$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: 9gGGpnsPWHD4aihc1wH4bTEldJgZUgTP0KMzOCuN50M= Subject key identifier: 66:5E:58:68:DD:1B:F2:3F:80:C6:64:2F:EA:38:23:95:45:60:DE:A1 Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: A9 Signing time: Mon 01 Jun 2026 08:04:41 +0000 Manifest this update: Mon 01 Jun 2026 08:04:41 +0000 Manifest next update: Mon 08 Jun 2026 08:04:41 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: MJBULI2JHn71QBuN6Y3DX/eT10n5j8DytrcnFEFBVHo=) 2: 8C538C5AEFCF11F0889DE39E746F56BC.roa (hash: eiSYQZ4JbJxsufS9RcJajhzup1MJX6NMX/+qc2RSIq8=) 3: 224FBC52EFCF11F0A018F59D746F56BC.roa (hash: l6zP7eAxKoViI6F3M9uDYfZY33CWARrIielkD1703l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 08:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Jun 1 08:04:41 2026 GMT Not After : Jun 8 08:04:41 2026 GMT Subject: CN=6a1d3d19-8333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:f2:57:d1:16:5c:eb:b1:40:51:4b:06:85:ae: 1e:b1:aa:56:94:36:6d:4a:fb:39:90:67:e0:ac:4c: 10:f7:6d:3a:a6:42:22:b3:97:4e:8d:c7:15:08:52: 03:f0:25:7c:48:6e:71:51:8c:85:23:60:ec:1e:4c: 4f:1b:21:c9:9a:0a:c5:27:8b:d6:6a:4f:c6:52:a6: 10:2b:c7:2c:62:5d:26:46:fd:fd:64:54:16:4e:a0: 2f:75:c1:16:4b:a3:ff:55:f9:7b:7d:73:5b:ac:dd: 3e:8b:33:72:01:37:7d:6c:32:2f:d5:f7:c9:70:d5: b1:1e:60:5a:33:7f:04:02:9e:33:65:7e:cc:7a:61: 73:b6:32:8d:b1:b1:88:2c:c8:6c:9c:55:42:49:13: 74:4f:07:2e:94:a3:27:e9:4d:8c:4d:06:6f:01:17: ee:d8:a7:19:0d:ba:95:9d:96:01:c4:4d:ac:d0:cd: fb:f6:eb:ca:4c:5d:75:46:48:e9:b3:17:54:fe:41: 11:a9:02:1c:1e:65:e9:a9:47:1d:81:e0:d3:ad:c3: a1:c6:35:55:5e:56:b9:b2:61:a7:c8:17:80:da:45: d5:8c:eb:da:6b:19:b3:3b:5d:e9:22:dc:a8:fe:00: 33:b4:12:e4:6d:04:8e:28:5e:fd:75:00:e3:be:b7: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:5E:58:68:DD:1B:F2:3F:80:C6:64:2F:EA:38:23:95:45:60:DE:A1 X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:39:c1:eb:27:87:1f:31:5e:c4:38:58:6e:55:8f:17:1b:c8: 2e:4f:ef:b6:45:91:85:9d:7d:04:e0:4e:0e:7b:20:88:7e:9d: d7:eb:2f:e1:6f:d1:55:61:b8:64:0e:d6:15:4c:0c:16:5d:f1: 3e:a8:dd:a4:21:d6:72:38:ea:33:03:f9:e8:7a:73:5c:24:22: 70:ce:b3:1d:2e:6f:26:4c:0f:fd:0e:81:28:97:a0:86:e8:8b: a2:bd:2c:00:60:63:62:90:d9:bc:1c:98:41:2f:7e:51:84:9d: 9f:5b:24:87:51:94:fd:cc:07:49:6f:44:b2:d4:88:9d:9d:3c: d0:37:4e:ae:ad:44:d9:76:57:1b:9e:c3:05:c1:ea:fe:d7:b1: ca:a9:d4:74:c7:3a:b2:d4:8b:ee:76:1e:dc:d4:29:29:38:8e: 14:e9:0b:73:f9:eb:d3:c3:2a:a5:e2:5c:06:2f:1f:52:e1:86: 24:c2:c2:20:d9:b0:50:d4:59:e3:62:94:54:92:7a:0e:77:14: a4:13:33:f8:21:68:3c:da:c3:76:ad:47:b1:5a:9d:5c:7f:1a: f4:ce:25:7a:a0:c9:cf:de:ce:c4:30:07:d7:ea:e5:12:79:ff: 3a:80:c4:a2:17:d9:8f:83:d6:28:10:9c:4f:16:6d:6d:a6:0f: 70:15:6e:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1QzMxMTAvBgNVBAUTKDlFQkRBMTIzRDlFRTgzMDk0MzA1QTExODBDMkEwODA1 N0ZFNTQwNkEwHhcNMjYwNjAxMDgwNDQxWhcNMjYwNjA4MDgwNDQxWjAYMRYwFAYD VQQDEw02YTFkM2QxOS04MzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj/JX0RZc67FAUUsGha4esapWlDZtSvs5kGfgrEwQ9206pkIis5dOjccVCFID 8CV8SG5xUYyFI2DsHkxPGyHJmgrFJ4vWak/GUqYQK8csYl0mRv39ZFQWTqAvdcEW S6P/Vfl7fXNbrN0+izNyATd9bDIv1ffJcNWxHmBaM38EAp4zZX7MemFztjKNsbGI LMhsnFVCSRN0TwculKMn6U2MTQZvARfu2KcZDbqVnZYBxE2s0M379uvKTF11Rkjp sxdU/kERqQIcHmXpqUcdgeDTrcOhxjVVXla5smGnyBeA2kXVjOvaaxmzO13pItyo /gAztBLkbQSOKF79dQDjvreliQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGZeWGjd G/I/gMZkL+o4I5VFYN6hMB8GA1UdIwQYMBaAFJ69oSPZ7oMJQwWhGAwqCAV/5UBq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjVDMy8yMzI2QzYzRTY2 MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3bERCYUVZRENvSUJYX2xR R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjVDMy8yMzI2QzYzRTY2MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3 bERCYUVZRENvSUJYX2xRR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOjnB6yeHHzFexDhYblWPFxvILk/vtkWRhZ19BOBODnsgiH6d1+sv4W/RVWG4 ZA7WFUwMFl3xPqjdpCHWcjjqMwP56HpzXCQicM6zHS5vJkwP/Q6BKJeghuiLor0s AGBjYpDZvByYQS9+UYSdn1skh1GU/cwHSW9EstSInZ080DdOrq1E2XZXG57DBcHq /texyqnUdMc6stSL7nYe3NQpKTiOFOkLc/nr08MqpeJcBi8fUuGGJMLCINmwUNRZ 42KUVJJ6DncUpBMz+CFoPNrDdq1HsVqdXH8a9M4leqDJz97OxDAH1+rlEnn/OoDE ohfZj4PWKBCcTxZtbaYPcBVuJg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:37 2026 by rpki-client