$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: hBuTVGdzHmnvtLSI4Z9+tsLrgtQJVk3ckIA3K1r6sEc= Subject key identifier: A9:B6:11:91:DC:3D:0E:39:C3:6D:39:21:25:60:32:0C:F0:E6:28:5C Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1CB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1CA3 Signing time: Fri 12 Jun 2026 16:08:14 +0000 Manifest this update: Fri 12 Jun 2026 16:08:14 +0000 Manifest next update: Fri 19 Jun 2026 16:08:14 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: Jba4+gyTtnDShGy9AejQKrU9biQF7/EBVjjHtptuAUI=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: Mltlh2bx7WYK1xzaK+H07Yqp+mKuF+w3gv8nIlWhSn8=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: GM2/Zg+eI19YNP6sUwovNgmANsfWwnnAjBpybeU+09Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7353 (0x1cb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Jun 12 16:08:14 2026 GMT Not After : Jun 19 16:08:14 2026 GMT Subject: CN=6a2c2eee-03ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:41:50:bb:49:f6:f1:f7:13:66:f7:93:6d:d1: e3:0d:f7:48:e6:a7:8d:06:6c:9d:16:6a:7f:71:e1: 2f:05:b8:de:97:52:32:b1:27:f9:22:3f:69:8e:f7: ec:6b:1f:cc:39:d2:d0:b4:08:48:78:fb:b4:3d:c6: 3a:00:78:3a:08:d4:0c:6d:04:9b:a2:fe:e5:12:28: 58:c8:89:7c:5c:6d:53:2d:19:5f:02:93:b6:93:e2: bf:7d:4f:81:09:a3:37:cc:6a:dc:74:39:64:4b:3b: 67:64:e2:33:11:e6:c1:1d:4b:7e:9a:71:14:80:80: 7f:c4:5c:68:d4:9b:05:8c:a4:a0:88:03:71:ef:4f: 44:c4:24:27:59:92:86:8d:a5:1f:ee:8b:81:37:83: c1:d5:b5:aa:bf:ea:da:6f:a7:1e:70:22:53:d9:17: 6d:61:67:08:7d:08:15:1b:4b:c4:c2:c8:69:d9:81: ae:9d:e7:ea:2e:e5:d0:f4:5d:80:a2:8b:d9:57:30: ca:d4:ff:5e:9e:4d:e2:91:41:17:b8:e4:00:38:d0: ae:4d:12:a4:7a:76:45:e6:a7:96:0a:8c:8b:07:09: ae:bb:76:53:27:63:e5:37:c6:d5:87:f9:1f:52:a2: 63:3c:79:ee:0f:ec:ff:5d:13:e5:59:da:6c:dd:c0: fd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B6:11:91:DC:3D:0E:39:C3:6D:39:21:25:60:32:0C:F0:E6:28:5C X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0e:28:cf:4c:0f:a2:9e:b7:5e:af:85:7e:1f:0c:78:70:1e: 19:0d:ba:bf:af:10:18:3a:45:1f:8b:af:6b:2b:e8:2e:40:49: 16:5d:46:ff:1f:eb:ca:c4:8e:55:c0:f1:47:d7:31:9b:1e:07: 4d:92:d9:6c:87:5d:17:02:c3:d3:5d:0e:1c:28:36:eb:a9:77: d7:0c:b4:52:6a:ae:da:4f:f2:05:83:4a:88:3b:ef:ed:c7:d2: 40:ce:df:0a:47:c5:17:81:c9:8b:6a:98:48:16:32:4f:5c:06: 9f:19:99:4b:6a:fc:f7:92:ff:4a:4f:90:eb:29:c1:07:cc:87: 4f:a6:8f:dd:3d:80:88:24:f2:ba:1a:91:29:fb:b1:99:4e:40: 69:f1:fb:c0:2f:9f:15:ee:b6:cc:ac:90:c7:43:90:61:50:71: 33:b4:7f:49:cc:29:d7:72:16:e0:e4:6a:0d:9a:94:62:3c:95: 35:aa:85:55:00:12:92:a5:7f:7e:3b:69:1c:4c:02:74:a6:a1: 9f:cf:0d:67:c6:22:82:0a:df:e1:14:23:89:50:d1:06:d3:e5: 16:0e:90:62:85:ab:94:7c:8b:7c:96:57:0d:7b:87:11:59:c2: 93:f4:85:34:b8:08:3e:9e:b0:87:53:1e:cc:e9:c0:28:bf:48: 63:cc:61:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwNjEyMTYwODE0WhcNMjYwNjE5MTYwODE0WjAYMRYwFAYD VQQDEw02YTJjMmVlZS0wM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUFQu0n28fcTZveTbdHjDfdI5qeNBmydFmp/ceEvBbjel1IysSf5Ij9pjvfs ax/MOdLQtAhIePu0PcY6AHg6CNQMbQSbov7lEihYyIl8XG1TLRlfApO2k+K/fU+B CaM3zGrcdDlkSztnZOIzEebBHUt+mnEUgIB/xFxo1JsFjKSgiANx709ExCQnWZKG jaUf7ouBN4PB1bWqv+rab6cecCJT2RdtYWcIfQgVG0vEwshp2YGunefqLuXQ9F2A oovZVzDK1P9enk3ikUEXuOQAONCuTRKkenZF5qeWCoyLBwmuu3ZTJ2PlN8bVh/kf UqJjPHnuD+z/XRPlWdps3cD9jwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKm2EZHc PQ45w205ISVgMgzw5ihcMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJA4oz0wPop63Xq+Ffh8MeHAeGQ26v68QGDpFH4uvayvoLkBJFl1G/x/rysSO VcDxR9cxmx4HTZLZbIddFwLD010OHCg266l31wy0Umqu2k/yBYNKiDvv7cfSQM7f CkfFF4HJi2qYSBYyT1wGnxmZS2r895L/Sk+Q6ynBB8yHT6aP3T2AiCTyuhqRKfux mU5AafH7wC+fFe62zKyQx0OQYVBxM7R/Scwp13IW4ORqDZqUYjyVNaqFVQASkqV/ fjtpHEwCdKahn88NZ8Yiggrf4RQjiVDRBtPlFg6QYoWrlHyLfJZXDXuHEVnCk/SF NLgIPp6wh1MezOnAKL9IY8xhWA== -----END CERTIFICATE-----Generated at Sat Jun 13 20:39:08 2026 by rpki-client