$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft File: UZQtJe28pR36Vs4J7TYet6JtvSU.mft (raw, json) Hash identifier: C/5oK6HpYeGjwLsPVrygTL4pM4LTgMZ2KWJLeal8Geo= Subject key identifier: DA:1B:77:9A:11:BB:B3:A8:5E:87:F1:06:AC:9D:1B:8B:7C:68:C2:E8 Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 0A55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft Manifest number: 0A10 Signing time: Mon 22 Jun 2026 19:57:19 +0000 Manifest this update: Mon 22 Jun 2026 19:57:19 +0000 Manifest next update: Mon 29 Jun 2026 19:57:19 +0000 Files and hashes: 1: UZQtJe28pR36Vs4J7TYet6JtvSU.crl (hash: GjNQYpJ3EfTkAft0eDT7ivGvt8JO4N99fDC2F4wyrSE=) 2: 4729B9CC10B011F19AF5FC353C3D8C67.roa (hash: XieuBOApj93vMX/PSd4DPB5YCJHLqVArIOgws7wb0zA=) 3: C1D6AD981EA111F1B2DD47B2123D8C67.roa (hash: t7Va3DBJIf7NqIYUpRn9OjFokUb0h7zcGhor8Wmv+E4=) 4: A837ACBA072311F1857499832B3D8C67.roa (hash: kLIQMU/1+OWEQ00tXB9bahteZuevt4BTHzYh2B2K2I0=) 5: E2891A621EA111F1917EDCD9123D8C67.roa (hash: gEX8Atz/LLQf1n/y8rRUMSuwdmjVhyMahE2Jamzx/nI=) 6: A476C8C41EA011F187B67505113D8C67.roa (hash: W8WqvCmfqjbYm/Nsa9FcNN92lO+HROWGL8GeAXxnfuk=) 7: C37BD92A1EA111F1B2DD47B2123D8C67.roa (hash: ATlrZQLMN1i/u5Bq0wuL1/pAApfhNtO3TRUif4rFqr0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 19:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2645 (0xa55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4, serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: Jun 22 19:57:19 2026 GMT Not After : Jun 29 19:57:19 2026 GMT Subject: CN=6a39939f-167b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:72:be:d4:61:ae:c5:11:54:5c:db:58:5a: 1c:19:af:ff:26:74:3f:5f:cb:7f:1c:56:b1:66:ec: c9:e3:47:86:01:4d:bc:fc:26:1a:30:7e:7f:3f:06: cb:1b:e1:7c:e0:f1:10:7d:ce:d7:69:5f:ca:04:10: c4:83:04:aa:bb:4d:61:53:c8:fe:81:6b:15:8b:f6: b0:28:0d:7f:70:2d:dc:ff:7d:da:f1:d6:d3:b2:ac: 8a:45:7e:b2:1e:10:f5:cd:cd:b8:72:18:0e:90:c7: dd:a9:a8:48:6c:4f:dd:b5:48:35:fd:65:c1:c0:73: e2:b9:48:38:f4:15:16:07:06:79:72:30:d4:b3:46: a6:89:98:97:7a:ff:f8:e2:74:e5:39:f1:4f:7f:c6: bc:27:44:f3:ab:26:02:0a:80:23:a6:9d:e8:d0:dd: 8c:4a:4d:a3:08:dc:18:ea:96:ee:42:58:b1:f2:5f: c6:5e:84:2d:8c:a2:5e:23:b1:2d:09:08:57:e8:c6: 4b:ce:3b:c0:70:bf:d3:70:7d:92:c0:ed:f7:2a:46: e1:47:7c:bf:9b:36:80:05:da:20:62:28:5c:9f:68: 