$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: 2j+cjlDhHLfktvQC9aMB0XJ0bFFZJo02cv/qUVLL4iI= Subject key identifier: 4C:47:BB:50:45:C1:46:53:E5:66:0C:87:18:D2:46:F8:01:92:14:67 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 355A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 3551 Signing time: Fri 12 Jun 2026 14:51:52 +0000 Manifest this update: Fri 12 Jun 2026 14:51:51 +0000 Manifest next update: Fri 19 Jun 2026 14:51:51 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: yoohdlL1Ihvactx9aTYjgC+Ox1RwfXdip/oGziDKx1w=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: obYL84rEidQqf3PGOj0TCR0aB0CKEWuDcGzuDXBidKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: Jun 12 14:51:51 2026 GMT Not After : Jun 19 14:51:51 2026 GMT Subject: CN=6a2c1d08-1359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:89:fd:f3:09:9b:60:25:85:81:e6:77:7a:8d: 6a:3b:fd:30:15:62:ae:d3:61:98:6b:ef:1a:9a:32: 39:b5:75:40:c8:50:29:97:a4:ec:48:47:49:b7:b7: 10:d5:51:e0:a2:65:38:96:68:aa:dd:67:96:e7:06: f3:6e:ef:7a:eb:8d:91:73:2e:9c:fa:47:cd:dc:e8: df:2d:53:ed:ff:1b:ae:bb:84:74:78:eb:89:78:6f: 14:11:05:95:56:3d:fd:e3:fc:10:f8:d6:29:90:76: 70:ef:c5:5f:c5:68:cc:78:6c:aa:7f:a1:74:78:3f: b9:86:64:9d:57:c4:d5:4b:af:ed:c7:4a:aa:58:5f: e8:c4:df:fa:80:ae:2e:a3:cf:43:e4:b6:00:17:b9: 4b:0d:96:b4:e9:62:88:61:8e:8d:35:71:52:5b:bd: 11:aa:f0:08:7c:f2:50:77:09:a4:9d:f2:59:27:54: 5d:ba:98:ae:9b:0d:e5:e7:0d:8f:c9:82:0e:01:84: 9e:3d:88:50:19:db:2f:ba:a8:e4:01:6c:16:d3:92: b1:46:f8:48:95:2d:4f:0a:fc:b2:ad:29:ff:c4:e9: c6:36:e7:87:46:17:19:60:a5:1b:02:0e:5d:fb:8d: 47:0c:fd:11:09:0a:0f:b6:e5:97:b0:bd:3e:3e:d9: 8c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:47:BB:50:45:C1:46:53:E5:66:0C:87:18:D2:46:F8:01:92:14:67 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:71:1f:ea:2f:3c:fe:e0:fb:af:2c:4f:65:01:ce:1b:42:90: 12:fa:39:51:7d:ce:cf:10:37:df:38:14:0a:3e:c2:90:9a:48: c8:a9:0c:c6:00:02:b2:03:c8:da:64:32:f9:4b:9f:bc:5c:27: 2a:5e:ed:0e:63:6d:96:7d:8a:3b:2f:01:7d:05:d2:23:9b:73: e5:a0:e0:c2:3e:b6:f6:9f:39:cd:33:8b:c1:39:25:1e:5c:6e: 2d:71:04:d7:24:1a:97:0b:52:f5:3c:05:cf:09:d0:aa:b7:10: cd:54:cb:28:7c:06:05:71:45:a8:b9:1d:b1:77:14:a0:a2:a7: 00:4f:e7:70:e2:fc:89:f0:c1:89:48:3f:fd:be:f1:a1:d8:53: 2a:de:c1:5d:d8:0b:40:6d:2a:c6:a2:90:75:54:2b:df:c0:24: 19:f9:cf:bd:90:07:c4:63:1b:6a:ec:a3:ed:b9:94:fd:dd:f4: 01:64:53:ae:e2:64:af:a1:ae:6b:45:d6:7d:ee:c0:45:10:41: 4a:68:dc:9b:53:8d:ab:a8:a8:b6:42:89:8f:0e:c6:05:87:53: 39:b1:6f:00:8b:23:4d:85:3a:c8:c6:22:c3:c9:5d:bd:65:8e: 47:61:a0:64:33:a3:f1:50:e3:03:47:4a:c6:b3:1f:8a:54:76: fa:1a:dd:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjYwNjEyMTQ1MTUxWhcNMjYwNjE5MTQ1MTUxWjAYMRYwFAYD VQQDEw02YTJjMWQwOC0xMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4n98wmbYCWFgeZ3eo1qO/0wFWKu02GYa+8amjI5tXVAyFApl6TsSEdJt7cQ 1VHgomU4lmiq3WeW5wbzbu96642Rcy6c+kfN3OjfLVPt/xuuu4R0eOuJeG8UEQWV Vj394/wQ+NYpkHZw78VfxWjMeGyqf6F0eD+5hmSdV8TVS6/tx0qqWF/oxN/6gK4u o89D5LYAF7lLDZa06WKIYY6NNXFSW70RqvAIfPJQdwmknfJZJ1Rdupiumw3l5w2P yYIOAYSePYhQGdsvuqjkAWwW05KxRvhIlS1PCvyyrSn/xOnGNueHRhcZYKUbAg5d +41HDP0RCQoPtuWXsL0+PtmMrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFExHu1BF wUZT5WYMhxjSRvgBkhRnMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvXEf6i88/uD7ryxPZQHOG0KQEvo5UX3OzxA33zgUCj7CkJpIyKkMxgACsgPI 2mQy+UufvFwnKl7tDmNtln2KOy8BfQXSI5tz5aDgwj629p85zTOLwTklHlxuLXEE 1yQalwtS9TwFzwnQqrcQzVTLKHwGBXFFqLkdsXcUoKKnAE/ncOL8ifDBiUg//b7x odhTKt7BXdgLQG0qxqKQdVQr38AkGfnPvZAHxGMbauyj7bmU/d30AWRTruJkr6Gu a0XWfe7ARRBBSmjcm1ONq6iotkKJjw7GBYdTObFvAIsjTYU6yMYiw8ldvWWOR2Gg ZDOj8VDjA0dKxrMfilR2+hrdcw== -----END CERTIFICATE-----Generated at Sun Jun 14 06:36:14 2026 by rpki-client