$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: 0a9REoqtqvIKK8+SRiHles6s/+KSE7/x+/+0A/3J1a0= Subject key identifier: AF:07:F3:56:F1:92:D7:33:76:1B:12:EB:6B:3F:51:4B:95:4B:CE:36 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 13F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 13E8 Signing time: Mon 22 Jun 2026 16:54:06 +0000 Manifest this update: Mon 22 Jun 2026 16:54:05 +0000 Manifest next update: Mon 29 Jun 2026 16:54:05 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: PkF7Qse9+6EuqpYllwE693vPUC/JRycfl/iM6mgLHa8=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: RPjXeL3Zl8P6QkaRaUeCd76+wyQHC30Y9Dr1jaF8lPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 16:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5107 (0x13f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Jun 22 16:54:05 2026 GMT Not After : Jun 29 16:54:05 2026 GMT Subject: CN=6a3968ae-93d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:34:f3:7a:b4:59:c3:29:77:c0:a1:34:39:f9: fc:90:72:d8:dd:f5:52:6d:30:0e:e9:5c:c2:a0:22: e9:65:d3:5a:df:da:45:03:01:e0:68:2d:e9:2b:41: 2b:ce:e1:61:e7:70:2d:38:39:5b:7f:50:79:b1:50: 00:fc:86:2c:44:6f:cf:a6:0d:04:88:c3:7e:28:3c: 36:d8:df:2b:f4:9b:34:ee:21:ef:f2:95:3e:5d:b6: 0d:c3:ee:ef:87:89:22:b6:bf:c2:92:54:bd:0f:43: b5:23:68:e0:29:97:87:e6:52:60:f0:1f:c0:eb:20: df:58:3c:21:cd:c6:63:9c:e3:88:73:b6:04:12:c1: 76:fc:29:be:af:a2:7c:9f:4e:ff:ac:84:56:ad:f8: 80:a4:24:ca:9c:c8:c0:81:c2:c4:7a:fe:e0:6d:b0: 40:a5:bd:e8:b6:8d:6c:9a:ae:33:22:c0:b2:1b:b1: 60:9a:35:b5:a8:75:7d:e5:a0:9f:b3:27:ef:84:4c: cb:47:fa:ba:48:50:58:f8:4c:a4:46:d4:52:d5:c3: aa:d3:ba:62:96:64:7a:58:87:13:47:49:e6:25:43: 0d:5a:2c:2c:cb:74:02:47:8a:58:ea:d8:ab:ea:58: 35:74:6e:4f:88:75:ff:3d:02:66:5c:b7:9d:c3:64: 65:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:07:F3:56:F1:92:D7:33:76:1B:12:EB:6B:3F:51:4B:95:4B:CE:36 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:eb:d2:b5:01:92:c7:d0:22:68:80:c6:93:4b:99:91:32:ba: e0:c7:0a:b5:58:26:b5:bc:ae:7b:43:81:0d:27:5e:42:b9:76: a7:13:7b:08:a8:a0:83:c6:da:c4:9c:8c:d0:2e:06:14:20:ea: d1:69:d4:3d:10:e0:58:93:29:01:6c:44:01:28:e5:e3:0c:10: 8a:6f:f6:79:a1:ae:82:cf:2f:1e:b7:3e:e8:93:28:73:27:63: d9:a5:a7:44:94:83:c9:36:81:ec:97:80:5b:9f:a8:12:cc:5e: e9:68:bc:51:c8:eb:57:ff:b5:fe:c9:97:08:1d:cd:fb:b0:04: 2f:6d:41:da:68:92:7f:df:a6:d4:d1:5b:39:03:f5:fa:9c:41: cf:66:32:45:e8:da:f3:95:f6:52:e1:0d:37:4f:d1:ac:1c:e5: a1:50:72:4f:1b:6f:03:4b:03:8c:e1:cf:f7:13:1c:b0:2b:e6: 6f:b7:80:d4:56:f7:72:8d:62:0b:93:2d:0e:40:d4:b9:f3:e6: a8:73:d4:51:e0:63:35:a2:9a:b8:cb:89:d1:5e:33:c8:0b:00: 7b:98:cb:66:12:36:27:90:99:88:f3:01:e1:df:dd:4f:dd:c6: f0:3a:34:9a:b9:27:e2:5d:37:5c:3d:73:9c:9f:00:8a:9d:e4: 08:9d:7f:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjYwNjIyMTY1NDA1WhcNMjYwNjI5MTY1NDA1WjAYMRYwFAYD VQQDEw02YTM5NjhhZS05M2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DTzerRZwyl3wKE0Ofn8kHLY3fVSbTAO6VzCoCLpZdNa39pFAwHgaC3pK0Er zuFh53AtODlbf1B5sVAA/IYsRG/Ppg0EiMN+KDw22N8r9Js07iHv8pU+XbYNw+7v h4kitr/CklS9D0O1I2jgKZeH5lJg8B/A6yDfWDwhzcZjnOOIc7YEEsF2/Cm+r6J8 n07/rIRWrfiApCTKnMjAgcLEev7gbbBApb3oto1smq4zIsCyG7FgmjW1qHV95aCf syfvhEzLR/q6SFBY+EykRtRS1cOq07pilmR6WIcTR0nmJUMNWiwsy3QCR4pY6tir 6lg1dG5PiHX/PQJmXLedw2Rl7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8H81bx ktczdhsS62s/UUuVS842MB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwOvStQGSx9AiaIDGk0uZkTK64McKtVgmtbyue0OBDSdeQrl2pxN7CKigg8ba xJyM0C4GFCDq0WnUPRDgWJMpAWxEASjl4wwQim/2eaGugs8vHrc+6JMocydj2aWn RJSDyTaB7JeAW5+oEsxe6Wi8UcjrV/+1/smXCB3N+7AEL21B2miSf9+m1NFbOQP1 +pxBz2YyReja85X2UuENN0/RrBzloVByTxtvA0sDjOHP9xMcsCvmb7eA1Fb3co1i C5MtDkDUufPmqHPUUeBjNaKauMuJ0V4zyAsAe5jLZhI2J5CZiPMB4d/dT93G8Do0 mrkn4l03XD1znJ8Aip3kCJ1/+A== -----END CERTIFICATE-----Generated at Wed Jun 24 11:30:38 2026 by rpki-client