$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: eX0mc+joyVjY4d7v+2vFt5/OtlSxqETG0KNdoKYhf20= Subject key identifier: E7:90:16:E9:60:E1:5A:8B:0A:AC:5D:87:89:DA:3C:55:A1:43:04:08 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: DD Signing time: Sat 13 Jun 2026 06:44:35 +0000 Manifest this update: Sat 13 Jun 2026 06:44:34 +0000 Manifest next update: Sat 20 Jun 2026 06:44:34 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: NM8625hq/GGjX0lfw/qvSi4dNrPx5IA4NkBPeqjenCk=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: lKCCxnQLqgGAAxb0II04awvwUyFApZ9TGbpShXSvZgw=) 3: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Jun 13 06:44:34 2026 GMT Not After : Jun 20 06:44:34 2026 GMT Subject: CN=6a2cfc53-e123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6d:bd:62:7c:66:85:66:5a:a7:94:6d:57:a9: 14:09:6f:38:6d:25:6c:f2:d1:8d:8d:54:84:c6:3b: 8a:50:40:1b:05:0d:0f:83:93:02:41:90:b8:d0:5f: 98:d8:40:b8:58:67:4c:16:aa:3e:f5:ef:6d:5a:50: c7:65:3d:4b:dd:8e:df:7c:ce:51:ac:33:ce:66:06: a7:ff:dc:1d:e2:74:72:d5:a7:d9:41:7d:ad:6d:6a: e3:10:ee:38:7e:b0:36:2d:19:07:30:d6:eb:97:fc: c6:99:ac:a7:df:18:2a:06:5c:5e:dd:34:7c:0a:63: ed:94:60:0d:49:6b:e4:61:49:92:6a:62:5f:86:97: 33:5f:9a:d6:4d:c4:bb:e5:d1:76:c1:ae:45:33:60: e1:8d:5e:76:82:a6:10:90:f2:71:c1:92:02:2c:39: dd:af:20:55:cb:cc:f6:ce:3a:d2:37:28:6c:bc:75: 7a:d8:b1:02:de:04:68:d7:f7:84:06:9a:0f:e4:3e: 48:1e:f6:8d:93:f4:fb:48:3a:54:89:16:1d:f4:18: 07:f8:36:a0:ab:c6:35:2c:85:bd:29:d1:70:e0:f8: b1:1a:eb:0e:84:e5:30:c0:a2:69:91:9a:b4:c0:98: 5d:6d:ca:dd:a2:c0:f4:e3:55:db:1f:47:70:ef:ab: c5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:90:16:E9:60:E1:5A:8B:0A:AC:5D:87:89:DA:3C:55:A1:43:04:08 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:96:3b:4e:72:4b:e5:3a:9a:ae:25:aa:03:df:83:78:65:49: f2:90:8c:11:2e:8d:d9:d2:f0:a0:73:5e:1b:ad:fa:f9:c0:8f: 9e:0d:55:53:98:8a:0f:6a:ff:4f:7b:1e:aa:84:b1:e9:d7:ae: fe:ae:d2:42:e8:1d:6e:5d:db:a1:4d:bd:46:8e:90:aa:0e:cd: 24:41:3d:af:e6:f8:cc:ec:2c:44:43:e5:75:b4:23:55:78:a1: b5:b6:ca:51:c9:66:53:22:b7:e9:64:36:3b:78:60:dc:37:ff: 84:3e:85:a8:eb:2c:0f:be:59:39:94:9e:22:49:e5:ba:5b:95: b6:77:1c:6e:73:48:01:bc:e9:ce:bd:c3:84:82:95:e3:85:4d: 76:b7:d7:3a:59:57:83:7f:a4:60:72:da:ea:e0:0a:8c:0c:0c: ef:3f:4c:57:dc:6f:3e:d0:c4:15:25:96:72:08:e1:84:b0:55: ca:b1:f3:e6:b4:d3:ce:d7:b0:96:68:7e:64:aa:37:c2:92:de: dd:ed:7e:31:0a:4b:16:f2:fe:95:32:fa:ff:bc:b5:bc:8f:ea: ba:08:fb:ef:aa:76:de:63:7c:c2:d0:3c:89:51:5a:cf:c6:cb: b6:76:21:c8:e4:20:8f:2c:8f:cc:e6:d5:e6:eb:42:a4:d9:06: 8a:9a:b4:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwNjEzMDY0NDM0WhcNMjYwNjIwMDY0NDM0WjAYMRYwFAYD VQQDEw02YTJjZmM1My1lMTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W29YnxmhWZap5RtV6kUCW84bSVs8tGNjVSExjuKUEAbBQ0Pg5MCQZC40F+Y 2EC4WGdMFqo+9e9tWlDHZT1L3Y7ffM5RrDPOZgan/9wd4nRy1afZQX2tbWrjEO44 frA2LRkHMNbrl/zGmayn3xgqBlxe3TR8CmPtlGANSWvkYUmSamJfhpczX5rWTcS7 5dF2wa5FM2DhjV52gqYQkPJxwZICLDndryBVy8z2zjrSNyhsvHV62LEC3gRo1/eE BpoP5D5IHvaNk/T7SDpUiRYd9BgH+Dagq8Y1LIW9KdFw4PixGusOhOUwwKJpkZq0 wJhdbcrdosD041XbH0dw76vFrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOeQFulg 4VqLCqxdh4naPFWhQwQIMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpV V3hfMm9LU3ZZR0J2T3owSTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaJY7TnJL5TqariWqA9+DeGVJ8pCMES6N2dLwoHNeG636+cCPng1VU5iKD2r/ T3seqoSx6deu/q7SQugdbl3boU29Ro6Qqg7NJEE9r+b4zOwsREPldbQjVXihtbbK UclmUyK36WQ2O3hg3Df/hD6FqOssD75ZOZSeIknluluVtnccbnNIAbzpzr3DhIKV 44VNdrfXOllXg3+kYHLa6uAKjAwM7z9MV9xvPtDEFSWWcgjhhLBVyrHz5rTTztew lmh+ZKo3wpLe3e1+MQpLFvL+lTL6/7y1vI/qugj776p23mN8wtA8iVFaz8bLtnYh yOQgjyyPzObV5utCpNkGipq09Q== -----END CERTIFICATE-----Generated at Sat Jun 13 20:26:04 2026 by rpki-client