$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: mixE6Nq+Q+eV4zoLEGw/4rKdMP8RxZ9uVrBrxtMkmpo= Subject key identifier: 13:2F:5A:01:3A:8A:E3:4F:F4:7D:65:AE:B3:DC:BD:FA:9A:C7:2A:6A Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 015D Signing time: Wed 17 Jun 2026 05:07:19 +0000 Manifest this update: Wed 17 Jun 2026 05:07:18 +0000 Manifest next update: Wed 24 Jun 2026 05:07:18 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: +tqHQn4Latgqo0a3MY9fxhxCIOsPqDwnHZEpwLO2ohk=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: jP6TZWwRFPY1LK/E2kOV63Xfi0StNXGzAgbQFJN0A6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Jun 17 05:07:18 2026 GMT Not After : Jun 24 05:07:18 2026 GMT Subject: CN=6a322b86-a868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9d:3a:4f:bd:1c:d5:e1:57:0f:a0:11:39:09: 4d:3a:34:a5:3f:f3:f3:41:2b:0f:eb:52:52:35:d3: 44:79:38:10:bf:6c:7c:f9:b8:e3:a1:c2:b2:48:48: 04:57:c4:ee:96:fc:c9:3c:44:97:a4:66:71:17:27: a2:04:77:88:e4:67:66:96:94:52:6f:a9:cc:e2:0b: ac:d7:2d:40:40:34:a1:47:65:48:11:a0:aa:97:ff: 4c:ed:14:19:9e:b4:79:f5:94:ef:0b:f7:cc:51:ed: c8:20:18:02:3a:5c:a3:ed:2c:29:89:bb:f9:50:a5: b7:1f:6a:e3:01:36:5d:96:9f:8b:6e:fb:ad:ec:60: d9:78:2f:9f:2f:b5:2f:ac:99:b4:5e:18:3d:74:31: e3:b1:48:98:92:89:7e:cc:15:4f:5c:43:80:a3:bf: a2:0d:2e:bf:15:d2:ee:55:32:28:4d:19:11:65:5b: ff:32:db:a0:8e:34:1f:dc:ee:21:37:af:8f:d4:e6: 78:63:95:24:ea:d3:0c:9b:80:fd:65:e7:fa:98:a9: ca:e2:9e:19:65:54:eb:97:57:70:6e:43:7a:83:60: d8:44:96:00:a3:4e:7e:b3:e0:b4:db:bc:7d:43:98: 57:14:d8:97:9c:6d:11:0c:ad:f2:64:c2:e6:a4:74: be:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2F:5A:01:3A:8A:E3:4F:F4:7D:65:AE:B3:DC:BD:FA:9A:C7:2A:6A X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b2:a8:d1:a5:0b:7b:37:37:c5:15:b8:7f:17:c5:48:a1:66: 62:d7:6a:48:50:8b:68:c8:ca:02:c6:4b:07:6d:a5:19:9a:e9: 1f:08:98:be:34:38:cf:b4:cf:f5:05:66:b2:5e:73:64:7e:cc: c3:84:a9:12:4b:aa:4d:57:2a:40:83:c9:fb:ad:f6:fa:49:a3: 0b:a6:91:8e:ce:72:ca:f8:1a:e2:9f:1a:cb:ee:2a:54:b1:03: e5:fa:da:c7:1e:79:8f:1f:ea:52:3e:23:cd:34:c8:7b:10:8e: 10:b6:b1:9b:ac:50:37:ea:49:20:ba:df:c5:0b:bf:46:c0:28: 63:a8:3b:db:f2:dc:23:d7:be:a6:41:48:6b:d3:a3:7a:9d:5b: 73:c9:03:ad:7d:8b:c5:18:88:d1:be:c1:e6:31:92:60:1b:be: 41:7a:8d:58:c4:c3:33:0e:56:19:f9:cb:9b:e0:98:4f:df:06: b4:81:30:6e:9f:96:e5:f3:8e:f7:d2:66:43:a2:53:6d:e3:d5: 4c:64:4f:a9:56:2b:91:2a:ec:fc:77:29:bc:29:51:21:60:ce: 4b:61:5e:94:70:cd:ba:cf:51:e6:fa:54:6b:fe:23:59:36:bc: 1f:e1:69:68:44:17:29:04:a7:c9:c7:76:82:30:1f:a6:e5:26: cf:47:95:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjYwNjE3MDUwNzE4WhcNMjYwNjI0MDUwNzE4WjAYMRYwFAYD VQQDEw02YTMyMmI4Ni1hODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn506T70c1eFXD6AROQlNOjSlP/PzQSsP61JSNdNEeTgQv2x8+bjjocKySEgE V8TulvzJPESXpGZxFyeiBHeI5GdmlpRSb6nM4gus1y1AQDShR2VIEaCql/9M7RQZ nrR59ZTvC/fMUe3IIBgCOlyj7Swpibv5UKW3H2rjATZdlp+Lbvut7GDZeC+fL7Uv rJm0Xhg9dDHjsUiYkol+zBVPXEOAo7+iDS6/FdLuVTIoTRkRZVv/MtugjjQf3O4h N6+P1OZ4Y5Uk6tMMm4D9Zef6mKnK4p4ZZVTrl1dwbkN6g2DYRJYAo05+s+C027x9 Q5hXFNiXnG0RDK3yZMLmpHS+VQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBMvWgE6 iuNP9H1lrrPcvfqaxypqMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn7Ko0aULezc3xRW4fxfFSKFmYtdqSFCLaMjKAsZLB22lGZrpHwiYvjQ4z7TP 9QVmsl5zZH7Mw4SpEkuqTVcqQIPJ+632+kmjC6aRjs5yyvga4p8ay+4qVLED5fra xx55jx/qUj4jzTTIexCOELaxm6xQN+pJILrfxQu/RsAoY6g72/LcI9e+pkFIa9Oj ep1bc8kDrX2LxRiI0b7B5jGSYBu+QXqNWMTDMw5WGfnLm+CYT98GtIEwbp+W5fOO 99JmQ6JTbePVTGRPqVYrkSrs/HcpvClRIWDOS2FelHDNus9R5vpUa/4jWTa8H+Fp aEQXKQSnycd2gjAfpuUmz0eVJw== -----END CERTIFICATE-----Generated at Wed Jun 17 09:28:13 2026 by rpki-client