$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: 4JV91/y4jJaHFDjUdWioBDSp5t1LcW1CFAF4YVBrYWE= Subject key identifier: A8:E9:15:E1:9A:C0:84:4B:57:03:0F:29:FF:56:A1:B2:61:42:0E:AD Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03FE Signing time: Sat 13 Jun 2026 00:28:42 +0000 Manifest this update: Sat 13 Jun 2026 00:28:41 +0000 Manifest next update: Sat 20 Jun 2026 00:28:41 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: cEypWyLUNzjUJR189Iif014mJA+HKJYlgjN4DNzaMmU=) 2: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) 4: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jun 13 00:28:41 2026 GMT Not After : Jun 20 00:28:41 2026 GMT Subject: CN=6a2ca43a-9d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cf:d2:95:41:b2:43:a4:94:f7:c3:3a:52:28: d4:61:00:dd:c0:a4:c5:79:aa:87:97:0c:ea:23:9b: cf:d5:82:f9:d8:c6:6a:75:e7:4a:e5:11:07:74:57: b3:a3:db:1a:94:fa:5d:a0:9c:3a:c9:b8:8c:4f:4b: 6f:c5:16:69:a0:b3:d9:0b:96:17:a3:d5:57:eb:8f: fe:a3:42:12:35:c0:33:5b:a5:b6:d8:20:24:72:54: 29:19:eb:6b:3e:44:a0:f4:26:2d:cb:2c:3f:42:06: de:b8:22:86:c4:e2:89:e9:d6:09:b9:59:86:77:2d: d8:76:5b:74:e1:27:7a:9e:21:47:78:95:e6:65:cc: de:4d:ad:33:41:45:bd:80:2d:9a:87:24:db:a6:c0: 80:75:a6:2c:1a:20:1e:ee:0e:d3:97:f6:a6:8c:f1: 8e:70:06:e2:bf:95:18:5f:fa:ae:97:c4:40:9e:89: 58:e0:c8:86:d8:fa:89:43:01:47:1e:d2:9c:24:18: 70:3e:e0:a9:05:bb:79:a5:0c:45:27:a5:62:8c:cf: da:c4:8d:0a:5d:1e:77:f8:87:46:5d:28:c5:21:4c: ec:c9:24:12:17:60:f2:9f:b2:00:dd:69:87:2e:30: 52:d7:f7:d7:7b:22:bd:8e:78:19:5c:0c:5e:fa:89: c9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E9:15:E1:9A:C0:84:4B:57:03:0F:29:FF:56:A1:B2:61:42:0E:AD X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:89:de:a4:49:81:db:0f:4f:50:b9:b8:84:cd:8f:82:46:f2: f3:ac:33:d7:22:dc:cf:0f:59:27:a5:08:91:c6:2d:43:43:11: 5e:d2:6f:4e:2f:19:27:03:d3:37:fc:1c:06:bb:05:b9:9d:d2: 5f:76:dd:58:3a:d2:2c:79:1a:ed:17:f2:7c:1c:39:52:7c:6d: 8d:6c:84:52:2a:13:8f:3f:6d:27:1e:82:46:17:cc:e9:a7:9c: d3:99:82:cb:ab:27:ae:1d:33:f5:78:22:13:3f:65:e9:e4:06: 12:e0:46:10:dd:59:1a:36:07:7e:cb:87:3b:e9:50:c6:0c:46: 8d:be:5c:f9:ae:b0:33:52:dd:5b:87:d9:48:dd:8c:61:dc:8f: 2a:5c:2d:29:a4:54:d8:f3:44:10:c5:52:54:e5:d3:bf:c1:3f: 00:ad:9e:f1:9d:d8:0b:c2:1f:26:08:f6:93:2b:54:6d:1b:5b: 21:1e:db:39:48:5a:4f:44:52:9e:33:89:52:fa:42:8e:80:44: 23:f6:26:30:d0:8a:81:c6:b1:76:9c:08:7e:ea:6a:bd:b0:24: b1:b3:03:6a:21:47:91:8c:75:50:ef:78:74:ef:e9:48:df:d7: 92:e8:11:7f:9d:d5:92:fd:02:85:a6:f7:8f:51:19:db:17:ee: 6d:63:84:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwNjEzMDAyODQxWhcNMjYwNjIwMDAyODQxWjAYMRYwFAYD VQQDEw02YTJjYTQzYS05ZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28/SlUGyQ6SU98M6UijUYQDdwKTFeaqHlwzqI5vP1YL52MZqdedK5REHdFez o9salPpdoJw6ybiMT0tvxRZpoLPZC5YXo9VX64/+o0ISNcAzW6W22CAkclQpGetr PkSg9CYtyyw/QgbeuCKGxOKJ6dYJuVmGdy3Ydlt04Sd6niFHeJXmZczeTa0zQUW9 gC2ahyTbpsCAdaYsGiAe7g7Tl/amjPGOcAbiv5UYX/qul8RAnolY4MiG2PqJQwFH HtKcJBhwPuCpBbt5pQxFJ6VijM/axI0KXR53+IdGXSjFIUzsySQSF2Dyn7IA3WmH LjBS1/fXeyK9jngZXAxe+onJyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKjpFeGa wIRLVwMPKf9WobJhQg6tMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABInepEmB2w9PULm4hM2Pgkby86wz1yLczw9ZJ6UIkcYtQ0MRXtJvTi8ZJwPT N/wcBrsFuZ3SX3bdWDrSLHka7RfyfBw5UnxtjWyEUioTjz9tJx6CRhfM6aec05mC y6snrh0z9XgiEz9l6eQGEuBGEN1ZGjYHfsuHO+lQxgxGjb5c+a6wM1LdW4fZSN2M YdyPKlwtKaRU2PNEEMVSVOXTv8E/AK2e8Z3YC8IfJgj2kytUbRtbIR7bOUhaT0RS njOJUvpCjoBEI/YmMNCKgcaxdpwIfupqvbAksbMDaiFHkYx1UO94dO/pSN/XkugR f53Vkv0Chab3j1EZ2xfubWOEAQ== -----END CERTIFICATE-----Generated at Sat Jun 13 11:16:23 2026 by rpki-client