$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: det6Gw1fHwYZUUCso0tJsrf8SfaJuFTrtm8BOBmXGfE= Subject key identifier: 91:95:A7:21:F2:9B:AE:6A:3E:C2:34:DF:87:50:6E:CE:6F:5A:3F:1A Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0ADA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0AC0 Signing time: Fri 12 Jun 2026 19:30:11 +0000 Manifest this update: Fri 12 Jun 2026 19:30:11 +0000 Manifest next update: Fri 19 Jun 2026 19:30:11 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: SmFqk5SVpbP6YfPXUOiPIezluLOlNX55vo4vsEGQ9hI=) 2: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: m31d9LY6Fb+rpx0iPU2nTzyFxPrcr/nSM8utNGuQQUI=) 3: C8A0E422831611EA95762453C4F9AE02.roa (hash: zy8s2JOSWvYwBrRrmYSE0kwJEPoK1AaNF1yfDHC6Css=) 4: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: T6idJL8aHggzjv6s1JmSSpHwZuTbLSQAyDk/XLJrS3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Jun 12 19:30:11 2026 GMT Not After : Jun 19 19:30:11 2026 GMT Subject: CN=6a2c5e43-ec06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4f:fe:08:1d:20:bf:7c:48:1f:a2:e8:4e:8e: d6:b7:b1:23:b6:1a:23:e5:76:a9:0a:d3:eb:ab:05: 4b:21:a9:d7:31:8f:36:de:39:a9:09:69:6b:a2:e6: 10:ba:52:d1:c6:17:cc:6d:0a:ea:3c:55:a3:f7:31: 17:a4:9e:98:94:ad:98:f1:00:83:55:22:dd:fa:10: 75:57:ad:8a:a5:a4:77:5b:94:e3:f6:88:14:4b:d8: 61:3c:8f:f3:71:2a:6e:fc:ed:9f:11:dd:de:21:79: 42:4f:49:94:fa:31:23:31:96:fe:61:9a:72:7f:95: 56:e1:d4:b4:4e:cb:48:e7:d1:ad:bf:0f:48:e3:6e: 3a:97:b5:28:fd:71:55:63:5d:63:de:e5:7f:6a:02: 61:21:f6:7e:31:f0:4c:e0:f5:78:64:bf:66:2b:66: 06:7b:db:8b:97:70:2e:25:70:e0:cc:ca:3d:3e:79: dc:ed:6d:f4:0a:a5:e9:30:7f:08:d4:33:e4:2b:af: 85:9c:87:62:99:41:0a:15:63:cc:89:14:eb:02:e0: 11:2b:6e:0c:8e:73:34:02:e3:f0:dd:36:50:18:bf: 9e:74:98:a1:56:d3:84:49:0f:cc:ee:18:48:5a:50: 0d:33:79:be:f1:dc:cf:b7:25:c2:54:d7:35:85:95: 9f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:95:A7:21:F2:9B:AE:6A:3E:C2:34:DF:87:50:6E:CE:6F:5A:3F:1A X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:6d:7b:3d:d4:c4:cd:7c:65:26:ad:bb:b2:34:a6:64:48:5f: 79:71:be:de:41:0b:44:d7:e5:0c:39:b1:52:3c:94:06:7e:87: 54:1e:6e:2e:ed:6a:99:13:01:29:5e:99:9b:ab:8e:82:17:7b: 07:52:ea:c6:19:99:19:56:7b:02:95:67:36:d9:19:b2:da:0a: 5a:60:ea:02:d2:9c:6c:38:f8:9b:d2:72:ab:d9:69:1a:fc:4e: ab:2a:5b:fd:f2:6e:b9:dd:d9:b5:5c:e0:96:9f:2d:d1:cf:09: ab:00:fd:2d:0b:22:23:c0:e0:c5:c2:2d:42:6b:7a:2a:69:5a: 3d:55:de:ab:b3:1f:13:1c:51:70:3a:df:a3:60:cd:dc:9e:ea: ca:22:50:58:25:d1:2f:9b:43:a8:c5:f5:47:a1:0b:f8:be:55: 9e:72:fd:76:31:eb:2e:70:e4:c8:2a:68:1d:53:54:c2:4e:ea: c7:6a:a4:fe:66:ee:fc:c7:7d:4c:ce:17:9e:7a:56:66:92:e0: 8f:c8:8f:1f:45:91:34:31:90:e9:f6:09:ac:86:f8:43:d1:68: b9:a0:82:40:ba:e9:5d:50:6e:16:73:d7:e2:d5:d2:c5:d1:01: 8d:7c:d3:1b:70:9d:dd:dc:6c:40:eb:9b:49:04:1d:ba:6a:5c: 89:01:3b:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjYwNjEyMTkzMDExWhcNMjYwNjE5MTkzMDExWjAYMRYwFAYD VQQDEw02YTJjNWU0My1lYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsk/+CB0gv3xIH6LoTo7Wt7Ejthoj5XapCtPrqwVLIanXMY823jmpCWlrouYQ ulLRxhfMbQrqPFWj9zEXpJ6YlK2Y8QCDVSLd+hB1V62KpaR3W5Tj9ogUS9hhPI/z cSpu/O2fEd3eIXlCT0mU+jEjMZb+YZpyf5VW4dS0TstI59Gtvw9I4246l7Uo/XFV Y11j3uV/agJhIfZ+MfBM4PV4ZL9mK2YGe9uLl3AuJXDgzMo9Pnnc7W30CqXpMH8I 1DPkK6+FnIdimUEKFWPMiRTrAuARK24MjnM0AuPw3TZQGL+edJihVtOESQ/M7hhI WlANM3m+8dzPtyXCVNc1hZWfIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJGVpyHy m65qPsI034dQbs5vWj8aMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm217PdTEzXxlJq27sjSmZEhfeXG+3kELRNflDDmxUjyUBn6HVB5uLu1qmRMB KV6Zm6uOghd7B1LqxhmZGVZ7ApVnNtkZstoKWmDqAtKcbDj4m9Jyq9lpGvxOqypb /fJuud3ZtVzglp8t0c8JqwD9LQsiI8DgxcItQmt6KmlaPVXeq7MfExxRcDrfo2DN 3J7qyiJQWCXRL5tDqMX1R6EL+L5VnnL9djHrLnDkyCpoHVNUwk7qx2qk/mbu/Md9 TM4XnnpWZpLgj8iPH0WRNDGQ6fYJrIb4Q9FouaCCQLrpXVBuFnPX4tXSxdEBjXzT G3Cd3dxsQOubSQQdumpciQE7IA== -----END CERTIFICATE-----Generated at Sat Jun 13 09:56:17 2026 by rpki-client