$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: K6M7MBNFL+P8P4zfeI0ufX3b2mND6CWYXzqpHbYIOB8= Subject key identifier: A3:CB:90:85:6F:50:6C:C7:78:40:C8:6A:3D:95:FE:3D:B1:9A:B2:A8 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0252 Signing time: Mon 01 Jun 2026 03:03:52 +0000 Manifest this update: Mon 01 Jun 2026 03:03:52 +0000 Manifest next update: Mon 08 Jun 2026 03:03:52 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: mMDWvSaxNPJgBsXB1SVUu1K84rUBFNpV1nUUwStOVnQ=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: 6U++pNkeW+MPTCwzdV8Vs83jpXrL1CTpZqHD9JNg/bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Jun 1 03:03:52 2026 GMT Not After : Jun 8 03:03:52 2026 GMT Subject: CN=6a1cf698-c07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:07:8e:96:f4:b5:16:5b:2c:a4:32:2a:e3:98: 65:c4:3e:b5:08:75:84:cf:88:5f:fa:3f:fc:a4:58: 53:0d:8d:aa:40:ff:bd:19:7d:76:df:5c:18:ba:f8: dd:2b:e0:fe:c3:44:62:3b:54:be:be:0c:d9:02:8c: 95:4d:6f:de:78:67:da:13:e5:84:ba:10:76:29:6e: 86:f7:50:75:9e:13:a2:8c:93:e2:32:e1:1a:bd:4b: 9e:05:9d:8b:35:ed:a7:b1:65:56:25:90:6b:50:01: 00:cb:ad:d4:71:e4:93:40:12:bb:42:92:7e:6a:4d: f1:87:97:89:56:ce:e0:8d:e3:3d:31:90:04:40:40: eb:b5:56:23:75:f9:7e:0a:04:25:fc:ea:49:9a:fc: 4e:2b:c0:da:20:43:94:2b:f4:a4:76:ca:a5:36:e2: 3f:45:bb:a7:4b:72:2a:58:ea:8a:5d:e9:cd:f8:e1: 75:b6:98:47:00:fd:80:5c:3b:fe:1b:4e:6d:52:93: c9:45:19:c7:b2:7c:7f:de:b6:ab:20:2c:d6:b4:6c: 32:52:07:52:85:dd:c4:f0:e9:cd:d5:43:94:fe:b9: 5e:4b:2a:b8:76:32:b3:20:f9:69:90:53:b5:06:ee: 00:fe:52:95:84:2a:d7:96:d0:0e:00:27:3f:5d:f5: 48:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CB:90:85:6F:50:6C:C7:78:40:C8:6A:3D:95:FE:3D:B1:9A:B2:A8 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:80:b7:bc:7e:07:27:6b:62:20:26:d7:ee:46:18:d0:97:66: b5:c4:ea:c2:f1:12:4d:cd:67:01:d8:47:bb:9b:1d:31:d3:a5: be:ee:df:56:92:93:7a:57:88:79:ab:6e:02:fd:69:cc:0c:82: af:92:c7:b6:fa:0e:06:d5:5a:df:c0:22:8b:5b:6c:d4:5d:31: c2:82:80:99:4d:01:a3:c2:0b:cb:02:0e:50:38:dd:bb:84:74: 77:be:5d:06:7b:14:07:10:af:eb:e8:4d:e7:b3:77:9b:4a:ef: 48:e8:28:94:bc:aa:26:ab:34:54:c6:29:c6:91:ec:7a:74:0c: 91:9e:0f:e6:ca:19:ab:fd:6d:9b:c4:42:e6:0d:09:94:bd:de: 69:2a:50:f1:65:a2:4e:3a:2c:94:54:ce:2d:d0:67:b1:dc:e2: 5d:9d:3a:bd:c7:d6:07:b7:f5:17:70:27:78:65:8d:87:71:e5: 90:06:d2:d2:42:a7:80:e8:fe:65:a9:26:f5:38:b4:a0:1c:cb: 10:2c:90:b6:78:40:82:cb:52:22:1f:3f:ee:c7:d1:84:b5:d7: 58:59:52:a3:4d:10:8a:98:fb:37:5f:f2:e3:9d:49:6b:dc:05: 74:af:31:b6:c7:b7:2d:50:7f:f3:9d:f5:bc:59:d3:23:73:f6: 26:a8:71:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjYwNjAxMDMwMzUyWhcNMjYwNjA4MDMwMzUyWjAYMRYwFAYD VQQDEw02YTFjZjY5OC1jMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQeOlvS1FlsspDIq45hlxD61CHWEz4hf+j/8pFhTDY2qQP+9GX1231wYuvjd K+D+w0RiO1S+vgzZAoyVTW/eeGfaE+WEuhB2KW6G91B1nhOijJPiMuEavUueBZ2L Ne2nsWVWJZBrUAEAy63UceSTQBK7QpJ+ak3xh5eJVs7gjeM9MZAEQEDrtVYjdfl+ CgQl/OpJmvxOK8DaIEOUK/SkdsqlNuI/RbunS3IqWOqKXenN+OF1tphHAP2AXDv+ G05tUpPJRRnHsnx/3rarICzWtGwyUgdShd3E8OnN1UOU/rleSyq4djKzIPlpkFO1 Bu4A/lKVhCrXltAOACc/XfVI/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKPLkIVv UGzHeEDIaj2V/j2xmrKoMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd4C3vH4HJ2tiICbX7kYY0JdmtcTqwvESTc1nAdhHu5sdMdOlvu7fVpKTeleI eatuAv1pzAyCr5LHtvoOBtVa38Aii1ts1F0xwoKAmU0Bo8ILywIOUDjdu4R0d75d BnsUBxCv6+hN57N3m0rvSOgolLyqJqs0VMYpxpHsenQMkZ4P5soZq/1tm8RC5g0J lL3eaSpQ8WWiTjoslFTOLdBnsdziXZ06vcfWB7f1F3AneGWNh3HlkAbS0kKngOj+ Zakm9Ti0oBzLECyQtnhAgstSIh8/7sfRhLXXWFlSo00Qipj7N1/y451Ja9wFdK8x tse3LVB/8531vFnTI3P2JqhxNw== -----END CERTIFICATE-----Generated at Tue Jun 2 22:01:35 2026 by rpki-client