$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: Do3OHsSHOkk5iRuhaf4dGMfoKDPk3t1T2SVFyHHTLOo= Subject key identifier: 74:3C:FA:A6:4E:DD:33:13:FF:84:22:31:CA:03:8A:2C:22:DF:D8:DC Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0D2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0D18 Signing time: Fri 12 Jun 2026 18:12:20 +0000 Manifest this update: Fri 12 Jun 2026 18:12:19 +0000 Manifest next update: Fri 19 Jun 2026 18:12:19 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: 1oTGLn+4/zgs32mCzZ1E+Udwc0tbZCpgDwDQ0RGspjQ=) 2: 67C9F14233E711F181C0AE9FB8833773.roa (hash: zILE8027ieGIonPU8rgts1kI8TAERWrLFiTqKHa6P0g=) 3: 974869042C2A11F19F1796939D833773.roa (hash: OeaomLN4Q8pcNvH+I1YBnwu7+mzao8SuLeZZtE3M27g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Jun 12 18:12:19 2026 GMT Not After : Jun 19 18:12:19 2026 GMT Subject: CN=6a2c4c03-01b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f1:c8:ab:20:f5:a5:ab:3f:e7:56:89:4e:5a: 73:4a:9a:0a:76:84:8e:48:17:c1:65:31:27:e3:89: bb:65:55:88:62:6c:c2:00:ee:23:e8:ca:9d:bb:d2: 2a:4d:5e:11:52:3f:ee:7b:9e:b2:d0:3d:97:cd:ca: ff:d4:ff:8d:6d:06:db:68:d8:c6:6a:69:b0:d6:55: 3e:55:f9:23:9c:76:81:51:89:1f:e1:d3:22:61:c4: 81:42:ff:eb:35:34:46:1a:53:dd:bc:b0:42:95:e7: 7e:5c:6a:4e:81:1f:cb:be:54:bd:0e:4d:bd:00:6a: 6f:f3:80:d4:79:37:8e:43:ff:fb:3b:ed:f4:b7:c5: e9:d5:35:cc:bd:7a:b9:7b:45:27:db:d1:80:97:8b: 16:e8:b6:9c:e2:af:c5:ec:e1:4a:da:82:38:30:ba: 43:b7:1d:a2:f4:51:91:86:07:b7:57:fc:b2:7c:0c: e2:3d:03:93:5a:fb:19:15:db:1b:df:77:5d:da:fe: e3:12:64:37:84:a5:fe:52:b5:2b:41:ca:0e:90:8b: dd:a7:e8:2e:64:2d:c0:fb:b5:45:8a:2f:c4:cd:05: cc:e9:47:c5:e3:57:db:27:ff:ea:75:cc:94:d6:c5: 13:af:9c:1f:78:ec:67:81:ac:73:99:b8:9e:b1:d5: bc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:3C:FA:A6:4E:DD:33:13:FF:84:22:31:CA:03:8A:2C:22:DF:D8:DC X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:ad:ff:fe:4d:23:91:bd:96:08:8e:40:79:03:7a:25:20:dc: e5:cc:58:59:55:3a:3b:be:04:6c:5a:56:0a:fd:cd:26:16:df: d6:b3:61:88:4f:e2:66:9d:71:15:95:02:98:21:24:7a:e7:2c: bd:98:bb:6a:8d:9f:73:3d:4a:bb:94:93:67:9c:3c:45:dd:17: 3e:61:f6:ca:4e:eb:d1:9c:2a:e8:c7:1c:8c:3a:69:c9:30:9e: cd:ad:2b:75:ce:84:77:08:fb:6b:68:bb:dc:2c:e7:ac:1c:f7: e2:29:54:fa:00:47:fc:79:ce:28:5b:0c:c8:aa:d2:a0:a8:e5: 05:fc:77:eb:00:5f:37:60:08:90:0b:38:af:77:18:4e:5e:b6: 05:c3:b1:62:1f:24:de:1c:a6:e5:d5:46:d0:c5:9d:ce:1d:4b: d1:57:9b:30:47:84:8d:68:59:f5:76:c9:3d:46:b7:0e:e4:03: a1:03:d7:4a:7e:95:5e:10:c3:ac:cb:5c:ec:fc:7c:a5:b3:8e: 26:41:05:b2:12:28:67:79:be:51:37:bf:14:c5:18:64:bd:3b: f2:ac:bf:83:38:e7:5e:55:9c:d5:87:5a:03:ed:bd:e1:80:40: 13:f4:6c:79:9d:3f:6e:83:04:0c:0c:fd:4c:a7:54:c2:4a:01: 03:78:61:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjYwNjEyMTgxMjE5WhcNMjYwNjE5MTgxMjE5WjAYMRYwFAYD VQQDEw02YTJjNGMwMy0wMWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PHIqyD1pas/51aJTlpzSpoKdoSOSBfBZTEn44m7ZVWIYmzCAO4j6Mqdu9Iq TV4RUj/ue56y0D2Xzcr/1P+NbQbbaNjGammw1lU+VfkjnHaBUYkf4dMiYcSBQv/r NTRGGlPdvLBCled+XGpOgR/LvlS9Dk29AGpv84DUeTeOQ//7O+30t8Xp1TXMvXq5 e0Un29GAl4sW6Lac4q/F7OFK2oI4MLpDtx2i9FGRhge3V/yyfAziPQOTWvsZFdsb 33dd2v7jEmQ3hKX+UrUrQcoOkIvdp+guZC3A+7VFii/EzQXM6UfF41fbJ//qdcyU 1sUTr5wfeOxngaxzmbiesdW8LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHQ8+qZO 3TMT/4QiMcoDiiwi39jcMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1q3//k0jkb2WCI5AeQN6JSDc5cxYWVU6O74EbFpWCv3NJhbf1rNhiE/iZp1x FZUCmCEkeucsvZi7ao2fcz1Ku5STZ5w8Rd0XPmH2yk7r0Zwq6MccjDppyTCeza0r dc6Edwj7a2i73CznrBz34ilU+gBH/HnOKFsMyKrSoKjlBfx36wBfN2AIkAs4r3cY Tl62BcOxYh8k3hym5dVG0MWdzh1L0VebMEeEjWhZ9XbJPUa3DuQDoQPXSn6VXhDD rMtc7Px8pbOOJkEFshIoZ3m+UTe/FMUYZL078qy/gzjnXlWc1YdaA+294YBAE/Rs eZ0/boMEDAz9TKdUwkoBA3hhZQ== -----END CERTIFICATE-----Generated at Sat Jun 13 23:56:50 2026 by rpki-client