$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: +OAY0crHIkjRUhg1n0aczC/KWF51zy7oUl5+seYkLOs= Subject key identifier: E0:5A:98:4A:31:6D:CF:2F:5C:EF:2D:99:5C:19:77:AB:10:28:90:BA Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 10DA Signing time: Tue 02 Jun 2026 14:24:56 +0000 Manifest this update: Tue 02 Jun 2026 14:24:55 +0000 Manifest next update: Tue 09 Jun 2026 14:24:55 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: RFSsMW2Sztzx2a9TLpf8XX4q06/Khlzy5mz4ib03qCs=) 2: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: QAfeG31AUJ9ysS7/jFhyhx6FaI+gxOiP1E4c7gwnNZ4=) 3: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: dZjVpX0OHFb95lVF9Cf+7jCMCOq6ryMRIoLMcRSlevM=) 4: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: FcrkIqa4XDgVdyeOamaFQqlLus8d1JT70DNswdpetnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 14:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4340 (0x10f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Jun 2 14:24:55 2026 GMT Not After : Jun 9 14:24:55 2026 GMT Subject: CN=6a1ee7b8-0af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:53:7e:0f:85:e7:bd:e3:de:bc:1c:e4:ea: f0:c4:bf:ae:fb:88:a7:7a:af:42:69:da:42:7d:25: 3a:9f:15:c5:87:b3:04:c9:0c:78:e9:dc:be:3e:5c: 06:66:92:68:b3:80:c2:a3:70:e6:37:59:06:27:f4: 44:88:7a:a3:7b:1a:10:1c:d9:1e:21:b3:b3:0d:08: e2:ed:2e:a0:f9:15:a5:a9:f6:07:18:10:6d:53:e0: db:e0:a5:0b:af:10:7a:b1:f6:f8:a6:1e:af:da:77: 07:55:5c:30:f6:28:65:af:e4:0e:00:0e:b5:d4:57: 06:6d:8d:4e:d6:09:8c:e8:7d:19:57:65:0a:9b:2d: 01:5e:03:5f:7e:ca:0d:92:7d:35:3c:fc:f9:41:e0: 08:0b:cf:2d:31:27:e1:46:90:fa:bf:88:f0:4a:b4: 5c:a0:88:6a:03:5a:fe:94:da:17:00:48:6d:6c:12: 8e:5f:32:09:ac:7a:fc:79:c9:19:9f:38:e9:a0:f3: 6b:8b:6d:2e:9b:e5:7f:62:6f:34:25:5b:77:df:e3: 42:4d:57:41:50:e1:8a:48:cc:28:ac:9c:8f:50:db: 68:5f:4f:7b:d2:60:2e:bd:22:ec:87:d5:4d:28:74: 28:81:93:ce:0f:7a:57:58:f6:6e:7a:76:21:46:7e: dd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5A:98:4A:31:6D:CF:2F:5C:EF:2D:99:5C:19:77:AB:10:28:90:BA X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b2:6a:82:d4:47:c7:3c:c3:ce:5d:39:f5:28:0c:5e:73:0d: 9f:29:7c:e3:a6:48:3d:1f:51:eb:47:d8:d4:37:34:26:ad:2f: 20:f8:5f:c7:1b:84:c6:e2:31:e0:5a:74:ec:ea:b9:aa:0e:71: 37:2b:7e:ce:84:45:ce:f2:55:9d:99:dd:26:96:a6:c6:8f:d9: 1d:8e:64:95:15:26:41:f5:52:2c:00:6b:d8:b8:0f:be:88:02: 83:ed:b5:3a:3a:64:ab:6a:b7:8c:47:47:6b:af:28:fe:6e:c8: 1b:ec:ce:1d:ad:17:81:f3:f6:15:d6:c9:be:7f:fc:cf:23:75: ef:02:94:8a:71:3e:af:34:b2:0e:5e:c9:55:b9:d6:58:06:e1: d1:2e:df:51:9d:3c:db:d7:82:41:1c:fb:ef:81:98:01:61:f0: ff:54:27:d0:41:09:11:40:d9:67:49:ab:27:fc:3d:10:47:b1: e8:22:17:2b:2e:98:49:27:0b:b2:9c:03:2e:d3:38:33:b2:23: 25:e2:e0:0f:22:e0:a5:97:05:78:1e:c5:e7:3e:b7:ed:f7:0c: 65:d9:e0:95:27:72:80:71:d2:90:9e:f6:75:ed:f0:45:80:09: fc:b7:98:7d:11:95:b3:59:df:1f:60:05:a0:33:92:e7:8e:82: 89:f3:1d:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwNjAyMTQyNDU1WhcNMjYwNjA5MTQyNDU1WjAYMRYwFAYD VQQDEw02YTFlZTdiOC0wYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymNTfg+F573j3rwc5OrwxL+u+4ineq9CadpCfSU6nxXFh7MEyQx46dy+PlwG ZpJos4DCo3DmN1kGJ/REiHqjexoQHNkeIbOzDQji7S6g+RWlqfYHGBBtU+Db4KUL rxB6sfb4ph6v2ncHVVww9ihlr+QOAA611FcGbY1O1gmM6H0ZV2UKmy0BXgNffsoN kn01PPz5QeAIC88tMSfhRpD6v4jwSrRcoIhqA1r+lNoXAEhtbBKOXzIJrHr8eckZ nzjpoPNri20um+V/Ym80JVt33+NCTVdBUOGKSMworJyPUNtoX0970mAuvSLsh9VN KHQogZPOD3pXWPZuenYhRn7djwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOBamEox bc8vXO8tmVwZd6sQKJC6MB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPLJqgtRHxzzDzl059SgMXnMNnyl846ZIPR9R60fY1Dc0Jq0vIPhfxxuExuIx 4Fp07Oq5qg5xNyt+zoRFzvJVnZndJpamxo/ZHY5klRUmQfVSLABr2LgPvogCg+21 Ojpkq2q3jEdHa68o/m7IG+zOHa0XgfP2FdbJvn/8zyN17wKUinE+rzSyDl7JVbnW WAbh0S7fUZ0829eCQRz774GYAWHw/1Qn0EEJEUDZZ0mrJ/w9EEex6CIXKy6YSScL spwDLtM4M7IjJeLgDyLgpZcFeB7F5z637fcMZdnglSdygHHSkJ72de3wRYAJ/LeY fRGVs1nfH2AFoDOS546CifMdUg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:20:06 2026 by rpki-client