$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft File: XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft (raw, json) Hash identifier: Zmp7uMHyzFFKB4lkztpCzwv2YR0YsV2OgQ/zo44R2bw= Subject key identifier: 8B:99:1B:06:22:93:09:C9:19:55:EB:1D:4B:E8:FC:D8:EC:F8:80:C5 Authority key identifier: 5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 Certificate issuer: /CN=A91E7B89/serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft Manifest number: 5E Signing time: Sat 13 Jun 2026 08:09:59 +0000 Manifest this update: Sat 13 Jun 2026 08:09:58 +0000 Manifest next update: Sat 20 Jun 2026 08:09:58 +0000 Files and hashes: 1: XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl (hash: /SwmkeiVRak+1hl5N7zSuMLNGeAycR1OPop6Z/61BOU=) 2: 72480DC0D9A111F0989DD75268D3641D.roa (hash: /m7dePdPhCd+iFe1dsv0pa92EOKO9ZVeLTSq8mVj9oY=) 3: 1C61CBFA1D1A11F1B8E79D60103D8C67.roa (hash: wYka0Jo+ri8cUtmDcLdxLnFG7gW5TQTaHwdh/jeTkn4=) 4: 1BD6E18E1D1A11F1B8E79D60103D8C67.roa (hash: FWUBzi+iodYXnW4vMdTTKwC/KG79KdBqlOoiZl/TPEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 08:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7B89, serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Validity Not Before: Jun 13 08:09:58 2026 GMT Not After : Jun 20 08:09:58 2026 GMT Subject: CN=6a2d1057-7ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:21:84:2a:a4:0a:50:40:39:2b:bd:e7:b5:90: 68:ce:e6:4e:ee:69:f1:56:b7:a7:35:f9:59:1d:6e: 8a:61:49:13:7c:f4:f2:ce:54:2d:7b:75:4c:2d:5d: 96:fe:f0:e2:9b:db:f6:26:4b:6a:fd:8b:4d:0f:f2: dc:66:de:c3:30:65:5a:42:95:1c:66:64:41:7f:21: 23:b7:01:0e:a7:f9:76:2e:29:ea:83:c5:bf:77:60: bf:b8:54:fe:50:08:30:dd:97:49:99:f7:e6:a8:ae: dc:f6:96:83:f8:9c:06:1c:dd:ed:c8:3d:9a:30:48: e3:7c:38:b5:14:33:49:3f:72:a2:fd:7f:b5:cb:ee: c2:4b:49:10:14:14:c3:03:64:b5:af:97:dd:3e:00: ee:af:e0:30:55:1a:fa:d8:9b:34:87:22:83:b1:c9: 69:44:be:06:ba:ee:ce:b2:8a:3e:dc:6e:4c:cf:a7: 78:ad:21:3a:d9:1b:f7:7d:e9:05:02:83:00:75:5c: 7d:0c:1a:e6:94:c9:1f:cc:89:49:1e:0b:69:b9:9f: d1:d6:82:cf:f9:1e:be:69:e4:fa:9f:ea:49:b8:1d: ee:d7:ad:a1:28:1d:a3:b7:e6:9c:83:dd:83:95:3d: d2:60:a6:7f:ad:49:23:ac:d9:4e:e4:be:f7:59:80: 0b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:99:1B:06:22:93:09:C9:19:55:EB:1D:4B:E8:FC:D8:EC:F8:80:C5 X509v3 Authority Key Identifier: keyid:5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:b4:d5:f0:b3:3d:87:1a:3c:47:b6:3d:4c:54:d7:c4:29:b5: 