$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: iQqujImxaXs+6zstP8VkmU/eTNAhx19lOTPMfy53reg= Subject key identifier: A7:5C:36:D4:C8:A9:F8:50:A2:0E:E7:47:9E:DD:F3:AF:B4:46:2D:14 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 0159 Signing time: Wed 17 Jun 2026 05:08:13 +0000 Manifest this update: Wed 17 Jun 2026 05:08:12 +0000 Manifest next update: Wed 24 Jun 2026 05:08:12 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: ymDn2hbhknsOow1vzbGhPaHvaAbb6RPe/ZUpPx8Hvs4=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: rKKs75f3Fq0WXiFUQVZhwV3/C+6KDS0+3S6WBSvsbeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Jun 17 05:08:12 2026 GMT Not After : Jun 24 05:08:12 2026 GMT Subject: CN=6a322bbc-0fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:69:fe:69:83:92:f4:13:ec:9c:08:df:62:b8: 90:d7:59:08:b2:7c:88:0c:54:6f:58:b9:0c:d8:71: 11:3f:98:c6:cd:53:2a:54:ec:87:86:d4:84:c6:06: 09:c2:c0:a8:64:a7:60:f0:e6:7b:5b:a1:c1:36:b3: 7b:7f:e4:7a:3b:2a:37:9c:75:16:92:cd:51:9e:07: 40:3c:1a:33:16:2e:4d:67:bd:b5:8d:00:3d:f9:f9: ee:8e:d3:41:98:0d:8e:7e:de:41:2b:5a:c4:2e:9c: d8:e3:61:d5:1e:84:b7:cc:6a:b3:1c:48:ce:d1:74: ca:37:24:54:4a:be:c2:09:65:46:05:85:ec:9c:c3: a5:a7:c0:93:7e:9c:c5:d8:a2:a7:69:eb:be:f8:42: 3f:24:8b:41:63:7b:0c:38:00:fe:11:f6:eb:79:aa: 9e:f4:76:3f:cd:7c:92:00:31:a0:85:e6:cf:ad:d5: 9a:9f:44:01:05:72:0f:1b:2e:39:d2:2e:70:a1:f4: c1:d7:bf:0a:cf:b2:11:cf:37:1c:b8:8e:3c:ea:31: 9a:32:4c:63:48:ae:b2:47:1a:23:aa:b6:21:b0:7d: ae:43:3e:fc:ac:8d:13:58:1d:a1:22:3a:c6:eb:16: 6b:5b:87:1b:71:ae:a6:fe:3b:5c:7b:9f:95:74:06: a4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:5C:36:D4:C8:A9:F8:50:A2:0E:E7:47:9E:DD:F3:AF:B4:46:2D:14 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:36:ca:a5:8e:fe:9d:28:5f:be:46:ea:e4:53:f2:85:76:57: be:65:0a:c7:06:02:1b:d6:31:48:bb:4d:76:40:a0:34:69:ff: 5b:c3:f0:eb:45:ef:9b:9e:4f:4f:d2:b7:a6:4c:f8:e8:eb:52: df:ac:9f:08:ae:fc:fc:79:ff:59:78:b8:ee:32:16:c8:be:96: 47:04:20:02:59:da:00:ce:a7:ed:ec:e5:ba:ae:46:18:cf:1c: b6:41:7b:d2:91:75:34:13:fa:78:07:5d:37:b7:62:46:50:8e: 31:d0:8a:76:c4:6f:85:de:fa:6e:8d:f4:83:bd:06:56:19:1b: e0:19:f8:27:27:8a:00:17:57:58:94:6b:fc:0f:4c:3d:10:83: 77:f4:76:c0:da:b5:b2:91:ad:52:3f:39:6b:00:19:ec:94:4e: ff:0a:95:0e:a5:49:0c:12:d7:db:a9:fd:f3:70:c6:46:2d:30: 88:b7:df:18:0c:10:44:b4:07:c7:ff:20:63:bd:aa:23:c6:65: 65:e1:91:48:c2:1d:d6:88:3f:c0:f9:33:12:23:bd:bc:67:5c: d7:61:6e:55:fa:d9:4e:2d:f2:a6:38:4d:3c:70:73:ab:91:2a: d0:1f:fb:0c:da:94:d3:21:8b:70:89:12:a0:68:e2:b0:45:a7: 19:7d:ea:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjYwNjE3MDUwODEyWhcNMjYwNjI0MDUwODEyWjAYMRYwFAYD VQQDEw02YTMyMmJiYy0wZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWn+aYOS9BPsnAjfYriQ11kIsnyIDFRvWLkM2HERP5jGzVMqVOyHhtSExgYJ wsCoZKdg8OZ7W6HBNrN7f+R6Oyo3nHUWks1RngdAPBozFi5NZ721jQA9+fnujtNB mA2Oft5BK1rELpzY42HVHoS3zGqzHEjO0XTKNyRUSr7CCWVGBYXsnMOlp8CTfpzF 2KKnaeu++EI/JItBY3sMOAD+Efbreaqe9HY/zXySADGghebPrdWan0QBBXIPGy45 0i5wofTB178Kz7IRzzccuI486jGaMkxjSK6yRxojqrYhsH2uQz78rI0TWB2hIjrG 6xZrW4cbca6m/jtce5+VdAaktwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKdcNtTI qfhQog7nR57d86+0Ri0UMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzzbKpY7+nShfvkbq5FPyhXZXvmUKxwYCG9YxSLtNdkCgNGn/W8Pw60Xvm55P T9K3pkz46OtS36yfCK78/Hn/WXi47jIWyL6WRwQgAlnaAM6n7ezluq5GGM8ctkF7 0pF1NBP6eAddN7diRlCOMdCKdsRvhd76bo30g70GVhkb4Bn4JyeKABdXWJRr/A9M PRCDd/R2wNq1spGtUj85awAZ7JRO/wqVDqVJDBLX26n983DGRi0wiLffGAwQRLQH x/8gY72qI8ZlZeGRSMId1og/wPkzEiO9vGdc12FuVfrZTi3ypjhNPHBzq5Eq0B/7 DNqU0yGLcIkSoGjisEWnGX3qCA== -----END CERTIFICATE-----Generated at Wed Jun 17 16:52:06 2026 by rpki-client