$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft File: N3hUTiRpVIvwm1Td2APX19kPfmI.mft (raw, json) Hash identifier: iSnmb0NA6NSecL2eZV/eNTOWp/KZGLLA8zQaUAyPvDE= Subject key identifier: 8A:E6:4D:77:27:34:A5:61:2A:76:47:87:DD:99:A7:ED:5A:87:0E:C6 Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft Manifest number: 01A4 Signing time: Sat 13 Jun 2026 04:08:50 +0000 Manifest this update: Sat 13 Jun 2026 04:08:50 +0000 Manifest next update: Sat 20 Jun 2026 04:08:50 +0000 Files and hashes: 1: N3hUTiRpVIvwm1Td2APX19kPfmI.crl (hash: e0aXC5cXZ8KnkgrYGTE/6VD80xEfbddHwTB4oSh0kYs=) 2: 1DDBD99AE1F211EEA360BE22C4F9AE02.roa (hash: 3aW6iUfzl0/knCHDbhr8nHXiBRl438L8ymDj1Nh8POQ=) 3: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (hash: F81eopWit+WRjVvoNj/Syi/UxhKzo8TJfRsuymHvyyE=) 4: 1EC90968E1F211EEA360BE22C4F9AE02.roa (hash: iGZLHjG2VueAdzLMDEEY/wlps2bNluNoPm25aV0tYgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA, serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Jun 13 04:08:50 2026 GMT Not After : Jun 20 04:08:50 2026 GMT Subject: CN=6a2cd7d2-bca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d6:1c:c0:81:6f:0c:1c:59:42:b6:ac:77:8c: 5f:4b:e8:48:f9:c9:20:0f:6e:68:22:34:1b:d0:72: 65:5f:47:4f:5a:53:8b:cf:f7:34:10:94:16:16:ff: e8:ed:cf:46:93:8d:41:97:15:4b:0e:0c:02:ea:3a: c1:f1:7b:07:5d:73:2a:22:0d:39:2d:01:5f:cd:25: bd:79:75:47:80:1e:12:19:15:0b:5b:40:23:b4:21: 0d:e9:2b:00:bb:af:de:f0:98:a6:66:96:bf:34:8c: 3f:ab:73:5b:26:40:40:6b:e5:6b:57:76:f7:97:c6: 12:7e:eb:e0:fb:cb:e5:9a:07:73:bc:f3:dc:3a:5d: e8:ad:7c:a5:db:38:31:6b:83:10:ac:90:33:90:a3: a4:ad:ba:52:4b:1a:b1:24:91:c0:98:f6:6a:54:8c: 0d:b4:4b:f3:37:26:40:16:d7:d0:d7:59:39:f3:b1: 81:03:80:8a:e5:f4:f9:a3:97:e0:51:27:1d:0d:2f: f8:5b:c3:48:63:f6:2b:43:3e:60:fb:3a:73:e0:19: 1b:4b:55:97:7c:17:84:a5:d4:10:f1:89:c1:7e:1f: 31:30:8c:e9:20:c0:0a:77:bf:85:5d:84:63:20:46: 6b:e8:78:e5:4e:04:e1:4c:58:b1:69:33:6c:50:25: 9d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E6:4D:77:27:34:A5:61:2A:76:47:87:DD:99:A7:ED:5A:87:0E:C6 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:1b:81:5a:36:9a:2a:79:ce:e0:1a:88:06:48:14:22:98:ac: b9:c9:8c:b3:ea:48:0a:ec:4e:ee:c6:f9:ed:a0:50:b1:14:60: b2:5d:e0:87:87:54:87:9e:cf:d4:2f:13:60:a0:e7:6d:29:68: 6e:34:b3:94:f9:61:b5:5a:37:0d:e4:b1:b1:40:b5:bb:e1:da: 35:d4:f5:05:e1:e6:6a:71:df:4a:29:e3:5a:0d:72:b8:fe:00: 2e:f0:86:ea:b5:64:c8:cc:2d:6e:ab:e9:54:a7:c5:79:28:e5: 60:1c:21:41:01:cb:6a:ee:e5:da:e3:d6:67:77:53:f6:36:2a: d7:ff:7d:d9:42:c1:22:b0:8f:a2:a8:ac:b6:b6:01:87:7a:78: da:b4:14:35:8d:0a:7c:eb:4d:c8:95:56:af:fd:cb:88:13:bf: 26:48:85:10:b6:1a:24:2e:5d:f5:a0:bb:cd:8f:05:61:4b:2a: 36:4d:2d:5d:53:db:ab:ba:3b:1f:b7:1d:c9:ba:0d:02:96:61: e1:b6:d8:e8:6c:57:c7:f7:76:5d:4b:6f:c5:e6:9a:3f:df:ef: e0:2b:7b:01:aa:03:b2:5e:59:1c:f6:b2:f4:cd:3c:3c:26:ea: f0:56:54:28:30:8f:9b:56:d4:ff:cb:85:58:7d:57:ed:c4:99: d6:95:b3:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjYwNjEzMDQwODUwWhcNMjYwNjIwMDQwODUwWjAYMRYwFAYD VQQDEw02YTJjZDdkMi1iY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNYcwIFvDBxZQrasd4xfS+hI+ckgD25oIjQb0HJlX0dPWlOLz/c0EJQWFv/o 7c9Gk41BlxVLDgwC6jrB8XsHXXMqIg05LQFfzSW9eXVHgB4SGRULW0AjtCEN6SsA u6/e8JimZpa/NIw/q3NbJkBAa+VrV3b3l8YSfuvg+8vlmgdzvPPcOl3orXyl2zgx a4MQrJAzkKOkrbpSSxqxJJHAmPZqVIwNtEvzNyZAFtfQ11k587GBA4CK5fT5o5fg UScdDS/4W8NIY/YrQz5g+zpz4BkbS1WXfBeEpdQQ8YnBfh8xMIzpIMAKd7+FXYRj IEZr6HjlTgThTFixaTNsUCWdDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIrmTXcn NKVhKnZHh92Zp+1ahw7GMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJ dndtMVRkMkFQWDE5a1BmbUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPBuBWjaaKnnO4BqIBkgUIpisucmMs+pICuxO7sb57aBQsRRgsl3gh4dUh57P 1C8TYKDnbSlobjSzlPlhtVo3DeSxsUC1u+HaNdT1BeHmanHfSinjWg1yuP4ALvCG 6rVkyMwtbqvpVKfFeSjlYBwhQQHLau7l2uPWZ3dT9jYq1/992ULBIrCPoqistrYB h3p42rQUNY0KfOtNyJVWr/3LiBO/JkiFELYaJC5d9aC7zY8FYUsqNk0tXVPbq7o7 H7cdyboNApZh4bbY6GxXx/d2XUtvxeaaP9/v4Ct7AaoDsl5ZHPay9M08PCbq8FZU KDCPm1bU/8uFWH1X7cSZ1pWzRQ== -----END CERTIFICATE-----Generated at Sat Jun 13 09:35:07 2026 by rpki-client