0e:12:11:e4:5a:c2:db:53:b5:58:b2:8c:1f:76:01:f6:fa:92: c4:24:9b:28:cb:60:ae:24:2e:8f:d1:c8:c6:55:83:ed:d5:f9: 1f:22:cc:02:3e:1e:81:2c:93:98:0d:56:7f:ee:ef:ef:a3:07: 15:37:c8:bb:b8:bb:ab:1d:8e:c7:8c:b5:d1:09:0a:b3:6c:04: b2:a4:65:44:83:7b:c5:6d:b1:7c:ef:d8:63:a5:82:d0:99:9a: bd:cd:94:49:9f:5d:f3:24:36:a0:a4:67:11:21:40:b1:43:54: be:92:bb:cd:66:dd:25:a7:4b:07:d5:ed:4c:8c:dc:fe:97:8a: a4:c1:8a:29:5f:fb:b9:78:da:6d:bb:48:bd:26:99:2e:d6:f6: 73:3c:68:b5:be:fa:58:4e:74:41:14:a9:ef:5c:36:a3:8a:97: 2d:28:bf:83:c1:fd:ee:a0:03:c2:d0:37:ce:ee:65:75:98:fa: 10:ce:a6:9d:1a:e9:85:cc:37:bd:df:2a:ef:13:16:33:b8:70: 50:17:06:c6:ac:4c:f4:d9:65:71:4a:fb:c4:e8:de:ec:ec:3d: dd:b4:5e:ef:da:4a:ed:2f:50:a6:4a:f6:1c:eb:df:86:71:ef: e7:e5:ae:c5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0I4OTExMC8GA1UEBRMoNUU3ODY0MkIwM0NDMzdFMjZGRDQxNUU3RDc2MUJFNDg0 NzM2QzU2NjAeFw0yNjA2MTMwODA5NThaFw0yNjA2MjAwODA5NThaMBgxFjAUBgNV BAMTDTZhMmQxMDU3LTdlZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEIYQqpApQQDkrvee1kGjO5k7uafFWt6c1+VkdbophSRN89PLOVC17dUwtXZb+ 8OKb2/YmS2r9i00P8txm3sMwZVpClRxmZEF/ISO3AQ6n+XYuKeqDxb93YL+4VP5Q CDDdl0mZ9+aortz2loP4nAYc3e3IPZowSON8OLUUM0k/cqL9f7XL7sJLSRAUFMMD ZLWvl90+AO6v4DBVGvrYmzSHIoOxyWlEvga67s6yij7cbkzPp3itITrZG/d96QUC gwB1XH0MGuaUyR/MiUkeC2m5n9HWgs/5Hr5p5Pqf6km4He7XraEoHaO35pyD3YOV PdJgpn+tSSOs2U7kvvdZgAs1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUi5kbBiKT CckZVesdS+j82Oz4gMUwHwYDVR0jBBgwFoAUXnhkKwPMN+Jv1BXn12G+SEc2xWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3Qjg5LzQxQkU0RjQ0RDlB MDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1KdjFCWG4xMkctU0VjMnhX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5oa0t3UE1OLUp2MUJYbjEyRy1TRWMyeFdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 Qjg5LzQxQkU0RjQ0RDlBMDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1K djFCWG4xMkctU0VjMnhXWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC1tNXwsz2HGjxHtj1MVNfEKbUOEhHkWsLbU7VYsowfdgH2+pLEJJsoy2CuJC6P 0cjGVYPt1fkfIswCPh6BLJOYDVZ/7u/vowcVN8i7uLurHY7HjLXRCQqzbASypGVE g3vFbbF879hjpYLQmZq9zZRJn13zJDagpGcRIUCxQ1S+krvNZt0lp0sH1e1MjNz+ l4qkwYopX/u5eNptu0i9Jpku1vZzPGi1vvpYTnRBFKnvXDajipctKL+Dwf3uoAPC 0DfO7mV1mPoQzqadGumFzDe93yrvExYzuHBQFwbGrEz02WVxSvvE6N7s7D3dtF7v 2krtL1CmSvYc69+Gce/n5a7F -----END CERTIFICATE-----Generated at Sun Jun 14 00:55:49 2026 by rpki-client