8f:c1:6b:af:51:c9:55:b1:b8:51:23:ba:ba:76:e6: 39:0a:0f:0d:02:9a:ac:0e:62:4a:f5:4e:76:bc:df: 39:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1B:77:9A:11:BB:B3:A8:5E:87:F1:06:AC:9D:1B:8B:7C:68:C2:E8 X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a9:98:e3:eb:d9:bc:36:48:d2:ee:a5:34:cc:33:2a:4f:01: 9f:67:c3:d1:56:67:2f:28:d2:84:d4:df:42:36:9f:20:9b:94: 88:26:23:b7:67:c4:a9:5b:cc:8c:b8:b4:32:f1:4f:19:39:56: c5:de:29:95:3b:d9:90:b3:80:7a:3a:e6:7f:c3:ef:9b:1a:16: f5:9b:b7:db:e9:a4:a2:1c:be:ea:e9:60:e7:f0:1d:d9:b6:5d: 47:98:17:62:78:56:b3:f3:3d:4b:8e:17:41:9c:20:00:6f:95: 56:3a:6b:81:bc:b3:08:76:ae:3b:a9:8c:f8:42:5e:01:65:c9: 02:b7:27:32:68:7a:8c:bf:c6:2e:cf:47:e3:34:de:5c:ec:b0: a4:dd:1e:06:98:51:ef:ec:cd:93:27:16:ec:4e:11:b0:42:40: b4:a6:77:b3:26:ee:93:a6:e0:61:4f:d3:6e:67:d4:16:c9:17: f6:50:00:68:95:f5:7f:d7:32:22:29:6d:a5:09:85:d4:b2:dc: 30:ee:24:ee:bd:a5:92:0e:0d:f4:a0:21:28:70:b4:8e:57:b8: 9b:9e:32:61:99:00:a7:f4:13:cc:dd:1e:f8:e2:96:ed:e2:0a: 14:d4:9e:97:40:88:ab:03:51:29:84:f8:f5:ed:20:12:28:bf: 5d:30:a0:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjYwNjIyMTk1NzE5WhcNMjYwNjI5MTk1NzE5WjAYMRYwFAYD VQQDEw02YTM5OTM5Zi0xNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxolyvtRhrsURVFzbWFocGa//JnQ/X8t/HFaxZuzJ40eGAU28/CYaMH5/PwbL G+F84PEQfc7XaV/KBBDEgwSqu01hU8j+gWsVi/awKA1/cC3c/33a8dbTsqyKRX6y HhD1zc24chgOkMfdqahIbE/dtUg1/WXBwHPiuUg49BUWBwZ5cjDUs0amiZiXev/4 4nTlOfFPf8a8J0TzqyYCCoAjpp3o0N2MSk2jCNwY6pbuQlix8l/GXoQtjKJeI7Et CQhX6MZLzjvAcL/TcH2SwO33KkbhR3y/mzaABdogYihcn2iPwWuvUclVsbhRI7q6 duY5Cg8NApqsDmJK9U52vN85NQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNobd5oR u7OoXofxBqydG4t8aMLoMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUZBNC9CNjc4NjJGQUFCOTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBS MzZWczRKN1RZZXQ2SnR2U1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgqmY4+vZvDZI0u6lNMwzKk8Bn2fD0VZnLyjShNTfQjafIJuUiCYjt2fEqVvM jLi0MvFPGTlWxd4plTvZkLOAejrmf8PvmxoW9Zu32+mkohy+6ulg5/Ad2bZdR5gX YnhWs/M9S44XQZwgAG+VVjprgbyzCHauO6mM+EJeAWXJArcnMmh6jL/GLs9H4zTe XOywpN0eBphR7+zNkycW7E4RsEJAtKZ3sybuk6bgYU/TbmfUFskX9lAAaJX1f9cy IiltpQmF1LLcMO4k7r2lkg4N9KAhKHC0jle4m54yYZkAp/QTzN0e+OKW7eIKFNSe l0CIqwNRKYT49e0gEii/XTCgbw== -----END CERTIFICATE-----Generated at Wed Jun 24 15:09:08 2026 by rpki-client