$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft File: 3lBUK-oQggGncsALyfJRrRf6ls0.mft (raw, json) Hash identifier: cD2Va3BAEImzZD04Kv2ic0u8NTHKarZvox5VRundFjM= Subject key identifier: 15:C9:2D:55:CA:1E:6C:BF:50:63:4C:69:5F:29:F9:CA:75:F4:D8:A7 Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0D83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft Manifest number: 0D42 Signing time: Fri 12 Jun 2026 18:09:02 +0000 Manifest this update: Fri 12 Jun 2026 18:09:02 +0000 Manifest next update: Fri 19 Jun 2026 18:09:02 +0000 Files and hashes: 1: 3lBUK-oQggGncsALyfJRrRf6ls0.crl (hash: UsixHO/+j1ClXSFhci+0850PJKk8uJu6jxFL6BtKt6I=) 2: D59CB8F4968511EF93AE8239C4F9AE02.roa (hash: 4IRrcima1swbv66pFPjLf2ozuN5JrXfc27o1SCSzjAA=) 3: AF0508E8B1EE11EF93E70F63C4F9AE02.roa (hash: /T4LYRFjurWo+sXlwXITQRtGPqnCSql2DU5VkiOEfeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3459 (0xd83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Jun 12 18:09:02 2026 GMT Not After : Jun 19 18:09:02 2026 GMT Subject: CN=6a2c4b3e-25ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:14:92:de:c4:87:e4:be:8b:88:ba:34:1d: 6a:b8:a3:1e:56:5b:24:f8:08:90:06:4a:17:12:71: 4d:71:4a:69:ee:7b:9b:95:17:7a:bf:fa:a9:b6:ab: 8d:b3:d9:02:29:d8:ea:aa:61:30:27:b7:a9:93:1f: a1:f4:cc:65:df:9f:3e:9a:73:13:2e:b7:05:58:b3: 75:78:4a:06:49:7b:6a:80:d2:ed:48:f3:20:c8:e5: 60:51:5f:c1:8d:8f:b7:b6:fd:2b:85:8c:ea:be:a1: 1e:ef:02:53:11:5b:d5:0e:68:2a:5d:92:19:ef:67: 43:66:55:fe:64:d3:cf:64:34:4b:2e:99:c6:72:67: c1:0d:8e:4f:3e:6c:15:e2:ab:b1:a3:a2:a3:90:65: 03:8f:bb:e2:50:35:cd:12:41:62:2f:82:e4:a6:80: 75:0b:53:b0:20:63:72:ec:b8:a2:6b:9b:e8:32:66: 2a:2d:45:57:a2:36:77:93:7a:be:0d:c9:98:7a:a4: c5:9e:ed:80:c2:26:fa:04:f7:68:23:d9:f0:39:78: 1d:24:1c:0c:fb:b3:a4:59:ac:e4:4a:a9:ad:fc:24: bc:79:e3:1e:b6:de:39:55:e9:ce:1a:57:29:b8:0b: b7:13:95:8d:77:1f:37:1f:e4:1e:0c:4a:1c:07:ad: 91:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C9:2D:55:CA:1E:6C:BF:50:63:4C:69:5F:29:F9:CA:75:F4:D8:A7 X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:c4:61:a3:c3:2f:55:2c:72:03:d1:84:12:cc:9f:92:a4:55: 81:4c:57:43:9d:05:61:13:1c:ec:83:00:68:a3:ae:85:39:0e: 28:36:03:61:ac:aa:74:b0:f2:41:b6:0e:bb:6d:f1:aa:d7:e7: 61:11:d3:bf:82:6b:f8:c3:78:90:46:b1:7a:32:97:ca:dc:56: a2:b7:cd:89:53:93:16:ba:3e:f3:46:a2:df:17:02:f8:53:3c: 2a:f5:3e:14:f3:70:7b:40:e9:e3:be:26:ac:09:29:90:cf:28: d4:9a:e4:3e:df:01:6b:0c:e5:1a:db:b0:6f:98:bb:22:c8:14: f1:04:61:92:4f:ab:2b:fc:81:ee:e2:60:e5:7c:6f:36:39:c4: 39:a8:9c:22:59:fa:07:05:aa:ff:b6:6f:fa:1b:bf:fd:3c:34: 0a:c8:b5:25:63:a9:a5:12:50:2f:b7:d4:63:73:2b:3f:32:f1: 92:f8:ca:6b:20:78:50:63:11:8b:12:13:e3:db:c8:54:48:59: e0:56:14:03:7c:9f:3f:14:e5:5a:0c:c8:32:44:f7:6e:29:94: 02:a3:d9:b2:ac:f8:ef:e4:ba:27:ba:fa:3b:ba:90:d8:97:57: 03:39:84:2f:ce:05:20:d1:77:d0:56:af:24:6b:0d:2e:11:a5: 8b:31:ba:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjYwNjEyMTgwOTAyWhcNMjYwNjE5MTgwOTAyWjAYMRYwFAYD VQQDEw02YTJjNGIzZS0yNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygMUkt7Eh+S+i4i6NB1quKMeVlsk+AiQBkoXEnFNcUpp7nublRd6v/qptquN s9kCKdjqqmEwJ7epkx+h9Mxl358+mnMTLrcFWLN1eEoGSXtqgNLtSPMgyOVgUV/B jY+3tv0rhYzqvqEe7wJTEVvVDmgqXZIZ72dDZlX+ZNPPZDRLLpnGcmfBDY5PPmwV 4quxo6KjkGUDj7viUDXNEkFiL4LkpoB1C1OwIGNy7Liia5voMmYqLUVXojZ3k3q+ DcmYeqTFnu2Awib6BPdoI9nwOXgdJBwM+7OkWazkSqmt/CS8eeMett45VenOGlcp uAu3E5WNdx83H+QeDEocB62RZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBXJLVXK Hmy/UGNMaV8p+cp19NinMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUJFMy84MEFFMTBDNjA0NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdn R25jc0FMeWZKUnJSZjZsczAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtsRho8MvVSxyA9GEEsyfkqRVgUxXQ50FYRMc7IMAaKOuhTkOKDYDYayqdLDy QbYOu23xqtfnYRHTv4Jr+MN4kEaxejKXytxWorfNiVOTFro+80ai3xcC+FM8KvU+ FPNwe0Dp474mrAkpkM8o1JrkPt8BawzlGtuwb5i7IsgU8QRhkk+rK/yB7uJg5Xxv NjnEOaicIln6BwWq/7Zv+hu//Tw0Csi1JWOppRJQL7fUY3MrPzLxkvjKayB4UGMR ixIT49vIVEhZ4FYUA3yfPxTlWgzIMkT3bimUAqPZsqz47+S6J7r6O7qQ2JdXAzmE L84FINF30FavJGsNLhGlizG6Ug== -----END CERTIFICATE-----Generated at Sun Jun 14 00:23:22 2026 by rpki-client