$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: sUZEgYQzd9APE01sR4smII5egL3LmhKME5xYIt4siq4= Subject key identifier: CE:BA:A2:B9:92:EC:65:0A:AC:8F:AB:72:27:B4:2A:51:E7:F5:B3:9B Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0C82 Signing time: Fri 12 Jun 2026 20:23:54 +0000 Manifest this update: Fri 12 Jun 2026 20:23:54 +0000 Manifest next update: Fri 19 Jun 2026 20:23:54 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: lNa1KW/pE0KAiWNPvoUMZ6hZVzTqfpL6cK12OYl9Cq8=) 2: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: XL/ZcgALP761TCI8hEan3K78GIrb6EiGTeA4Vn2wUJI=) 3: 3DD8C628940111F09204AF71C4F9AE02.roa (hash: rKjGeR3bW3KsKLNlokaXVqhFpQOnZispIcGW123rOaY=) 4: 2AD1C746940111F0B07D7068C4F9AE02.roa (hash: AIsLYj1Q0Ri7p3sC6uZCzxYzj0O4+4SA75lfHau1SqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Jun 12 20:23:54 2026 GMT Not After : Jun 19 20:23:54 2026 GMT Subject: CN=6a2c6ada-9b08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:07:65:f3:41:e0:d2:9f:0a:d9:6d:e2:28:1f: ee:85:bf:5d:a2:73:f9:9b:61:a3:4d:53:9d:7f:e2: 60:33:25:e3:1a:fe:89:45:c9:df:cd:d2:fa:2f:e0: 5a:52:94:c2:e4:4f:02:c0:e9:c3:d1:7e:de:e1:42: 75:93:d1:30:1b:c6:71:7b:eb:95:fa:82:69:00:4e: a8:35:d3:22:ec:06:82:74:2f:53:40:1b:b2:ae:ec: 92:a6:c7:42:a8:fb:1a:15:1e:be:5f:eb:27:04:2e: ae:05:b6:b2:7a:78:c5:86:4f:c3:f9:d4:b8:ac:11: 8b:65:14:83:26:71:e2:4d:b4:8f:ed:d1:58:29:99: f3:ff:ec:b4:f5:b6:0b:4c:17:eb:03:9e:b7:91:1b: 63:81:c9:ff:a5:3f:72:5e:cd:10:5d:95:69:17:39: c4:26:9f:c7:c1:5c:22:3a:e3:e5:4d:38:af:72:58: 16:ce:48:3f:87:03:d1:df:7b:ab:8a:9f:3a:34:01: 8d:3e:c5:28:58:bb:66:78:8a:ec:f2:40:97:bc:ad: 6e:92:0a:e5:ca:cf:9e:98:9e:82:b2:20:1d:c7:41: 52:e6:3a:82:9d:1a:bc:49:1c:aa:d3:05:ad:03:7b: d1:e1:86:04:9c:1b:88:e6:e1:3c:f8:bc:e3:fa:97: 04:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BA:A2:B9:92:EC:65:0A:AC:8F:AB:72:27:B4:2A:51:E7:F5:B3:9B X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f9:5d:86:19:f2:a9:ca:e8:8b:eb:09:2b:90:8c:4d:22:3c: ad:39:3e:aa:ce:0f:35:e6:2f:c8:aa:8c:58:84:99:f4:9b:d8: 7f:46:e5:08:93:6a:6c:9d:48:4d:c9:02:4f:e7:a3:f8:e7:f6: 7d:1a:bb:87:ad:cf:4c:39:67:d5:4f:da:eb:55:05:b7:df:e9: b4:3a:48:dc:28:89:25:4e:26:63:8e:fb:3d:d1:74:8c:ca:1d: 63:96:3d:ae:d2:36:44:4d:69:86:ad:38:ec:f5:ec:16:e5:d4: 5e:86:91:fc:48:df:bd:12:e8:b3:b5:cf:f6:ff:76:e9:ab:21: b4:96:0a:b4:54:77:8b:40:aa:47:53:3d:01:46:e0:c5:41:bb: 86:2d:ae:30:0c:3f:78:04:3c:d2:fb:96:d8:74:ce:5e:ab:c8: f6:dd:80:6b:2d:9e:f8:9f:25:4b:81:e5:00:d9:10:8f:0e:87: 66:33:e5:d0:9e:a0:7e:09:f8:ad:05:4d:25:62:21:49:c3:5e: fd:8e:83:f5:88:ac:b9:8f:d9:da:f1:44:99:6e:35:ba:02:19: 6e:5c:b5:17:a7:50:e5:ad:b1:3f:17:73:07:4e:09:a7:ef:41: 5f:91:c3:9b:28:f4:0f:04:ef:09:65:16:27:fe:3e:82:67:fc: 30:9c:f5:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjYwNjEyMjAyMzU0WhcNMjYwNjE5MjAyMzU0WjAYMRYwFAYD VQQDEw02YTJjNmFkYS05YjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgdl80Hg0p8K2W3iKB/uhb9donP5m2GjTVOdf+JgMyXjGv6JRcnfzdL6L+Ba UpTC5E8CwOnD0X7e4UJ1k9EwG8Zxe+uV+oJpAE6oNdMi7AaCdC9TQBuyruySpsdC qPsaFR6+X+snBC6uBbayenjFhk/D+dS4rBGLZRSDJnHiTbSP7dFYKZnz/+y09bYL TBfrA563kRtjgcn/pT9yXs0QXZVpFznEJp/HwVwiOuPlTTivclgWzkg/hwPR33ur ip86NAGNPsUoWLtmeIrs8kCXvK1ukgrlys+emJ6CsiAdx0FS5jqCnRq8SRyq0wWt A3vR4YYEnBuI5uE8+Lzj+pcE+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM66ormS 7GUKrI+rcie0KlHn9bObMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASPldhhnyqcroi+sJK5CMTSI8rTk+qs4PNeYvyKqMWISZ9JvYf0blCJNqbJ1I TckCT+ej+Of2fRq7h63PTDln1U/a61UFt9/ptDpI3CiJJU4mY477PdF0jModY5Y9 rtI2RE1phq047PXsFuXUXoaR/EjfvRLos7XP9v926ashtJYKtFR3i0CqR1M9AUbg xUG7hi2uMAw/eAQ80vuW2HTOXqvI9t2Aay2e+J8lS4HlANkQjw6HZjPl0J6gfgn4 rQVNJWIhScNe/Y6D9YisuY/Z2vFEmW41ugIZbly1F6dQ5a2xPxdzB04Jp+9BX5HD myj0DwTvCWUWJ/4+gmf8MJz1AQ== -----END CERTIFICATE-----Generated at Sat Jun 13 21:40:01 2026 by rpki-client