e5:bf:e2:12:09:f4:04:c1:6b:31: af:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C3:09:B0:B7:BE:DD:42:21:4B:5D:27:B3:E0:11:70:B0:FB:85:F2 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:64:82:f9:f2:b6:5e:85:82:cc:7b:57:81:8e:7c:08:df:7d: cc:02:91:70:d0:2f:96:ab:a1:a2:ed:fc:39:b8:c0:47:f7:ef: d0:f4:33:70:a1:c3:93:9c:12:08:ef:bf:85:b6:6e:e1:24:51: 79:1e:bc:31:53:a4:4a:fd:8c:bb:86:8c:b7:f6:fd:46:72:2b: 46:1f:8a:ba:ca:80:d8:f8:97:74:b2:86:d1:0d:5f:3e:3d:bf: b8:ea:95:76:3e:21:93:84:b9:b4:16:82:3e:31:2b:8f:c5:b8: c2:e3:30:97:11:f3:8f:f0:f6:6b:b6:5a:5d:19:b8:fc:b0:70: b0:2b:9a:9c:5c:29:98:af:84:67:17:8d:8a:67:0d:bc:87:2f: 77:72:ea:e6:c1:bf:6c:0b:81:cd:cb:01:72:df:18:2e:c4:43: 2c:a5:48:a7:e5:ea:e2:c4:89:f1:2e:fa:c9:ef:8b:5f:2a:8c: c9:fa:bc:51:13:cf:a5:31:97:2a:ce:b9:c1:17:9f:41:ad:ff: 95:6c:f7:43:dd:92:a9:d5:a1:8d:e3:fb:e2:5b:0a:bb:65:ff: 40:2d:03:05:30:9b:2b:6a:c7:d1:6f:d9:bd:c1:d5:6b:fa:68: b6:ed:c9:b1:4d:8e:03:8b:06:a5:82:b9:81:ab:9a:15:c3:29: 06:f0:72:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjYwNjEyMTcxODAzWhcNMjYwNjE5MTcxODAzWjAYMRYwFAYD VQQDEw02YTJjM2Y0Yy0zMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3WFzlF8ITMgvu11peoQe2rmb0Pxw2ZF2xPGdmHLPAcSZ4GQgQe0uOujjVy9 D2Trjv+NCG1XxMXqNxepkYQq6TvICk7xuUZ4j5x+lUxA38nKqC8G+J+/ejseFT8R n/DV0uIJaKDW68jS/Vaz0zgEuRZWdvwAX0JXq/NP7oUdMux3YD6Tf8CUM9YnAbwD X1hEtt97piNBA9iQyZhruxgMsf1PQaTNggG5fs2nmFkHnNY4iSBgGs9f8EPJgH3g zgW3cT+Fmavmsyj1CAZ+xHit6gdXRNcYPT2uiGVPoAe3cU1tBB/cNgLAndODXjKD 0MXKYIFio+W/4hIJ9ATBazGvZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDHDCbC3 vt1CIUtdJ7PgEXCw+4XyMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAimSC+fK2XoWCzHtXgY58CN99zAKRcNAvlquhou38ObjAR/fv0PQzcKHDk5wS CO+/hbZu4SRReR68MVOkSv2Mu4aMt/b9RnIrRh+KusqA2PiXdLKG0Q1fPj2/uOqV dj4hk4S5tBaCPjErj8W4wuMwlxHzj/D2a7ZaXRm4/LBwsCuanFwpmK+EZxeNimcN vIcvd3Lq5sG/bAuBzcsBct8YLsRDLKVIp+Xq4sSJ8S76ye+LXyqMyfq8URPPpTGX Ks65wRefQa3/lWz3Q92SqdWhjeP74lsKu2X/QC0DBTCbK2rH0W/ZvcHVa/potu3J sU2OA4sGpYK5gauaFcMpBvByqg== -----END CERTIFICATE-----Generated at Sat Jun 13 22:58:05 2026 by rpki-client