$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: XTLvcTiE04mwmY6YaZyG6DjH3Om/mR+KSgHmBRtZL0E= Subject key identifier: 17:CA:CD:62:89:B9:4C:B9:A3:FE:8D:31:07:3B:83:1B:07:0F:AB:3D Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 3554 Signing time: Fri 12 Jun 2026 15:06:09 +0000 Manifest this update: Fri 12 Jun 2026 15:06:09 +0000 Manifest next update: Fri 19 Jun 2026 15:06:09 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: +EpTl1FWyXLcofntjpFi9ZZCfi64DdRiPjG2lnpWYSs=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: DWDLfS9VFoRUspo4gPt0SLH/400cssY5io0TF9oRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13665 (0x3561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Jun 12 15:06:09 2026 GMT Not After : Jun 19 15:06:09 2026 GMT Subject: CN=6a2c2061-23d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:98:e0:fa:d0:9d:8e:a8:f5:dc:06:a0:ff:91: bc:a2:fd:b6:3b:ea:fb:c5:90:af:c9:a2:4d:89:ca: c4:8c:01:4c:bd:37:79:a1:66:21:5f:df:15:47:da: c3:7f:c8:33:20:69:46:13:4a:bf:10:6f:26:bf:60: 8e:83:3a:3e:b1:f5:01:7c:02:28:78:d5:1f:27:0a: 17:71:5b:ba:ac:6a:7d:a9:12:6f:ac:a6:44:f1:4f: 7e:b5:17:4d:e8:89:5a:46:25:3c:88:60:58:93:57: a3:92:16:20:1b:a5:4e:ed:6f:f6:bf:56:af:b6:46: 62:c7:d3:d9:84:af:35:ce:2c:49:b8:0e:e9:5f:e8: e4:dd:bd:4c:be:24:e2:8f:17:f6:ee:76:08:67:16: b0:b2:b1:17:dc:a8:17:28:b0:ca:db:1d:26:d4:f1: 9c:de:c7:fc:90:c6:36:9d:23:fd:ac:6d:d2:70:a0: fe:c8:aa:1f:82:db:66:c9:04:c1:62:78:16:21:5e: c0:fe:4f:6d:b2:ff:24:4d:86:63:a8:24:18:68:40: 09:37:97:d0:d6:99:9d:ce:ce:2f:4b:18:28:0a:d7: 09:a5:1f:60:45:e1:8d:ad:6d:74:b3:46:ec:83:6d: ef:cc:0f:43:08:d9:ab:7e:83:f1:c2:2e:ff:7b:0f: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CA:CD:62:89:B9:4C:B9:A3:FE:8D:31:07:3B:83:1B:07:0F:AB:3D X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:21:ba:a7:c2:1c:24:e7:95:8d:bb:80:a8:b9:35:45:8d:e3: 5c:3f:6b:3e:65:da:23:61:cc:9a:02:70:be:e1:0f:e2:05:08: 79:7f:3d:4d:4c:01:b0:a8:63:f7:92:f6:e4:11:4b:14:34:df: 38:0b:3d:fd:e3:3c:1d:e4:fb:18:a0:62:b0:34:ac:ab:10:f2: 3f:05:11:55:ad:13:f0:a7:d5:b2:0b:fa:18:56:6d:e0:49:41: c1:22:5f:0b:e8:6b:2f:a6:ee:92:b7:cb:1c:7a:4d:7b:07:93: 15:d6:03:f9:00:38:b0:ea:64:e9:4a:fe:12:fd:f5:98:11:42: 1f:9f:3b:38:ed:66:e6:de:57:c0:4f:2c:2e:51:02:a1:19:e9: 4b:0a:21:25:66:98:9e:74:69:5d:36:09:a8:70:0b:8a:44:8f: 11:f7:e2:90:5f:f7:8b:0b:11:03:cc:48:58:6e:0f:03:f4:e9: 63:12:60:ef:2e:80:bd:7c:ec:7c:49:61:cf:d0:85:ff:36:66: 9d:e3:71:ee:56:55:3c:7a:86:d0:59:cd:5e:b7:3e:f0:25:41: 5a:35:35:2e:2c:73:0a:b1:e7:84:4d:76:d9:54:57:39:9b:f4: 96:47:11:dc:85:39:3f:06:4e:9b:b7:f0:9b:51:fa:5d:da:f7: c7:0a:be:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwNjEyMTUwNjA5WhcNMjYwNjE5MTUwNjA5WjAYMRYwFAYD VQQDEw02YTJjMjA2MS0yM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Zjg+tCdjqj13Aag/5G8ov22O+r7xZCvyaJNicrEjAFMvTd5oWYhX98VR9rD f8gzIGlGE0q/EG8mv2COgzo+sfUBfAIoeNUfJwoXcVu6rGp9qRJvrKZE8U9+tRdN 6IlaRiU8iGBYk1ejkhYgG6VO7W/2v1avtkZix9PZhK81zixJuA7pX+jk3b1MviTi jxf27nYIZxawsrEX3KgXKLDK2x0m1PGc3sf8kMY2nSP9rG3ScKD+yKofgttmyQTB YngWIV7A/k9tsv8kTYZjqCQYaEAJN5fQ1pmdzs4vSxgoCtcJpR9gReGNrW10s0bs g23vzA9DCNmrfoPxwi7/ew/KBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBfKzWKJ uUy5o/6NMQc7gxsHD6s9MB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHiG6p8IcJOeVjbuAqLk1RY3jXD9rPmXaI2HMmgJwvuEP4gUIeX89TUwBsKhj 95L25BFLFDTfOAs9/eM8HeT7GKBisDSsqxDyPwURVa0T8KfVsgv6GFZt4ElBwSJf C+hrL6bukrfLHHpNeweTFdYD+QA4sOpk6Ur+Ev31mBFCH587OO1m5t5XwE8sLlEC oRnpSwohJWaYnnRpXTYJqHALikSPEffikF/3iwsRA8xIWG4PA/TpYxJg7y6AvXzs fElhz9CF/zZmneNx7lZVPHqG0FnNXrc+8CVBWjU1LixzCrHnhE122VRXOZv0lkcR 3IU5PwZOm7fwm1H6Xdr3xwq+nA== -----END CERTIFICATE-----Generated at Sat Jun 13 18:49:37 2026 by rpki-client