$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: XDOvrErppIu7vFuUBQTMrHsrbvTqYUfnASBKqxpE9qU= Subject key identifier: 32:A8:A5:8A:3C:B8:EE:7D:2B:9F:B5:BC:F8:02:7C:3C:26:DF:30:49 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 358B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 356E Signing time: Fri 12 Jun 2026 14:47:04 +0000 Manifest this update: Fri 12 Jun 2026 14:47:03 +0000 Manifest next update: Fri 19 Jun 2026 14:47:03 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: fuG5NR0efLNd5ahLO2JbCW9EGq7PgFKOrQeSVapwctI=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: u0liUKUx/5cqgAqMwjK3Jr9++ba1PKf6CQYNnuhwu/Y=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: INnaV0pNcRBw1wlHuRp8r9xMtrJx1g7hzwjOKtk2crw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13707 (0x358b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Jun 12 14:47:03 2026 GMT Not After : Jun 19 14:47:03 2026 GMT Subject: CN=6a2c1be8-868b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5d:43:6d:4d:ca:0e:70:0e:e3:1c:78:f8:84: a5:1a:4e:eb:bd:48:95:29:59:9a:37:c2:c0:b0:54: 50:09:74:a8:9c:25:48:9c:7a:5e:cb:48:9b:5e:7a: e3:87:d2:99:d3:72:f5:95:d2:a6:88:a3:5b:32:ea: 9c:36:7e:ac:f2:92:5b:9c:ed:80:ac:d9:22:0a:7e: 80:49:a4:d7:10:3a:4e:e4:78:e2:d9:5a:69:97:2c: 4b:d0:e7:26:f9:27:df:49:a7:c8:8b:f5:7f:35:12: 60:35:49:ee:76:15:79:ad:f7:fd:a3:5e:67:05:3a: 9f:f2:8b:68:3d:2a:f6:03:a3:d9:98:b4:af:e9:8e: 82:c4:2b:0a:01:dc:ac:b2:2b:dc:cb:96:ad:5d:75: 24:4d:4d:b1:e8:e7:f0:98:2c:03:db:95:09:35:1c: f0:b0:38:91:f5:f7:9e:bf:15:09:70:cc:f9:3c:fd: 94:fe:68:4f:11:92:99:99:13:c8:bb:2b:a1:f8:53: 71:97:19:95:34:ed:3a:2b:37:da:99:9b:e0:7d:c5: be:70:ab:d6:42:f1:cc:98:31:fc:31:06:5f:84:fb: 37:64:eb:42:ff:45:9d:09:d5:13:68:56:b4:04:6c: e0:1e:68:bd:27:2d:4a:39:94:db:71:02:68:cc:38: 48:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A8:A5:8A:3C:B8:EE:7D:2B:9F:B5:BC:F8:02:7C:3C:26:DF:30:49 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d4:3c:a4:f7:c9:f3:fd:27:1e:d6:95:39:ca:88:bc:9b:0b: fa:31:ca:c6:6b:31:e8:ac:ed:74:39:b0:55:aa:dc:60:d5:e2: 48:d5:92:4b:b6:aa:db:69:85:1c:76:9d:30:70:b7:87:70:66: ab:cc:ed:be:cd:b8:45:2e:c2:35:1f:a4:39:2e:03:e6:28:23: 1e:30:7b:59:51:01:57:b0:a0:92:63:d9:98:3b:5f:c3:a6:cb: e6:3c:3b:a5:8f:f8:ee:5f:a1:1b:1f:d2:68:93:8e:fe:fb:ae: 34:ac:14:0b:82:ca:d9:8b:17:6d:a1:ca:92:d6:e4:f5:d3:eb: a5:d5:03:b6:af:0c:7d:7d:34:52:07:d9:84:07:89:e5:bf:94: 57:0b:30:f8:1e:68:06:ee:8b:ad:72:04:4b:96:d4:42:36:1a: 83:14:14:0f:85:a9:45:d2:42:95:e3:6d:eb:ee:3c:73:75:ae: 80:07:ca:da:06:1d:81:6e:2d:fa:dd:4d:4a:e0:14:2b:a3:54: 3b:d0:03:6c:8a:85:4f:87:9e:6c:8b:b6:d6:80:04:29:22:30: d7:38:2b:f0:4c:e9:ab:67:dd:4c:d3:31:97:02:06:2f:21:6b: a9:a5:89:7d:bf:68:2e:e9:20:ec:33:96:0c:e5:fa:eb:a9:08: ed:5b:a1:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjYwNjEyMTQ0NzAzWhcNMjYwNjE5MTQ0NzAzWjAYMRYwFAYD VQQDEw02YTJjMWJlOC04NjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA111DbU3KDnAO4xx4+ISlGk7rvUiVKVmaN8LAsFRQCXSonCVInHpey0ibXnrj h9KZ03L1ldKmiKNbMuqcNn6s8pJbnO2ArNkiCn6ASaTXEDpO5Hji2VpplyxL0Ocm +SffSafIi/V/NRJgNUnudhV5rff9o15nBTqf8otoPSr2A6PZmLSv6Y6CxCsKAdys sivcy5atXXUkTU2x6OfwmCwD25UJNRzwsDiR9feevxUJcMz5PP2U/mhPEZKZmRPI uyuh+FNxlxmVNO06KzfamZvgfcW+cKvWQvHMmDH8MQZfhPs3ZOtC/0WdCdUTaFa0 BGzgHmi9Jy1KOZTbcQJozDhIOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDKopYo8 uO59K5+1vPgCfDwm3zBJMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdtQ8pPfJ8/0nHtaVOcqIvJsL+jHKxmsx6KztdDmwVarcYNXiSNWSS7aq22mF HHadMHC3h3Bmq8ztvs24RS7CNR+kOS4D5igjHjB7WVEBV7CgkmPZmDtfw6bL5jw7 pY/47l+hGx/SaJOO/vuuNKwUC4LK2YsXbaHKktbk9dPrpdUDtq8MfX00UgfZhAeJ 5b+UVwsw+B5oBu6LrXIES5bUQjYagxQUD4WpRdJCleNt6+48c3WugAfK2gYdgW4t +t1NSuAUK6NUO9ADbIqFT4eebIu21oAEKSIw1zgr8Ezpq2fdTNMxlwIGLyFrqaWJ fb9oLukg7DOWDOX666kI7VuhAg== -----END CERTIFICATE-----Generated at Sun Jun 14 02:53:30 2026 by rpki-client