$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: E5xTIQhe1aXnfNeJA80mMxFB4HhFhXHT46oBZM7u7no= Subject key identifier: 59:33:6A:CC:5A:36:38:11:39:70:2F:E9:54:BC:30:1E:27:B3:E3:B9 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 139E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 138A Signing time: Fri 12 Jun 2026 16:56:09 +0000 Manifest this update: Fri 12 Jun 2026 16:56:08 +0000 Manifest next update: Fri 19 Jun 2026 16:56:08 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: rIOBouMIwv5xKR0yUhRIOSctnt+F0egGB+zUrnywZKw=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: O9w5ukmDcrFDcEjD6HiwQa6Y82NCxJ277Oe6QTyQjzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5022 (0x139e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Jun 12 16:56:08 2026 GMT Not After : Jun 19 16:56:08 2026 GMT Subject: CN=6a2c3a29-f0eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:87:58:b4:2a:fd:80:cb:e1:30:df:5f:b0:3e: bb:f5:db:fc:57:9b:76:90:41:4d:fe:55:f1:0c:19: 5a:ae:e0:00:d7:ee:48:0a:eb:e1:91:21:c6:35:45: 7f:1b:54:96:29:30:19:7c:0d:37:f3:06:e9:a5:b6: b7:72:02:a7:2b:b6:34:e9:fc:c1:0d:7b:61:c5:2d: cc:8a:be:56:d1:64:2a:11:6d:51:17:a3:ba:37:d6: 33:43:3e:f8:2a:51:57:ef:b3:12:95:5a:6c:c3:71: cb:e9:20:f1:9b:cb:1d:ae:9e:b1:3c:f8:f0:c6:f6: d5:77:55:e2:1a:25:9d:09:81:f6:eb:73:5c:70:7f: 7f:9b:3b:02:bf:5b:56:fb:46:e0:b6:7d:54:41:24: 66:48:47:dc:81:4f:53:38:45:f5:25:01:87:15:39: 36:c3:2a:d8:1f:c5:d2:f9:0c:b2:74:f8:be:25:92: 01:e6:85:77:f0:e0:f9:ba:75:25:4e:ce:d4:ba:6a: b1:6f:76:5d:b5:c7:73:e6:4b:9f:80:9c:db:90:ff: b5:a3:77:d5:1f:0b:bd:d9:fc:ce:f3:69:07:08:96: 82:c2:b8:e0:21:ec:a9:18:7d:fc:65:e7:b5:14:1b: 2c:91:d1:63:7b:81:87:57:13:47:d7:c5:ae:f9:39: ee:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:33:6A:CC:5A:36:38:11:39:70:2F:E9:54:BC:30:1E:27:B3:E3:B9 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:60:41:7a:20:74:a9:82:b8:cc:ab:d3:f6:b4:c1:46:e1:8e: 63:b2:17:db:a0:7d:73:5f:f0:b9:2e:fe:53:72:a3:90:87:2e: 11:db:f5:6b:7e:89:81:fe:2d:2b:c6:a2:9e:2a:07:bf:3c:82: 81:a1:42:98:e1:87:8e:cd:14:9f:25:3e:91:4a:3d:af:e9:6e: 6d:ac:05:36:f9:6a:7d:79:16:0a:f0:03:b2:eb:53:5c:f5:c0: 60:c5:78:ae:7b:6f:45:50:37:fd:34:32:ac:fd:2c:94:c3:48: d5:4f:2b:20:6b:7d:a6:7e:cf:48:69:05:52:2a:ed:73:d5:2b: 99:6d:38:b4:6a:1f:b3:aa:46:a5:2f:28:36:c8:71:87:79:62: 4f:53:aa:fb:56:f6:94:03:ad:54:dc:75:62:17:59:c4:c7:59: 99:29:34:50:ad:69:d9:ce:70:8f:11:86:ab:3c:2b:d9:c3:0d: 10:8a:19:42:5a:ea:10:e8:87:1b:a1:48:67:51:58:bf:9b:6b: f6:4b:c6:b2:aa:29:6c:cb:50:c4:a0:d6:12:2a:83:c0:f2:2b: b2:16:b9:ae:22:ea:81:72:99:05:06:65:b8:36:73:c2:98:70: 9c:fd:5b:cb:0d:4e:50:e6:b8:4e:24:ce:33:91:9b:78:3b:e2: 51:be:d2:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjYwNjEyMTY1NjA4WhcNMjYwNjE5MTY1NjA4WjAYMRYwFAYD VQQDEw02YTJjM2EyOS1mMGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtodYtCr9gMvhMN9fsD679dv8V5t2kEFN/lXxDBlaruAA1+5ICuvhkSHGNUV/ G1SWKTAZfA038wbppba3cgKnK7Y06fzBDXthxS3Mir5W0WQqEW1RF6O6N9YzQz74 KlFX77MSlVpsw3HL6SDxm8sdrp6xPPjwxvbVd1XiGiWdCYH263NccH9/mzsCv1tW +0bgtn1UQSRmSEfcgU9TOEX1JQGHFTk2wyrYH8XS+QyydPi+JZIB5oV38OD5unUl Ts7Uumqxb3Zdtcdz5kufgJzbkP+1o3fVHwu92fzO82kHCJaCwrjgIeypGH38Zee1 FBsskdFje4GHVxNH18Wu+TnuzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFkzasxa NjgROXAv6VS8MB4ns+O5MB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnGBBeiB0qYK4zKvT9rTBRuGOY7IX26B9c1/wuS7+U3KjkIcuEdv1a36Jgf4t K8ainioHvzyCgaFCmOGHjs0UnyU+kUo9r+lubawFNvlqfXkWCvADsutTXPXAYMV4 rntvRVA3/TQyrP0slMNI1U8rIGt9pn7PSGkFUirtc9UrmW04tGofs6pGpS8oNshx h3liT1Oq+1b2lAOtVNx1YhdZxMdZmSk0UK1p2c5wjxGGqzwr2cMNEIoZQlrqEOiH G6FIZ1FYv5tr9kvGsqopbMtQxKDWEiqDwPIrsha5riLqgXKZBQZluDZzwphwnP1b yw1OUOa4TiTOM5GbeDviUb7StA== -----END CERTIFICATE-----Generated at Sat Jun 13 09:31:24 2026 by rpki-client