$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: fA3Im7ZXqr62fDMLcpk6VdRIyNHauF4TSHV/cuaNfgc= Subject key identifier: F0:5E:81:86:B0:02:66:37:D0:31:FE:45:67:8D:E9:1B:0C:8F:B4:CC Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 02A1 Signing time: Sat 13 Jun 2026 01:36:20 +0000 Manifest this update: Sat 13 Jun 2026 01:36:19 +0000 Manifest next update: Sat 20 Jun 2026 01:36:19 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: oFjbLR171WjQFN0FTzKDJEGRjwoVlbGlVDScT5ObkW8=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: WcWgzJGh0m7kjX3X0vlH0++NcJ8zb8A6kxhRMuoMb8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jun 13 01:36:19 2026 GMT Not After : Jun 20 01:36:19 2026 GMT Subject: CN=6a2cb414-7c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:bc:3c:ad:af:00:4e:e9:3f:99:d1:fb:82: c6:be:38:18:70:68:34:63:89:e1:56:82:53:f3:4c: f5:8b:95:25:28:d8:5a:a9:00:12:7b:60:25:99:ff: 84:2e:ce:4a:d8:34:93:82:3e:77:ae:98:b0:f4:bc: 48:42:d3:93:03:09:8c:7f:5e:69:e7:d6:2e:27:c6: d9:56:1e:91:a6:2f:70:08:6f:ea:78:f7:52:01:0d: 49:b8:e7:df:89:05:69:16:61:6c:7a:e2:4f:d7:c8: 14:e7:b2:c3:3c:d4:e2:4c:8f:28:ac:b6:34:7e:d1: ac:03:3c:96:d0:8d:8d:a4:85:2a:d1:1f:6a:ad:b4: 83:f7:09:a7:6e:d5:cb:a3:9f:ae:44:3a:21:6a:9e: a6:d4:fb:6f:41:9a:33:36:69:d2:2c:28:aa:9e:4b: bc:19:f1:5f:f1:c6:ef:8c:f5:f8:f2:05:20:33:41: 47:81:5a:be:74:47:d1:25:73:51:61:38:13:2e:74: 67:df:12:3b:7a:dc:2e:87:b1:e7:6f:ce:b6:b5:3c: f4:04:1c:ad:4b:e0:28:d5:ab:43:0a:7c:e0:25:30: 74:d3:23:10:d4:82:52:c9:b9:ee:73:ff:e1:70:68: 60:95:ad:a8:65:bb:78:b2:60:98:11:1c:ff:e5:a4: de:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5E:81:86:B0:02:66:37:D0:31:FE:45:67:8D:E9:1B:0C:8F:B4:CC X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ef:55:17:38:c3:5a:4f:1f:7b:72:64:09:a6:72:bb:c3:29: c4:7b:ff:ab:67:f1:24:7d:37:35:af:dc:95:b8:e6:5f:74:b9: 04:c7:e5:57:c0:b4:91:2f:2c:38:f9:ee:9e:f4:3c:6b:02:16: 11:1a:c6:2f:e3:a1:b9:b3:59:ad:71:18:4c:b4:a0:22:05:19: 91:99:e2:46:68:e3:d2:ed:af:7b:0d:ff:f1:db:fe:28:c4:21: 6e:57:22:f9:0f:3b:aa:ca:35:b8:fa:bb:4e:9b:bf:71:f7:8a: 47:10:8d:08:2b:6e:d3:bc:79:70:a1:21:50:77:b3:f2:e0:f1: 38:50:71:8b:a0:3b:84:d0:11:e1:09:a0:b7:87:22:e2:82:58: 31:70:dc:b6:1d:88:27:68:9c:7d:5a:7e:35:7b:d7:af:7a:9a: 62:f6:f5:29:62:e9:dd:7d:19:e3:a8:cf:a2:1a:a3:a2:db:dd: ee:d7:28:a9:48:81:68:6b:07:21:f0:96:c4:ff:c5:9c:a5:12: f1:59:00:39:57:e1:9a:e1:ac:b7:93:0e:c9:91:07:46:3d:61: f5:92:d6:cb:d9:5c:7f:60:6e:cd:0d:6d:a2:df:5e:83:c2:fd: b1:2d:c8:52:e0:a2:28:f9:04:49:5b:e7:c5:89:a9:35:b2:27: 70:bf:68:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwNjEzMDEzNjE5WhcNMjYwNjIwMDEzNjE5WjAYMRYwFAYD VQQDEw02YTJjYjQxNC03YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6i8PK2vAE7pP5nR+4LGvjgYcGg0Y4nhVoJT80z1i5UlKNhaqQASe2Almf+E Ls5K2DSTgj53rpiw9LxIQtOTAwmMf15p59YuJ8bZVh6Rpi9wCG/qePdSAQ1JuOff iQVpFmFseuJP18gU57LDPNTiTI8orLY0ftGsAzyW0I2NpIUq0R9qrbSD9wmnbtXL o5+uRDohap6m1PtvQZozNmnSLCiqnku8GfFf8cbvjPX48gUgM0FHgVq+dEfRJXNR YTgTLnRn3xI7etwuh7Hnb862tTz0BBytS+Ao1atDCnzgJTB00yMQ1IJSybnuc//h cGhgla2oZbt4smCYERz/5aTeYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPBegYaw AmY30DH+RWeN6RsMj7TMMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKO9VFzjDWk8fe3JkCaZyu8MpxHv/q2fxJH03Na/clbjmX3S5BMflV8C0kS8s OPnunvQ8awIWERrGL+OhubNZrXEYTLSgIgUZkZniRmjj0u2vew3/8dv+KMQhblci +Q87qso1uPq7Tpu/cfeKRxCNCCtu07x5cKEhUHez8uDxOFBxi6A7hNAR4Qmgt4ci 4oJYMXDcth2IJ2icfVp+NXvXr3qaYvb1KWLp3X0Z46jPohqjotvd7tcoqUiBaGsH IfCWxP/FnKUS8VkAOVfhmuGst5MOyZEHRj1h9ZLWy9lcf2BuzQ1tot9eg8L9sS3I UuCiKPkESVvnxYmpNbIncL9ogg== -----END CERTIFICATE-----Generated at Sat Jun 13 11:07:40 2026 by rpki-client