$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: zF/gg8juXeUGu6kOz1u5ufQ5XtWhtcALTBg6O+1+94Q= Subject key identifier: C7:FD:5F:27:BD:1F:2F:22:44:A5:3E:45:3E:80:52:6A:88:7A:AA:E0 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: E7 Signing time: Sat 13 Jun 2026 06:40:36 +0000 Manifest this update: Sat 13 Jun 2026 06:40:35 +0000 Manifest next update: Sat 20 Jun 2026 06:40:35 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: lfashQZlLCcZkT4AY/4Ai47nLqFNyxGIo7V0d+HiaMI=) 2: 938098BE5CFE11F18D5CD5949D833773.roa (hash: YvlCWf4B4N82K2Tsi4Q18rzepQF2VZtfQl38u6FADjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Jun 13 06:40:35 2026 GMT Not After : Jun 20 06:40:35 2026 GMT Subject: CN=6a2cfb63-2380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4b:80:44:67:d7:b1:c6:f1:04:21:6d:3d:7a: bc:be:58:e5:60:d9:33:88:a8:50:a4:35:10:c2:8c: 89:d9:c2:0d:fe:73:44:0f:70:66:78:77:a6:b6:ac: 6c:a9:c7:0a:0b:88:3a:d1:8d:b8:0e:b4:97:7c:03: 74:f7:7d:0c:dc:55:cc:13:80:f3:eb:49:6a:4a:d8: f9:4d:3f:b9:34:ff:9e:85:eb:7a:bf:60:2b:50:ac: 79:a0:00:de:ca:0b:d9:71:46:f6:3c:93:1c:a8:cc: 3d:cc:0d:33:1a:c5:bb:59:b7:fb:6a:e0:63:d7:2a: 04:9f:0c:87:6c:68:d6:2e:57:14:99:25:cc:23:96: bd:8b:f0:ed:7f:da:b6:73:f6:c5:fc:eb:7c:d3:5c: a9:77:0a:7c:9b:ef:4d:f1:a7:cf:fa:32:20:34:82: 30:f6:0c:93:c9:ba:b8:a3:bf:ac:75:7b:87:46:c5: 3b:86:4e:c1:74:25:7b:1f:ee:83:53:49:ae:df:1b: c2:1f:1a:1c:4e:15:6b:d2:5d:92:4e:f2:3b:22:58: 7d:c6:87:5b:98:43:f3:cf:94:ce:da:ed:1b:4c:81: 39:3b:7c:a8:cc:c0:3f:d8:db:30:cf:f3:87:14:d4: fc:cd:ce:7b:6b:bc:28:cb:d0:53:15:1f:a8:ff:ba: 5d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FD:5F:27:BD:1F:2F:22:44:A5:3E:45:3E:80:52:6A:88:7A:AA:E0 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b2:66:46:ff:78:7d:3b:a3:8f:36:0a:2a:28:84:fe:56:ce: f1:f2:ef:fd:07:f1:a3:0b:de:7b:50:f4:1b:8f:25:10:7f:b2: af:1b:e2:14:c3:5c:32:3d:a2:f9:65:57:6c:aa:22:e1:fd:d6: f0:e1:74:de:80:ce:2d:a0:5a:30:3a:1c:63:56:37:fb:0c:dd: 30:76:4e:1f:8b:4c:e8:b9:e0:7d:45:4e:40:a3:b9:00:3e:8b: 5d:20:48:f9:69:06:b0:e7:bb:5c:5c:37:10:53:b4:dd:a5:d2: 46:30:90:ab:48:d3:c4:91:e4:aa:2c:c0:25:7a:40:d1:0c:84: a9:9b:8b:cf:dc:44:cd:40:c9:df:41:0e:a2:71:9d:92:e5:fc: d0:83:68:0c:01:b5:f9:68:ae:8d:c2:6b:0f:61:ba:00:0d:db: 6c:77:07:79:3c:8d:0b:bf:94:53:e3:b3:77:81:fc:69:d1:21: 9d:b4:51:2c:4a:c5:28:12:0c:c6:8b:a4:58:75:78:09:3e:72: 86:e7:2f:86:13:e0:df:57:1c:00:8a:10:e6:a7:39:81:7f:be: ad:a0:2c:cc:64:be:a1:30:a9:39:96:61:62:c2:2b:eb:19:ac: ff:d7:43:3b:30:a3:b4:41:49:bb:00:66:59:d1:90:0c:65:bb: fc:29:d7:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjYwNjEzMDY0MDM1WhcNMjYwNjIwMDY0MDM1WjAYMRYwFAYD VQQDEw02YTJjZmI2My0yMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkuARGfXscbxBCFtPXq8vljlYNkziKhQpDUQwoyJ2cIN/nNED3BmeHemtqxs qccKC4g60Y24DrSXfAN0930M3FXME4Dz60lqStj5TT+5NP+ehet6v2ArUKx5oADe ygvZcUb2PJMcqMw9zA0zGsW7Wbf7auBj1yoEnwyHbGjWLlcUmSXMI5a9i/Dtf9q2 c/bF/Ot801ypdwp8m+9N8afP+jIgNIIw9gyTybq4o7+sdXuHRsU7hk7BdCV7H+6D U0mu3xvCHxocThVr0l2STvI7Ilh9xodbmEPzz5TO2u0bTIE5O3yozMA/2Nswz/OH FNT8zc57a7woy9BTFR+o/7pd/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMf9Xye9 Hy8iRKU+RT6AUmqIeqrgMB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdbJmRv94fTujjzYKKiiE/lbO8fLv/Qfxowvee1D0G48lEH+yrxviFMNcMj2i +WVXbKoi4f3W8OF03oDOLaBaMDocY1Y3+wzdMHZOH4tM6LngfUVOQKO5AD6LXSBI +WkGsOe7XFw3EFO03aXSRjCQq0jTxJHkqizAJXpA0QyEqZuLz9xEzUDJ30EOonGd kuX80INoDAG1+WiujcJrD2G6AA3bbHcHeTyNC7+UU+Ozd4H8adEhnbRRLErFKBIM xoukWHV4CT5yhucvhhPg31ccAIoQ5qc5gX++raAszGS+oTCpOZZhYsIr6xms/9dD OzCjtEFJuwBmWdGQDGW7/CnXvw== -----END CERTIFICATE-----Generated at Sun Jun 14 00:22:25 2026 by rpki-client