$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: k1O2WKwTEoKSISLmgPjewY6EeMxi0CRrpO/28uJdtYE= Subject key identifier: F1:9D:2D:5D:F7:02:49:5A:3D:6E:3E:AF:F5:50:C1:A9:8A:BF:F6:AF Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: CF Signing time: Sat 13 Jun 2026 06:58:39 +0000 Manifest this update: Sat 13 Jun 2026 06:58:38 +0000 Manifest next update: Sat 20 Jun 2026 06:58:38 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: 4ccggHyC6fmzXa5hEAb8tD8+FXazoaycXVH+JJ6G6/s=) 2: C3DCFE54EB2911F0BD7173483B6F56BC.roa (hash: GRUkISuSjrdPycV7YoKPvCtNvhdJEKU1KQQr0iDkDpg=) 3: 1FC17CE2EB2D11F0971959663D6F56BC.roa (hash: w/3re6+mcHn3z7mWQlt9gMEkLcEqozWFLvA0qzfndLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Jun 13 06:58:38 2026 GMT Not After : Jun 20 06:58:38 2026 GMT Subject: CN=6a2cff9f-d0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d9:b7:44:db:0e:08:45:00:60:a1:a9:b9:c9: b9:0e:f9:63:0c:48:61:82:b5:be:8e:54:2b:61:6a: 45:c2:4f:6d:01:59:80:86:82:77:8e:e5:e2:75:24: fc:dc:71:68:65:69:e5:f4:1e:9c:52:38:59:fc:1f: 5f:ba:68:d1:0e:54:06:b3:c0:50:c4:a5:83:bb:7b: 1f:b6:72:ac:dd:b8:48:b5:67:bd:ca:54:64:48:7a: c8:96:02:75:4a:19:fb:b1:2a:bc:93:31:6d:4c:da: de:5d:32:18:12:32:d6:d3:c7:74:ed:1f:8c:8d:ae: 2c:86:22:72:12:98:37:9f:c4:db:88:c8:43:c0:3c: 00:67:b2:5a:55:56:c5:47:9d:48:4e:58:c3:d8:db: ab:66:dc:3d:71:c7:74:4a:f5:42:39:45:cf:6e:3e: 73:25:7e:54:2a:eb:61:97:f0:3f:36:11:34:30:bf: c1:0e:9a:46:07:1a:9e:ac:ea:50:d4:f3:13:33:06: 5b:3b:5c:19:09:19:54:d9:a7:59:d7:2f:c7:b1:27: 0a:28:1e:b4:4e:a8:7e:25:1f:91:89:fd:60:95:fe: d5:d9:8b:6d:15:91:46:4b:61:02:d3:59:c2:91:61: 69:0e:19:b7:5b:f1:53:f0:97:ee:83:e7:a2:bd:0c: 55:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9D:2D:5D:F7:02:49:5A:3D:6E:3E:AF:F5:50:C1:A9:8A:BF:F6:AF X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:39:9f:4b:69:1d:d3:e3:15:73:b9:8f:20:80:de:da:43:07: ae:f7:47:32:90:bb:19:40:8c:57:72:71:04:7f:aa:9c:0d:99: e0:54:b4:09:d6:c3:2e:5b:15:84:3b:8c:e4:85:fd:31:11:75: d3:f4:79:5c:20:8c:30:64:b4:22:8a:e6:7d:f1:2e:01:7a:41: b7:36:01:23:00:8a:70:49:05:c4:1f:45:79:06:b0:05:c4:36: 0f:16:89:45:ed:d0:7c:5d:38:b5:85:1a:f4:aa:67:21:3b:e6: 5a:75:31:b4:5f:ac:10:24:22:28:cd:03:33:bd:c9:95:62:79: 44:1e:c3:f6:53:ee:64:08:59:7a:1d:d7:40:83:cf:1c:2f:bd: af:ee:35:a9:6e:a1:09:9a:cb:d5:46:d6:b7:eb:93:0f:a5:ce: c9:1c:13:c7:e5:7a:23:10:d9:79:5b:d8:83:d2:a8:fa:c1:bc: 99:dd:52:1e:18:a0:ff:91:cc:0e:7a:c1:b7:49:0a:49:90:b5: ba:2f:e0:35:fc:e9:89:2e:3b:0d:1f:db:57:86:f4:6a:67:51: 95:b5:1f:d7:48:0b:16:8a:9d:e8:28:8f:90:13:2d:ac:59:44: 42:8e:c6:e8:f2:32:e5:1d:4b:56:ec:03:26:d1:a9:c9:f5:b0: 15:f7:c6:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFNUIxMTAvBgNVBAUTKEFCNTNEOTkyODEwMkI5MTlEQjdDNTQ2NUM4REQ1RkYy NjY3NDQzQjMwHhcNMjYwNjEzMDY1ODM4WhcNMjYwNjIwMDY1ODM4WjAYMRYwFAYD VQQDEw02YTJjZmY5Zi1kMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dm3RNsOCEUAYKGpucm5DvljDEhhgrW+jlQrYWpFwk9tAVmAhoJ3juXidST8 3HFoZWnl9B6cUjhZ/B9fumjRDlQGs8BQxKWDu3sftnKs3bhItWe9ylRkSHrIlgJ1 Shn7sSq8kzFtTNreXTIYEjLW08d07R+Mja4shiJyEpg3n8TbiMhDwDwAZ7JaVVbF R51ITljD2NurZtw9ccd0SvVCOUXPbj5zJX5UKuthl/A/NhE0ML/BDppGBxqerOpQ 1PMTMwZbO1wZCRlU2adZ1y/HsScKKB60Tqh+JR+Rif1glf7V2YttFZFGS2EC01nC kWFpDhm3W/FT8Jfug+eivQxV5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPGdLV33 AklaPW4+r/VQwamKv/avMB8GA1UdIwQYMBaAFKtT2ZKBArkZ23xUZcjdX/JmdEOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0U1Qi9EODRFN0JGMjND NkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VSbmJmRlJseU4xZjhtWjBR N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0U1Qi9EODRFN0JGMjNDNkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VS bmJmRlJseU4xZjhtWjBRN00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnDmfS2kd0+MVc7mPIIDe2kMHrvdHMpC7GUCMV3JxBH+qnA2Z4FS0CdbDLlsV hDuM5IX9MRF10/R5XCCMMGS0IormffEuAXpBtzYBIwCKcEkFxB9FeQawBcQ2DxaJ Re3QfF04tYUa9KpnITvmWnUxtF+sECQiKM0DM73JlWJ5RB7D9lPuZAhZeh3XQIPP HC+9r+41qW6hCZrL1UbWt+uTD6XOyRwTx+V6IxDZeVvYg9Ko+sG8md1SHhig/5HM DnrBt0kKSZC1ui/gNfzpiS47DR/bV4b0amdRlbUf10gLFoqd6CiPkBMtrFlEQo7G 6PIy5R1LVuwDJtGpyfWwFffGuA== -----END CERTIFICATE-----Generated at Sat Jun 13 15:23:15 2026 by rpki-client