$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: S+SIuxctKuisHXx0bqNY3kghth9+AkRvyFMM0uAhObo= Subject key identifier: 6E:02:47:38:81:31:AD:41:5D:2C:94:2D:0B:D7:50:21:1E:D4:A0:00 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 09C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 09B3 Signing time: Fri 12 Jun 2026 20:00:18 +0000 Manifest this update: Fri 12 Jun 2026 20:00:18 +0000 Manifest next update: Fri 19 Jun 2026 20:00:18 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: Xe0rPLaWY2JJYOHPaA1tLlTtnPmHq09IFCj7Ep71HoU=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: ynhPE5wAgaVqH7nCW5tR8ne/clm5wNEfqCy2a6X1yEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Jun 12 20:00:18 2026 GMT Not After : Jun 19 20:00:18 2026 GMT Subject: CN=6a2c6552-6849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:97:f0:5e:81:d2:1a:cc:c0:ac:65:5b:52:d1: 0c:ee:e9:6c:86:91:fc:cb:aa:a3:17:bd:4e:0e:7f: db:46:e3:7b:92:20:df:86:24:ef:4d:51:e3:b5:eb: b4:7e:81:6f:11:84:13:a8:50:bd:eb:6e:f7:dd:41: c2:87:4c:13:cf:af:b0:86:bb:98:81:f0:7e:80:33: 42:97:26:f5:28:cf:04:82:2f:2e:dc:86:4b:b9:fa: 29:e0:4b:cd:d8:43:9a:2d:c5:3c:98:a3:94:fb:15: 4c:76:2a:0a:a8:aa:09:ad:f5:cf:a9:ac:c5:04:21: 98:a3:80:4e:10:4f:d6:fb:67:0a:80:3e:8d:45:82: b5:e9:a4:c8:cc:c8:ff:e2:38:a9:ba:e3:15:70:a6: b8:d6:d8:70:ed:69:71:2d:d9:2a:96:a3:d0:c2:e1: bb:61:7d:14:61:58:e5:e6:23:b4:eb:55:2e:df:24: be:5a:62:6f:74:13:1f:98:04:fd:b3:bb:d3:9a:2e: a0:08:93:81:b5:67:3f:f7:38:d5:8f:c2:7f:9a:3c: 42:ee:00:d7:01:67:f8:8c:91:17:65:81:c5:c9:bb: a1:dd:0a:ce:57:05:67:51:73:be:68:e3:b4:22:c3: a5:2c:9d:90:78:62:7e:e7:87:84:89:10:25:8c:44: 05:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:02:47:38:81:31:AD:41:5D:2C:94:2D:0B:D7:50:21:1E:D4:A0:00 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:17:cc:15:78:6e:56:da:f8:5f:35:61:54:46:b7:c9:57:50: fc:0e:b6:67:46:eb:59:a4:e3:12:fa:6c:7e:30:76:d5:69:eb: 04:96:f8:ce:c4:09:24:cc:74:9b:aa:b5:e0:e2:ce:c2:e8:fd: 79:ab:f1:08:d8:6f:73:3f:45:ca:59:1d:e3:71:1b:09:12:67: 5e:97:d1:56:40:39:fb:50:48:83:fe:d4:bf:d3:15:f4:f2:c9: 9d:76:20:07:d0:dd:e8:57:ca:c7:30:91:4e:4c:4a:37:3e:21: 5d:0a:db:5e:55:a4:96:51:4e:3a:7f:81:ea:af:6b:4e:72:d6: b6:1e:3a:01:75:20:4c:ad:1e:eb:16:4d:36:1e:b1:c0:83:b8: ed:7a:75:56:28:0b:2d:89:8e:47:80:61:d1:ac:25:30:d4:0a: 0a:5a:10:cd:91:41:de:c6:1b:8c:f0:f3:52:c6:4d:28:83:89: 2b:56:82:b3:a7:be:73:87:e6:57:b6:6a:2a:64:15:1f:7d:15: 2c:fc:b7:86:4c:16:c9:17:bb:7c:2e:97:84:99:af:2e:41:f5: d3:99:1d:c0:e3:a6:ea:0a:bb:5b:6e:3f:3c:19:72:de:97:2e: 41:4c:40:b6:79:a1:b8:8f:54:d2:0c:42:c4:f3:19:24:6b:a7: 79:52:63:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjYwNjEyMjAwMDE4WhcNMjYwNjE5MjAwMDE4WjAYMRYwFAYD VQQDEw02YTJjNjU1Mi02ODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpfwXoHSGszArGVbUtEM7ulshpH8y6qjF71ODn/bRuN7kiDfhiTvTVHjteu0 foFvEYQTqFC962733UHCh0wTz6+whruYgfB+gDNClyb1KM8Egi8u3IZLufop4EvN 2EOaLcU8mKOU+xVMdioKqKoJrfXPqazFBCGYo4BOEE/W+2cKgD6NRYK16aTIzMj/ 4jipuuMVcKa41thw7WlxLdkqlqPQwuG7YX0UYVjl5iO061Uu3yS+WmJvdBMfmAT9 s7vTmi6gCJOBtWc/9zjVj8J/mjxC7gDXAWf4jJEXZYHFybuh3QrOVwVnUXO+aOO0 IsOlLJ2QeGJ+54eEiRAljEQFbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG4CRziB Ma1BXSyULQvXUCEe1KAAMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApxfMFXhuVtr4XzVhVEa3yVdQ/A62Z0brWaTjEvpsfjB21WnrBJb4zsQJJMx0 m6q14OLOwuj9eavxCNhvcz9Fylkd43EbCRJnXpfRVkA5+1BIg/7Uv9MV9PLJnXYg B9Dd6FfKxzCRTkxKNz4hXQrbXlWkllFOOn+B6q9rTnLWth46AXUgTK0e6xZNNh6x wIO47Xp1VigLLYmOR4Bh0awlMNQKCloQzZFB3sYbjPDzUsZNKIOJK1aCs6e+c4fm V7ZqKmQVH30VLPy3hkwWyRe7fC6XhJmvLkH105kdwOOm6gq7W24/PBly3pcuQUxA tnmhuI9U0gxCxPMZJGuneVJjRg== -----END CERTIFICATE-----Generated at Sun Jun 14 07:09:15 2026 by rpki-client