$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: Cd1+IEpXqRe33eolL3otixxAJtoeIa6kRdq07gHKw+k= Subject key identifier: 4A:0A:F1:BB:92:E2:BF:6B:05:33:44:6B:40:FB:1C:54:FC:D3:E9:ED Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 023C Signing time: Sat 13 Jun 2026 02:36:16 +0000 Manifest this update: Sat 13 Jun 2026 02:36:15 +0000 Manifest next update: Sat 20 Jun 2026 02:36:15 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: Fic5GUp+xICXbj6Xzec3QWRFDAw3JgSm4JKiawzzuqo=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: 4HF0DTPBSH5S3QjwkCb71T/4b+8A54VUugU3EtAjksc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Jun 13 02:36:15 2026 GMT Not After : Jun 20 02:36:15 2026 GMT Subject: CN=6a2cc220-c228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:a4:41:36:54:af:a8:36:c4:f7:60:35:0a: b9:5e:d7:ea:a7:a3:55:4b:0d:16:c2:34:ef:5e:0d: e8:9c:01:94:6c:c1:1e:18:a6:cf:f2:0c:32:eb:59: 10:61:c8:3a:ec:43:30:03:35:a6:68:b9:18:3d:6c: 6d:69:e4:8e:8d:5f:fc:51:54:3c:e3:84:27:95:8d: 05:db:d2:2b:d8:25:0e:1a:36:56:1a:4b:42:00:fc: 7d:65:2b:a6:3f:f9:d0:ec:22:e9:ee:52:f8:c7:30: 53:b3:b7:07:d7:00:81:a1:b4:d7:7c:53:44:a5:02: 65:ae:63:5f:97:e9:5a:5a:98:e3:43:1f:49:42:0f: c9:06:fc:7a:fe:2e:93:af:d0:01:48:3f:86:c4:43: 72:c9:14:34:57:09:ee:31:78:ff:48:38:cd:5a:c2: d5:0c:d5:55:07:be:e7:12:ed:77:88:c2:8e:80:4c: 98:e5:f1:ca:7f:0f:9a:27:7b:68:85:fd:80:ff:03: 18:95:df:57:90:24:ca:3d:97:c9:43:c7:ea:03:45: 05:07:5f:f1:e3:c7:bb:6a:c5:09:5b:7c:69:3e:fc: bf:22:8a:0a:71:83:9e:8c:dc:3a:74:63:59:08:72: 91:f4:2a:08:ee:9f:17:8a:e7:6e:d3:6f:bd:53:22: 32:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0A:F1:BB:92:E2:BF:6B:05:33:44:6B:40:FB:1C:54:FC:D3:E9:ED X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:74:32:1f:0a:09:1a:c5:fd:c4:e0:13:d2:97:54:05:ff:89: 8d:41:b9:95:32:62:38:16:8e:ab:59:d5:d8:69:83:d2:b4:6c: fe:81:28:bf:36:ac:be:99:47:af:a1:f7:d6:4a:cf:9c:80:85: 1f:3b:3e:7e:c3:3b:96:3c:2e:d1:a0:a1:85:48:a9:c1:b7:c9: 5e:b7:b1:84:ff:47:26:ae:bd:86:53:6b:03:df:50:c7:93:35: 8b:e0:67:47:eb:ec:85:aa:e6:b9:6d:76:ae:c4:57:a5:aa:f5: 0d:ab:b4:e0:f8:e9:4c:d2:5b:e6:41:c6:49:09:e5:8f:4f:98: e3:cb:8e:f2:f1:79:5a:16:e6:71:ff:7d:7f:5d:16:64:67:ef: 86:57:82:b8:56:f3:90:28:a7:76:be:c8:0b:cc:02:ca:e7:3a: 8a:b6:b6:e0:31:43:54:51:3f:03:20:26:5f:6f:6a:f1:7d:bd: 39:68:53:fd:8d:67:cc:8d:66:89:3d:c1:2a:d4:da:52:8a:34: 16:b0:70:6b:d7:92:56:3c:db:23:63:50:0d:58:15:20:21:a5: 08:58:66:e1:39:7c:51:10:04:7a:06:a0:38:16:86:bd:19:7a: 61:3b:41:b3:c9:5b:7e:76:61:6c:e3:59:3c:14:00:22:0a:3c: 96:2a:20:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjYwNjEzMDIzNjE1WhcNMjYwNjIwMDIzNjE1WjAYMRYwFAYD VQQDEw02YTJjYzIyMC1jMjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMukQTZUr6g2xPdgNQq5Xtfqp6NVSw0WwjTvXg3onAGUbMEeGKbP8gwy61kQ Ycg67EMwAzWmaLkYPWxtaeSOjV/8UVQ844QnlY0F29Ir2CUOGjZWGktCAPx9ZSum P/nQ7CLp7lL4xzBTs7cH1wCBobTXfFNEpQJlrmNfl+laWpjjQx9JQg/JBvx6/i6T r9ABSD+GxENyyRQ0VwnuMXj/SDjNWsLVDNVVB77nEu13iMKOgEyY5fHKfw+aJ3to hf2A/wMYld9XkCTKPZfJQ8fqA0UFB1/x48e7asUJW3xpPvy/IooKcYOejNw6dGNZ CHKR9CoI7p8Xiudu02+9UyIyzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEoK8buS 4r9rBTNEa0D7HFT80+ntMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB3QyHwoJGsX9xOAT0pdUBf+JjUG5lTJiOBaOq1nV2GmD0rRs/oEovzasvplH r6H31krPnICFHzs+fsM7ljwu0aChhUipwbfJXrexhP9HJq69hlNrA99Qx5M1i+Bn R+vsharmuW12rsRXpar1Dau04PjpTNJb5kHGSQnlj0+Y48uO8vF5Whbmcf99f10W ZGfvhleCuFbzkCindr7IC8wCyuc6ira24DFDVFE/AyAmX29q8X29OWhT/Y1nzI1m iT3BKtTaUoo0FrBwa9eSVjzbI2NQDVgVICGlCFhm4Tl8URAEegagOBaGvRl6YTtB s8lbfnZhbONZPBQAIgo8liogIA== -----END CERTIFICATE-----Generated at Sat Jun 13 16:01:54 2026 by rpki-client