$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json) Hash identifier: ffUt4pLTrftJPdNvYQHAtp5zdvCHktYmxUN5rbzx0IA= Subject key identifier: D3:9E:25:CE:F0:4E:EC:0D:2E:DD:B1:E5:DE:A7:9A:2A:17:10:33:48 Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft Manifest number: CA Signing time: Sat 13 Jun 2026 07:05:30 +0000 Manifest this update: Sat 13 Jun 2026 07:05:30 +0000 Manifest next update: Sat 20 Jun 2026 07:05:30 +0000 Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: kHVGfrzNNm+fmIfINXcN6rjsayznEOrSbAKO23Hhwho=) 2: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: XTg2evwkR4VvSVQWu251hii2ssGz9ZlroApKBF0azrE=) 3: B87594FC08B311F1954B37591C3D8C67.roa (hash: H6vYE+gxhuAKlVgXnsRMmqmTt0CZdQJgg6x87GzOftE=) 4: D999F880AF4411F0A866CC48C4F9AE02.roa (hash: 2rQsXi5kIwQ2IE+rYx9M2psZsNK3ECigUyxfaVNd7kI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 07:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Jun 13 07:05:30 2026 GMT Not After : Jun 20 07:05:30 2026 GMT Subject: CN=6a2d013a-1c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:51:96:ab:f6:e9:94:76:cd:03:74:f4:ee:1d: 41:94:a4:d6:db:03:d5:41:c7:0e:7b:4c:15:db:f9: e3:29:62:aa:40:f1:59:ef:5e:ce:e7:52:41:05:30: 53:02:f0:1a:89:6e:ea:c7:ea:48:53:94:2b:2e:83: 3d:15:78:39:83:27:fa:b7:0f:53:3e:39:85:a5:6e: ad:93:f9:8a:7b:f3:cc:3a:76:7b:24:a1:15:07:e8: 60:7a:8d:40:ab:e1:dc:bc:5f:80:40:02:66:20:91: 1f:14:92:c0:5c:bd:f9:1a:09:9c:54:69:39:6d:f9: 30:0b:36:30:a3:bb:8d:d0:07:3b:6c:d2:cd:4c:9e: 09:e4:39:0b:3a:89:bd:77:d3:df:5a:8a:d3:43:13: 93:28:85:b1:92:da:7a:80:d5:12:f1:56:56:bd:fd: 40:5d:10:f1:46:e9:10:a3:7e:f3:ab:73:0b:52:0c: 3f:62:89:9b:28:85:c6:d9:d3:86:a9:51:9c:3d:e8: de:aa:cb:3a:cd:ca:02:6c:31:6d:33:c5:62:7c:46: f4:8c:44:3e:b7:78:be:ec:0c:a4:97:f3:40:d1:0e: e9:51:7a:b4:11:c7:df:ac:64:ec:77:c7:28:c0:74: bf:e9:c5:d6:6c:81:99:b5:92:f9:4c:09:75:cf:31: 21:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9E:25:CE:F0:4E:EC:0D:2E:DD:B1:E5:DE:A7:9A:2A:17:10:33:48 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e7:90:e9:34:85:d8:04:8e:66:4b:f0:90:93:a2:ef:14:ae: 11:b0:ba:f9:2e:d2:71:f5:97:89:59:a4:fb:c3:74:74:89:9b: 96:e2:16:9e:cc:99:ee:bf:6b:bd:b2:f4:85:2e:d6:5a:7a:18: 90:3e:1c:9b:8e:72:2a:14:3b:b5:32:96:5f:0d:4d:dd:a1:23: a8:09:d4:94:7f:61:2c:90:0c:8c:1a:9a:74:d2:24:d3:95:38: ab:7c:2b:48:a9:68:51:c3:47:d9:92:c0:97:18:9b:76:15:0f: 86:68:9e:a3:12:b8:c6:98:6d:aa:02:93:84:bd:c7:cc:ef:d0: c5:33:a8:65:d2:c1:19:ee:ca:05:84:4f:73:8e:b6:b2:68:21: 32:0a:72:79:bc:06:bc:c2:70:f4:57:4d:1c:ac:27:07:77:f1: 95:e8:28:77:4a:87:b5:b3:67:e0:49:33:e7:92:01:ee:f4:ec: b2:8d:30:c1:30:6c:c8:5e:07:15:57:0f:e5:9a:f6:84:a5:06: 6a:fe:97:0d:9f:5d:c5:9f:a2:74:f4:0a:5b:e7:94:2c:2a:e0: 2c:a2:d4:6b:ec:23:22:d3:8d:b0:b5:27:c6:0b:1e:e1:40:c9: 50:89:1a:a6:4f:b4:0d:2c:8f:61:c8:d1:04:17:43:3d:a7:d6: ac:4f:1f:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBOEIxMTAvBgNVBAUTKDQxQzc1NzE0Mjk5QTU3OEREMTkwRkQxRjczMDk1NUIx RkQ5QUMxRjQwHhcNMjYwNjEzMDcwNTMwWhcNMjYwNjIwMDcwNTMwWjAYMRYwFAYD VQQDEw02YTJkMDEzYS0xYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFGWq/bplHbNA3T07h1BlKTW2wPVQccOe0wV2/njKWKqQPFZ717O51JBBTBT AvAaiW7qx+pIU5QrLoM9FXg5gyf6tw9TPjmFpW6tk/mKe/PMOnZ7JKEVB+hgeo1A q+HcvF+AQAJmIJEfFJLAXL35GgmcVGk5bfkwCzYwo7uN0Ac7bNLNTJ4J5DkLOom9 d9PfWorTQxOTKIWxktp6gNUS8VZWvf1AXRDxRukQo37zq3MLUgw/YombKIXG2dOG qVGcPejeqss6zcoCbDFtM8VifEb0jEQ+t3i+7Aykl/NA0Q7pUXq0EcffrGTsd8co wHS/6cXWbIGZtZL5TAl1zzEhZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNOeJc7w TuwNLt2x5d6nmioXEDNIMB8GA1UdIwQYMBaAFEHHVxQpmleN0ZD9H3MJVbH9msH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUE4Qi9CQTA4QUE0MjRC ODExMUYwOEY2NTUwN0VDNEY5QUUwMi9RY2RYRkNtYVY0M1JrUDBmY3dsVnNmMmF3 ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUE4Qi9CQTA4QUE0MjRCODExMUYwOEY2NTUwN0VDNEY5QUUwMi9RY2RYRkNtYVY0 M1JrUDBmY3dsVnNmMmF3ZlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi+eQ6TSF2ASOZkvwkJOi7xSuEbC6+S7ScfWXiVmk+8N0dImbluIWnsyZ7r9r vbL0hS7WWnoYkD4cm45yKhQ7tTKWXw1N3aEjqAnUlH9hLJAMjBqadNIk05U4q3wr SKloUcNH2ZLAlxibdhUPhmieoxK4xphtqgKThL3HzO/QxTOoZdLBGe7KBYRPc462 smghMgpyebwGvMJw9FdNHKwnB3fxlegod0qHtbNn4Ekz55IB7vTsso0wwTBsyF4H FVcP5Zr2hKUGav6XDZ9dxZ+idPQKW+eULCrgLKLUa+wjItONsLUnxgse4UDJUIka pk+0DSyPYcjRBBdDPafWrE8fNA== -----END CERTIFICATE-----Generated at Sat Jun 13 18:31:44 2026 by rpki-client