$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: P30vcoZFsaztOFascY2w5RaH4sWdz3fGl/RvaC7emI8= Subject key identifier: 4D:DC:06:91:26:8A:B1:FA:2E:9E:50:1D:DB:53:62:52:37:9E:3F:1E Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 356E Signing time: Fri 12 Jun 2026 14:19:26 +0000 Manifest this update: Fri 12 Jun 2026 14:19:26 +0000 Manifest next update: Fri 19 Jun 2026 14:19:26 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: CR7stSgw7PSy+neeemr1rUAGqK+vBEjNCXCo/fFI7go=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: XQiiRoZi6pRqCcdlCvd3IdGsHWdpm/jnCGN7DrFAwWE=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: dh5lUduMwHSl3wThPTXL9P/yi+GXIfLIHScJbSj8Rp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13714 (0x3592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Jun 12 14:19:26 2026 GMT Not After : Jun 19 14:19:26 2026 GMT Subject: CN=6a2c156e-ada2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:23:cf:7a:0a:7a:f5:50:a2:17:01:84:f2: 85:0a:82:52:89:cb:af:46:88:62:d4:ae:87:06:8b: 47:53:be:a5:72:61:ba:37:a6:b5:f2:b6:c7:e2:94: 3b:9a:46:1a:a1:8b:91:10:d8:66:da:50:4b:40:3a: 14:1d:5c:61:6a:a5:14:05:af:c4:57:c7:61:10:6b: 22:a5:4e:0a:69:ea:55:ff:19:c5:f7:82:9b:88:98: 5b:0a:c6:c0:a0:1b:10:ea:cf:ae:da:d2:1c:ff:6d: 87:0f:5c:83:14:49:df:d0:09:78:b5:f0:9b:ba:d4: 86:6b:ee:8f:82:c3:9b:aa:0f:35:db:ff:95:86:dd: ff:fe:5c:50:75:b7:99:f9:50:a1:7f:08:1a:27:13: 27:61:7a:4c:5c:fb:dd:88:59:bc:fb:f2:88:66:9d: 83:7c:03:27:87:3a:0f:17:b0:ee:db:5e:84:c9:1d: 9d:2e:b2:f2:e6:0c:6d:e5:5d:08:8c:5b:68:fc:5a: ff:a3:50:24:67:c6:8c:42:fd:f8:12:eb:66:c5:7e: cb:e5:6c:8f:d6:b9:25:a1:e9:c9:87:27:2d:d1:5f: 4b:3c:61:0e:e3:ce:b0:4c:f4:f9:15:ea:3b:24:fc: 1c:3a:9f:60:d8:79:8b:43:14:ee:c3:b4:0c:bd:20: 6f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:DC:06:91:26:8A:B1:FA:2E:9E:50:1D:DB:53:62:52:37:9E:3F:1E X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:cb:9e:a9:c6:ae:85:f0:ac:4e:9e:ec:58:b0:77:63:9d:2e: 78:dc:19:e7:14:c9:a4:9a:55:5e:37:0a:2d:63:4e:0b:96:4f: b3:2c:92:cf:9b:f9:34:7a:47:16:52:47:73:90:86:a6:15:b2: 62:db:5a:6b:96:09:91:bb:1e:cc:c6:f1:9a:26:b4:e4:0b:7e: cb:7c:96:67:78:11:ca:01:0c:59:f5:b7:2f:f4:05:c2:ac:88: bb:88:8c:93:7a:f1:1e:d8:21:d2:30:f6:8a:b9:5e:5d:31:16: cf:d0:fb:2f:2d:19:7c:e6:d8:d4:48:78:d4:bb:42:59:a8:62: 35:76:09:b7:ab:8b:67:62:e0:e3:43:35:4d:d4:2f:8c:af:15: cd:b5:dd:fe:93:64:d6:ad:42:ee:87:84:68:85:eb:fb:c5:f7: a9:d5:b7:0e:a5:74:58:5e:b7:88:db:6b:66:1c:b0:34:cd:89: 25:5a:20:85:a6:9d:c4:be:5d:20:ac:45:ce:36:d3:94:7a:96: 21:6b:ac:9c:66:11:e8:80:c3:da:26:37:54:6e:4e:b7:8c:08: 4d:ad:44:03:3c:5a:97:73:0c:5b:b9:37:75:2d:70:e7:c9:71: 9e:a1:85:da:e4:9a:f2:2a:0f:70:0d:ab:77:e6:b7:bc:72:a3: 0b:5d:e8:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjYwNjEyMTQxOTI2WhcNMjYwNjE5MTQxOTI2WjAYMRYwFAYD VQQDEw02YTJjMTU2ZS1hZGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdUjz3oKevVQohcBhPKFCoJSicuvRohi1K6HBotHU76lcmG6N6a18rbH4pQ7 mkYaoYuRENhm2lBLQDoUHVxhaqUUBa/EV8dhEGsipU4KaepV/xnF94KbiJhbCsbA oBsQ6s+u2tIc/22HD1yDFEnf0Al4tfCbutSGa+6PgsObqg812/+Vht3//lxQdbeZ +VChfwgaJxMnYXpMXPvdiFm8+/KIZp2DfAMnhzoPF7Du216EyR2dLrLy5gxt5V0I jFto/Fr/o1AkZ8aMQv34EutmxX7L5WyP1rkloenJhyct0V9LPGEO486wTPT5Feo7 JPwcOp9g2HmLQxTuw7QMvSBv5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE3cBpEm irH6Lp5QHdtTYlI3nj8eMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAusueqcauhfCsTp7sWLB3Y50ueNwZ5xTJpJpVXjcKLWNOC5ZPsyySz5v5NHpH FlJHc5CGphWyYttaa5YJkbsezMbxmia05At+y3yWZ3gRygEMWfW3L/QFwqyIu4iM k3rxHtgh0jD2irleXTEWz9D7Ly0ZfObY1Eh41LtCWahiNXYJt6uLZ2Lg40M1TdQv jK8VzbXd/pNk1q1C7oeEaIXr+8X3qdW3DqV0WF63iNtrZhywNM2JJVoghaadxL5d IKxFzjbTlHqWIWusnGYR6IDD2iY3VG5Ot4wITa1EAzxal3MMW7k3dS1w58lxnqGF 2uSa8ioPcA2rd+a3vHKjC13owg== -----END CERTIFICATE-----Generated at Sat Jun 13 07:17:27 2026 by rpki-client