$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: iaQK8h2Nzl7VMFACPOiBFONFGBp48p4K6MkZgF2evC8= Subject key identifier: AA:C5:0D:69:D9:3A:48:75:D7:3B:9B:12:1A:B2:2A:A1:55:32:28:0A Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 0208 Signing time: Tue 23 Jun 2026 03:10:00 +0000 Manifest this update: Tue 23 Jun 2026 03:10:00 +0000 Manifest next update: Tue 30 Jun 2026 03:10:00 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: p5PpdM5grN3ix4EM+vHgSMFG2mYVaObBhdzLB2rYsyw=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: S78MAtCzOFeat+lwvfwXDyyxLQzCa+hqVuKnzodQy+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 03:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Jun 23 03:10:00 2026 GMT Not After : Jun 30 03:10:00 2026 GMT Subject: CN=6a39f908-aaac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0f:8b:8a:45:73:32:95:c1:a7:36:5e:9b:fe: ff:3c:eb:8d:90:9f:c6:f1:52:db:38:85:7c:56:dd: 38:69:39:f3:b1:72:f8:5b:e4:e4:31:ab:44:08:16: 10:ee:37:ef:6a:26:48:29:91:a3:39:39:ad:e1:72: 60:d6:3a:ab:1b:d4:2c:59:71:dd:4c:41:73:8b:a8: 54:25:dc:72:34:cf:3c:1c:4d:58:00:c7:96:83:3e: 4b:6e:22:da:75:94:da:d4:b5:7e:ce:a6:7a:8c:0d: 73:97:b0:cb:d2:84:e2:5b:e8:4f:f4:10:05:00:5a: 12:b3:5e:9e:55:3c:09:7a:9f:90:c9:ed:83:94:05: 6f:36:fd:2b:08:2a:73:ad:4b:23:91:6a:a4:1d:32: 01:ff:6f:28:a1:7e:f3:a8:57:2b:89:b8:fd:84:2e: 22:38:bb:f8:b7:aa:d4:78:08:6a:f0:8b:f8:a4:d8: bd:11:4e:3b:9c:27:51:bd:76:87:66:e3:70:bd:28: e4:80:7f:e0:15:77:c4:50:40:61:64:35:70:26:11: 40:2f:f7:0c:ab:fc:36:1a:9f:9e:f3:d3:68:7c:7a: 29:8f:14:8c:56:3f:52:e0:d6:7d:71:91:7c:54:2c: 56:22:b5:ce:31:43:23:d3:d3:a8:9a:df:62:29:6a: 1a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C5:0D:69:D9:3A:48:75:D7:3B:9B:12:1A:B2:2A:A1:55:32:28:0A X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:2d:e1:fe:ab:86:b9:dd:f7:7a:ae:50:a5:4e:77:c0:45:bf: 43:bb:dc:13:aa:85:29:e1:b9:f2:79:45:72:32:94:69:ce:7d: 7d:f1:9e:33:fb:bc:bf:86:a8:1c:11:4f:28:f2:e1:b0:60:84: 49:51:54:c7:21:28:17:d9:eb:16:5b:21:2d:f3:8d:07:f6:2a: bd:4e:9d:ab:51:f4:a4:fa:60:8f:bd:db:8a:f8:2a:c6:1a:b8: 64:40:04:ea:c6:b2:38:06:bf:69:4a:be:a8:50:65:cf:65:86: 57:3a:05:b3:85:d3:f5:72:11:7d:69:ec:1b:45:db:9f:2c:f3: 82:0b:7d:46:8b:01:ae:9a:c6:d3:9b:ed:fd:94:1e:e6:3b:73: b4:fe:98:0e:be:fa:03:4e:f6:80:a8:d5:ef:74:da:69:2c:8e: 42:1c:7a:8b:61:c3:87:f8:4c:d6:d0:73:8f:67:fc:56:a3:3b: 54:0f:06:41:af:f8:99:c2:c7:46:9d:07:71:73:2d:d4:a7:a7: c6:03:fd:50:d9:00:ce:0d:43:7b:87:f0:97:c9:6f:99:d8:a9: 9a:ee:c5:75:a7:ef:7b:68:f2:c6:b7:a3:20:b0:d7:ad:23:fe: 81:db:56:be:f9:a2:36:a1:30:06:9b:14:e8:5e:43:bd:c9:aa: a0:d3:a0:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjYwNjIzMDMxMDAwWhcNMjYwNjMwMDMxMDAwWjAYMRYwFAYD VQQDEw02YTM5ZjkwOC1hYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlg+LikVzMpXBpzZem/7/POuNkJ/G8VLbOIV8Vt04aTnzsXL4W+TkMatECBYQ 7jfvaiZIKZGjOTmt4XJg1jqrG9QsWXHdTEFzi6hUJdxyNM88HE1YAMeWgz5LbiLa dZTa1LV+zqZ6jA1zl7DL0oTiW+hP9BAFAFoSs16eVTwJep+Qye2DlAVvNv0rCCpz rUsjkWqkHTIB/28ooX7zqFcribj9hC4iOLv4t6rUeAhq8Iv4pNi9EU47nCdRvXaH ZuNwvSjkgH/gFXfEUEBhZDVwJhFAL/cMq/w2Gp+e89NofHopjxSMVj9S4NZ9cZF8 VCxWIrXOMUMj09Oomt9iKWoaLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrFDWnZ Okh11zubEhqyKqFVMigKMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmi3h/quGud33eq5QpU53wEW/Q7vcE6qFKeG58nlFcjKUac59ffGeM/u8v4ao HBFPKPLhsGCESVFUxyEoF9nrFlshLfONB/YqvU6dq1H0pPpgj73bivgqxhq4ZEAE 6sayOAa/aUq+qFBlz2WGVzoFs4XT9XIRfWnsG0Xbnyzzggt9RosBrprG05vt/ZQe 5jtztP6YDr76A072gKjV73TaaSyOQhx6i2HDh/hM1tBzj2f8VqM7VA8GQa/4mcLH Rp0HcXMt1KenxgP9UNkAzg1De4fwl8lvmdipmu7Fdafve2jyxrejILDXrSP+gdtW vvmiNqEwBpsU6F5DvcmqoNOgAg== -----END CERTIFICATE-----Generated at Wed Jun 24 11:26:16 2026 by rpki-client