$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: H+3u2LQBc6NoY5DKKrw1YpMMFNYeC6dvnX2G7+Wnmy8= Subject key identifier: CE:9C:5A:76:EC:E0:C0:EE:7F:F3:33:CD:4F:D5:C6:BD:14:E9:43:59 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0E43 Signing time: Fri 12 Jun 2026 17:49:12 +0000 Manifest this update: Fri 12 Jun 2026 17:49:11 +0000 Manifest next update: Fri 19 Jun 2026 17:49:11 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: daJZQA+eJFpkN7JQwJTHTJKEFqo0MzL6FApebPa/qFA=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: GS10eEt1MCcAl1eDM0DD66Q/CuCpMh/GfO+nM5nY1Wc=) 3: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: R/iJ4c5PH31y7CSM0LznhAJ3uqMaJ3657UNaVBCq6Pk=) 4: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: V7vJC1rGtCuOdSFWDJjdd3JhuVIPp/Zsx063dJpSpzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3724 (0xe8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Jun 12 17:49:11 2026 GMT Not After : Jun 19 17:49:11 2026 GMT Subject: CN=6a2c4698-1133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:55:c4:ef:0e:1d:d6:43:8c:02:db:47:ef:07: 09:a4:89:dd:68:87:a4:7f:a9:cf:21:ee:71:e8:39: 6e:85:f3:70:e1:39:4d:1e:35:80:f4:97:5e:eb:80: 58:d4:91:b4:c4:4a:b3:ea:cd:6e:56:d3:16:3c:b8: bf:f9:91:14:5f:b0:59:2c:40:97:08:78:e6:07:24: 4d:41:74:bf:d3:3b:ee:7c:a7:14:2b:ce:1e:73:86: fc:b9:ab:1a:6d:45:4f:30:d3:49:ca:88:32:57:86: a0:b4:66:30:2e:a1:d7:62:66:30:b7:ce:b9:c2:39: 54:dc:57:76:8a:83:a2:fe:d8:78:08:80:9d:84:99: 49:c7:5c:c3:7c:1c:20:4d:74:f6:07:89:f1:62:f2: e4:9f:1d:a7:31:4f:72:85:c5:ce:c4:9a:b9:d1:a6: 59:32:db:bc:8d:eb:92:2b:96:65:7c:53:4d:22:d8: 57:6b:32:df:89:e4:6a:04:bc:7b:3c:89:3e:e4:50: a5:eb:51:08:2e:ba:45:83:8d:37:e7:00:c1:3a:91: 27:f0:3e:04:8c:79:44:25:fa:48:1d:5a:44:dd:c4: d4:58:ff:7d:60:e1:0f:8f:21:d0:46:e5:a5:3f:ba: 3b:ce:43:3c:53:17:1a:dd:da:09:4b:12:8e:48:29: f4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9C:5A:76:EC:E0:C0:EE:7F:F3:33:CD:4F:D5:C6:BD:14:E9:43:59 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:7a:70:29:b3:20:a6:36:a1:c9:f2:6f:e2:86:bd:1b:b3:c2: 7f:65:8d:e0:04:c9:7f:27:fa:13:0e:9b:79:be:86:8a:6b:2b: f0:8d:bd:1b:02:4f:20:cc:49:e9:ed:03:8d:79:45:8d:06:91: eb:64:d9:0a:ca:60:6b:13:79:bd:79:59:ee:62:d9:50:d3:98: ba:98:2f:d6:47:87:df:06:35:d1:f6:53:62:ee:3d:0d:07:7e: a1:95:33:7c:46:ad:6b:5f:6b:54:c9:3a:97:80:ac:6d:69:59: 0e:48:ee:18:85:b6:d0:ad:d0:48:92:39:ec:9e:40:53:2e:ad: ec:0f:1f:16:ad:8a:f3:7d:32:01:a6:94:dc:39:d7:8d:51:74: 75:fa:d8:1a:fe:e3:da:04:23:dc:a9:dc:6f:f3:c1:cf:7f:a8: af:ec:bb:5d:00:e1:07:8b:2f:d3:3a:97:f8:5a:7f:1a:f8:8e: 30:ce:b3:77:f8:a0:bd:89:6c:28:1b:98:a1:b3:db:19:41:cc: e2:71:9a:b3:da:90:c0:cf:3b:6a:e6:13:6e:a8:b6:88:20:b9: 2d:1d:14:c5:67:6f:12:b4:e9:d3:4a:ca:d9:48:9a:50:73:39: 67:78:17:04:38:31:6a:6a:52:66:12:2f:a1:17:ea:14:30:81: bb:41:2a:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwNjEyMTc0OTExWhcNMjYwNjE5MTc0OTExWjAYMRYwFAYD VQQDEw02YTJjNDY5OC0xMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlXE7w4d1kOMAttH7wcJpIndaIekf6nPIe5x6DluhfNw4TlNHjWA9Jde64BY 1JG0xEqz6s1uVtMWPLi/+ZEUX7BZLECXCHjmByRNQXS/0zvufKcUK84ec4b8uasa bUVPMNNJyogyV4agtGYwLqHXYmYwt865wjlU3Fd2ioOi/th4CICdhJlJx1zDfBwg TXT2B4nxYvLknx2nMU9yhcXOxJq50aZZMtu8jeuSK5ZlfFNNIthXazLfieRqBLx7 PIk+5FCl61EILrpFg4035wDBOpEn8D4EjHlEJfpIHVpE3cTUWP99YOEPjyHQRuWl P7o7zkM8Uxca3doJSxKOSCn05QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6cWnbs 4MDuf/MzzU/Vxr0U6UNZMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEXpwKbMgpjahyfJv4oa9G7PCf2WN4ATJfyf6Ew6beb6Gimsr8I29GwJPIMxJ 6e0DjXlFjQaR62TZCspgaxN5vXlZ7mLZUNOYupgv1keH3wY10fZTYu49DQd+oZUz fEata19rVMk6l4CsbWlZDkjuGIW20K3QSJI57J5AUy6t7A8fFq2K830yAaaU3DnX jVF0dfrYGv7j2gQj3Kncb/PBz3+or+y7XQDhB4sv0zqX+Fp/GviOMM6zd/igvYls KBuYobPbGUHM4nGas9qQwM87auYTbqi2iCC5LR0UxWdvErTp00rK2UiaUHM5Z3gX BDgxampSZhIvoRfqFDCBu0Eqgg== -----END CERTIFICATE-----Generated at Sat Jun 13 14:44:25 2026 by rpki-client