$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: GEW4rzwnhxLbzJ5SmFX1Dff6GrctLEVtV7aBElwKq4I= Subject key identifier: 2B:02:2E:DE:40:25:66:A9:E1:76:33:02:65:06:32:F8:59:DF:25:8B Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0D30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0D17 Signing time: Fri 12 Jun 2026 18:09:53 +0000 Manifest this update: Fri 12 Jun 2026 18:09:52 +0000 Manifest next update: Fri 19 Jun 2026 18:09:52 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: Gs9/OoShAybfGIEnx6ET1Jvlhon4+IeYc88j0J5pQqk=) 2: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: zG4D1s2xrlJsIzyQLjKkrbBcFvkHI/PRTbX5mMwZqTk=) 3: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: DvZA6XJDkyHfkolYQVEDhxnUbcvdyFYpNYGE/Rx6mkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3376 (0xd30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Jun 12 18:09:52 2026 GMT Not After : Jun 19 18:09:52 2026 GMT Subject: CN=6a2c4b70-03c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:87:a6:4c:bf:10:af:66:6f:b1:b5:1e:92:c2: 5d:90:72:c9:db:e6:f6:76:0a:7c:87:79:89:b8:2e: 26:f8:06:6a:c2:0c:60:92:b9:37:36:96:db:e3:f5: b6:4d:94:b5:49:28:d1:c0:10:a1:f6:ad:40:18:20: c9:f5:4b:40:79:f4:41:e3:15:60:89:08:8d:0f:2e: ef:54:e9:c3:b3:a1:c2:bb:59:4e:3f:17:c2:bb:5f: eb:cd:f8:13:4f:fd:f9:f0:bb:c3:c8:91:d7:9d:1a: e2:fc:4f:29:46:c4:04:d1:33:29:8a:b0:e6:85:69: 28:c1:c6:cb:80:b4:32:99:00:37:4c:f6:73:98:1d: 30:7a:08:b0:ed:41:14:77:45:ab:f1:86:4e:8e:ea: a5:61:1d:97:ef:9d:09:85:29:77:db:89:a0:28:3a: 90:19:8b:8e:c5:71:c7:d0:cd:12:72:bd:d2:62:0d: 4d:86:a8:2f:a7:b1:0b:67:a7:44:44:47:12:ae:24: 72:82:1d:96:f5:cc:30:77:55:ea:93:7a:8c:55:9b: 74:3f:55:09:60:7c:59:57:6e:97:0d:05:d5:eb:5c: 7c:d4:d0:d6:02:bc:66:98:3c:29:a0:1b:96:a2:de: d4:3e:4f:8f:f0:33:ef:8d:f0:3f:bd:a3:50:05:57: 5e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:02:2E:DE:40:25:66:A9:E1:76:33:02:65:06:32:F8:59:DF:25:8B X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:14:86:d3:ae:c1:b6:78:5d:72:10:a1:f9:42:d3:45:09:95: 04:81:6b:c2:4c:91:66:11:e5:8e:8a:21:06:3e:cf:2b:02:d7: d2:a6:99:73:67:3c:bd:e0:f0:14:cf:7d:99:bb:af:e0:36:72: ce:c8:a1:82:bb:02:70:70:bb:4d:3b:34:51:39:76:ef:35:3a: 03:10:77:ef:74:75:8e:ce:7e:1e:4b:ff:05:96:38:e4:32:57: 0c:0f:52:ee:9e:f7:b7:e9:a6:33:58:fe:a9:e7:e5:9b:28:bd: d3:53:9e:42:bd:48:5a:16:f8:1b:63:e8:a0:3c:b1:2c:50:64: 37:f1:d1:a3:66:4c:82:66:e3:83:1b:66:f8:c9:e7:11:38:f2: 64:39:12:84:e0:01:97:41:a7:40:6e:32:1f:c4:2b:12:8e:6f: f2:d0:61:4d:94:b5:d8:f7:20:c9:36:90:64:84:1a:06:c0:d1: 84:82:ac:5b:fe:6d:7b:50:09:36:30:71:07:9a:bd:15:71:ec: a3:be:18:8d:c5:d0:1a:13:67:3b:6b:a0:99:03:0e:af:9e:7f: 01:b1:68:54:98:cd:0f:64:3c:90:61:a1:3b:4a:89:9b:2d:af: fb:17:c5:9e:f8:51:63:e1:14:32:d4:34:04:be:09:41:7f:4b: 0f:d6:87:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjYwNjEyMTgwOTUyWhcNMjYwNjE5MTgwOTUyWjAYMRYwFAYD VQQDEw02YTJjNGI3MC0wM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjoemTL8Qr2ZvsbUeksJdkHLJ2+b2dgp8h3mJuC4m+AZqwgxgkrk3Npbb4/W2 TZS1SSjRwBCh9q1AGCDJ9UtAefRB4xVgiQiNDy7vVOnDs6HCu1lOPxfCu1/rzfgT T/358LvDyJHXnRri/E8pRsQE0TMpirDmhWkowcbLgLQymQA3TPZzmB0wegiw7UEU d0Wr8YZOjuqlYR2X750JhSl324mgKDqQGYuOxXHH0M0Scr3SYg1Nhqgvp7ELZ6dE REcSriRygh2W9cwwd1Xqk3qMVZt0P1UJYHxZV26XDQXV61x81NDWArxmmDwpoBuW ot7UPk+P8DPvjfA/vaNQBVdeWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCsCLt5A JWap4XYzAmUGMvhZ3yWLMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWhSG067BtnhdchCh+ULTRQmVBIFrwkyRZhHljoohBj7PKwLX0qaZc2c8veDw FM99mbuv4DZyzsihgrsCcHC7TTs0UTl27zU6AxB373R1js5+Hkv/BZY45DJXDA9S 7p73t+mmM1j+qeflmyi901OeQr1IWhb4G2PooDyxLFBkN/HRo2ZMgmbjgxtm+Mnn ETjyZDkShOABl0GnQG4yH8QrEo5v8tBhTZS12PcgyTaQZIQaBsDRhIKsW/5te1AJ NjBxB5q9FXHso74YjcXQGhNnO2ugmQMOr55/AbFoVJjND2Q8kGGhO0qJmy2v+xfF nvhRY+EUMtQ0BL4JQX9LD9aHFA== -----END CERTIFICATE-----Generated at Sat Jun 13 11:04:30 2026 by rpki-client