$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft File: 0Z0h9lpMk802wwczAhMPTmW38Ok.mft (raw, json) Hash identifier: NiR3BeY2EKzFShJIt8mtJ3M75+hlV570v3iPQWA9CFM= Subject key identifier: 0F:86:FF:8A:13:98:D5:DE:B8:E4:0C:28:ED:CC:DD:56:43:6F:26:12 Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft Manifest number: 023C Signing time: Thu 11 Jun 2026 04:44:17 +0000 Manifest this update: Thu 11 Jun 2026 04:44:16 +0000 Manifest next update: Thu 18 Jun 2026 04:44:16 +0000 Files and hashes: 1: 0Z0h9lpMk802wwczAhMPTmW38Ok.crl (hash: qoe8abzMVOGMuLQ1O5Ip1/ubvZMTxkJNmf8mteCubeg=) 2: 5CBE3872145C11F0BFD6B347C4F9AE02.roa (hash: eIw4Uvs7+0h1YsqxH/qfh6oIU/c0LpW3ku/O5IbbbMI=) 3: 4C30AA30B08411EFA29E6722C4F9AE02.roa (hash: 0B4BKsEG1wa08J+lgPO912Kog9bxXq5IB8X43UFFcls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 04:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB, serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: Jun 11 04:44:16 2026 GMT Not After : Jun 18 04:44:16 2026 GMT Subject: CN=6a2a3d20-064c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ac:b3:26:de:fd:45:e1:15:d9:36:80:68:b8: 32:9e:af:44:b7:18:28:b0:52:f8:bb:6f:e3:5a:bc: 42:92:0c:0d:78:1c:f1:01:52:ea:0f:ae:f5:66:55: 1b:f1:e1:97:3b:3b:0f:56:56:e4:7b:43:bd:82:1a: 3b:60:a9:b6:4b:1e:02:6a:35:53:d6:2e:40:12:e0: c5:bb:a5:a8:21:a6:b2:1e:ea:53:bb:3e:0e:7f:ba: c6:f9:c7:b5:5e:2a:06:da:0a:68:36:7e:37:47:3d: 32:24:5f:ab:5b:50:26:70:8a:7a:b2:5b:d1:fb:11: eb:dd:21:ce:65:73:78:8a:50:c1:43:d2:a9:32:17: 5a:d5:d2:2f:b9:04:fd:19:5a:61:2f:cf:ee:16:ae: a3:f5:5c:59:dd:64:ed:fc:1c:0a:cf:57:a5:6a:b8: 46:c0:17:b6:52:de:a3:eb:32:92:24:83:f5:04:52: fd:3a:2a:f6:94:76:32:ed:cc:ef:21:be:8c:03:4f: ad:be:b4:2b:e8:1e:db:22:6e:c5:2a:a9:f9:c9:8a: df:71:e3:72:46:23:13:05:62:29:00:a5:a4:a3:7a: 0b:56:f1:0a:e7:1c:3d:45:d3:59:2a:c8:e0:40:2c: ea:90:5a:1a:ae:e0:6d:ce:03:25:7e:54:37:24:75: fd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:86:FF:8A:13:98:D5:DE:B8:E4:0C:28:ED:CC:DD:56:43:6F:26:12 X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a5:16:6f:e6:90:50:9a:1e:23:61:28:8a:66:81:e9:96:e8: 17:a8:77:2f:ac:b9:7e:cd:9e:87:fc:bc:65:9d:c9:3a:8a:d3: 02:03:a4:b9:6e:51:88:77:67:1a:d7:c5:a9:e6:04:50:ef:2b: 16:df:fb:a9:a3:cd:a8:a7:6d:cc:c3:89:cd:e1:da:61:f0:29: 95:da:9a:96:75:9c:25:ea:f0:fc:f4:0b:9f:b3:98:92:c7:72: 1e:67:ad:04:e3:cf:36:46:3e:7b:ee:ff:b4:e8:43:bd:9f:aa: 03:0f:93:9d:9f:e7:b0:18:57:73:e0:c4:11:e8:d0:7f:6c:49: de:56:23:1a:8a:84:bb:65:20:9a:41:01:a2:d8:33:eb:bc:65: cd:f8:12:8a:bf:01:ad:2b:17:61:8a:17:b3:e5:37:12:85:d8: 74:95:64:c6:97:10:bc:a0:3b:fc:b9:6f:90:54:18:64:94:d1: 95:b6:01:b0:cc:e4:d1:07:80:35:1c:2d:4f:97:b2:15:54:bb: 79:49:8a:f0:b1:76:ed:d9:d7:d9:16:34:10:8b:f7:b9:e6:55: a0:af:d5:e8:f5:39:84:78:96:bc:d0:d1:26:98:7b:3e:a4:86: 5c:4b:6e:77:ae:af:f1:f8:ff:29:b3:c1:6c:45:a8:e3:48:3d: 9b:63:46:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjYwNjExMDQ0NDE2WhcNMjYwNjE4MDQ0NDE2WjAYMRYwFAYD VQQDEw02YTJhM2QyMC0wNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6yzJt79ReEV2TaAaLgynq9EtxgosFL4u2/jWrxCkgwNeBzxAVLqD671ZlUb 8eGXOzsPVlbke0O9gho7YKm2Sx4CajVT1i5AEuDFu6WoIaayHupTuz4Of7rG+ce1 XioG2gpoNn43Rz0yJF+rW1AmcIp6slvR+xHr3SHOZXN4ilDBQ9KpMhda1dIvuQT9 GVphL8/uFq6j9VxZ3WTt/BwKz1elarhGwBe2Ut6j6zKSJIP1BFL9Oir2lHYy7czv Ib6MA0+tvrQr6B7bIm7FKqn5yYrfceNyRiMTBWIpAKWko3oLVvEK5xw9RdNZKsjg QCzqkFoaruBtzgMlflQ3JHX9cwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA+G/4oT mNXeuOQMKO3M3VZDbyYSMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjVDQi82OTU1MTVFMDA2MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4 MDJ3d2N6QWhNUFRtVzM4T2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG6UWb+aQUJoeI2EoimaB6ZboF6h3L6y5fs2eh/y8ZZ3JOorTAgOkuW5RiHdn GtfFqeYEUO8rFt/7qaPNqKdtzMOJzeHaYfApldqalnWcJerw/PQLn7OYksdyHmet BOPPNkY+e+7/tOhDvZ+qAw+TnZ/nsBhXc+DEEejQf2xJ3lYjGoqEu2UgmkEBotgz 67xlzfgSir8BrSsXYYoXs+U3EoXYdJVkxpcQvKA7/LlvkFQYZJTRlbYBsMzk0QeA NRwtT5eyFVS7eUmK8LF27dnX2RY0EIv3ueZVoK/V6PU5hHiWvNDRJph7PqSGXEtu d66v8fj/KbPBbEWo40g9m2NGMg== -----END CERTIFICATE-----Generated at Fri Jun 12 20:11:19 2026 by rpki-client