$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: dcXlSUjUWBj7iDKBwa5ATeP6NtrWFhFJH3lnKIIrnE0= Subject key identifier: EE:E3:AA:54:EC:38:41:84:56:3A:70:BF:87:6D:FC:4C:24:2A:6E:D7 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 355D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 3555 Signing time: Fri 12 Jun 2026 15:04:19 +0000 Manifest this update: Fri 12 Jun 2026 15:04:19 +0000 Manifest next update: Fri 19 Jun 2026 15:04:19 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: jRoTNjC/Yc6igumYeQm8svh6qhbt50VofdwK7z3/xsg=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: grlNN+mm97djcRhLgczSf6yBI8MB1/S7/60D7ODVKSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13661 (0x355d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Jun 12 15:04:19 2026 GMT Not After : Jun 19 15:04:19 2026 GMT Subject: CN=6a2c1ff3-a29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:02:95:04:c5:f7:e4:98:69:95:df:29:af:42: 29:fd:52:65:9e:f4:d4:30:fc:e8:7a:e4:1d:30:1e: a3:b8:e0:6e:3b:ef:1a:5e:0d:b6:89:ce:a2:7e:4c: e8:bc:b2:54:d4:7c:be:b7:ba:11:43:7b:3f:61:a1: b1:89:2e:b3:a0:8c:3c:d6:29:e8:42:e2:0d:90:2c: 73:2c:b0:e6:a3:a7:de:07:53:86:38:d2:f3:55:4e: e9:2c:4b:40:1b:65:18:0d:52:40:9f:e4:a4:58:86: 9e:25:04:fb:bc:e8:4e:8f:4c:60:89:d0:ba:76:77: 48:24:02:7f:cd:2f:d6:c9:62:be:42:92:92:24:44: f7:79:39:29:51:ed:6f:e8:89:60:cb:5e:87:84:53: 83:0f:d9:8a:ca:a6:bd:3b:fc:da:d7:54:08:e4:0b: f6:af:9c:f0:1f:34:b7:0d:22:8b:e4:d1:d4:2d:90: 02:67:e4:af:80:99:f7:94:6d:43:33:00:9d:20:51: b0:4e:f6:1e:d2:69:7d:7a:22:ea:70:5e:c6:09:bf: 51:bd:90:b0:0c:0d:7c:10:ef:50:0e:6a:06:d4:56: 88:66:1b:fe:7a:2a:77:3e:f7:a3:a5:bc:2c:9a:f1: d1:9d:09:68:85:4f:b6:f1:53:48:f5:88:09:9e:4b: 5c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E3:AA:54:EC:38:41:84:56:3A:70:BF:87:6D:FC:4C:24:2A:6E:D7 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:bd:2a:df:9f:fe:9b:fe:57:f3:dc:6c:93:07:7a:30:2d:f6: 4f:4b:e3:6c:1e:13:6b:33:c9:18:b2:39:db:73:e7:a9:7c:e6: 98:bd:41:cd:84:26:ba:0c:be:81:e7:6f:f4:5b:d1:e6:43:c8: 47:59:7a:f1:78:e6:17:7e:1a:48:d9:9b:f6:58:04:ea:ff:fe: 00:6c:d2:f4:99:e4:0b:f5:0c:d0:e4:d8:f6:67:61:bf:c0:c2: 65:0d:12:2a:af:a1:70:f2:94:fa:9e:99:62:8b:bd:70:09:f6: 2e:ec:ec:b6:0f:3d:b2:f8:3d:c0:00:f2:f2:fb:47:c1:d5:89: c6:e4:8f:26:33:14:5e:56:22:e1:86:31:00:0a:9c:49:91:0f: 77:d3:48:a4:46:5d:3a:49:ef:75:5e:fd:8d:66:0c:3d:a8:bb: 17:c2:c3:a9:92:6e:d3:a6:74:63:2a:15:56:a8:83:fd:87:af: e7:e6:06:68:e9:c4:26:d7:2d:04:7e:7b:b1:87:c1:b3:85:f7: b6:77:f3:a9:8b:c0:b0:50:e0:bc:6e:8d:db:b7:e8:52:48:8d: a3:06:dc:5d:2d:21:17:01:5a:f3:6b:3f:0b:28:8c:85:cf:6c: 72:7e:c0:84:7f:f8:b9:10:38:40:51:91:9f:55:af:45:9d:f0: f7:4b:e9:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwNjEyMTUwNDE5WhcNMjYwNjE5MTUwNDE5WjAYMRYwFAYD VQQDEw02YTJjMWZmMy1hMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgKVBMX35Jhpld8pr0Ip/VJlnvTUMPzoeuQdMB6juOBuO+8aXg22ic6ifkzo vLJU1Hy+t7oRQ3s/YaGxiS6zoIw81inoQuINkCxzLLDmo6feB1OGONLzVU7pLEtA G2UYDVJAn+SkWIaeJQT7vOhOj0xgidC6dndIJAJ/zS/WyWK+QpKSJET3eTkpUe1v 6Ilgy16HhFODD9mKyqa9O/za11QI5Av2r5zwHzS3DSKL5NHULZACZ+SvgJn3lG1D MwCdIFGwTvYe0ml9eiLqcF7GCb9RvZCwDA18EO9QDmoG1FaIZhv+eip3Pvejpbws mvHRnQlohU+28VNI9YgJnktcbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO7jqlTs OEGEVjpwv4dt/EwkKm7XMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhb0q35/+m/5X89xskwd6MC32T0vjbB4TazPJGLI523PnqXzmmL1BzYQmugy+ gedv9FvR5kPIR1l68XjmF34aSNmb9lgE6v/+AGzS9JnkC/UM0OTY9mdhv8DCZQ0S Kq+hcPKU+p6ZYou9cAn2Luzstg89svg9wADy8vtHwdWJxuSPJjMUXlYi4YYxAAqc SZEPd9NIpEZdOknvdV79jWYMPai7F8LDqZJu06Z0YyoVVqiD/Yev5+YGaOnEJtct BH57sYfBs4X3tnfzqYvAsFDgvG6N27foUkiNowbcXS0hFwFa82s/CyiMhc9scn7A hH/4uRA4QFGRn1WvRZ3w90vpGg== -----END CERTIFICATE-----Generated at Sat Jun 13 09:33:53 2026 by rpki-client