$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: I36P7QD2BQ0VoTex87kwItYcRMBKWQRT1T3LFHRRH3I= Subject key identifier: EC:0F:80:40:D6:26:65:B4:1F:BE:9A:59:9D:91:F1:8A:AE:02:E7:EE Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 02C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 02A1 Signing time: Thu 11 Jun 2026 03:59:25 +0000 Manifest this update: Thu 11 Jun 2026 03:59:24 +0000 Manifest next update: Thu 18 Jun 2026 03:59:24 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: oBIXXjSd/dHm7pAac8/OKPCoaBy9B/ps14PyKo9BwRY=) 2: 026537E8861E11F0BC465F85C4F9AE02.roa (hash: jND/P0to+up6kdOpyJDFygxyQBhs5JfYLpar96q+qQI=) 3: 6709E1D0D0FB11F08508FE58C4F9AE02.roa (hash: yB3ol9rUcdCMd9JnZM0DHqWp/9+cmY3NhYZPNGTCgSk=) 4: A216EC4E3C7911F0B25C0585C4F9AE02.roa (hash: PzMKVF5RWKMCBBz+uMcp/BJxucoQAleKAMkhu2SsbNI=) 5: FA9BD5C2C5DC11F0A5504261C4F9AE02.roa (hash: iXf9KuDSIbIFYMh4V2pQ7flo3c0UEktI37Pu46KLsLQ=) 6: B856D46C3B9611F0B2363C74C4F9AE02.roa (hash: bXMhRP5t5yXxZ38+U5zANdmRNyogxO2UTQiQkXvbZD8=) 7: 8361CB4E5AE611F0963E5C62C4F9AE02.roa (hash: jj9Anb+YltSNZ7XXzklotQBXr3n/2KBa9WPb7jR7Hmc=) 8: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (hash: D3QE+K/fDpz/3eSAi1rPfAFHFlOdI3dak+hzzYghHZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Jun 11 03:59:24 2026 GMT Not After : Jun 18 03:59:24 2026 GMT Subject: CN=6a2a329d-d7d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9c:ea:59:e1:c3:dd:73:94:de:18:53:80:3d: 90:6d:a3:b8:46:72:77:f7:bc:2d:dc:2d:a5:6f:d4: 06:03:97:b5:b6:6b:7e:49:18:d4:11:3a:51:02:20: 1a:2e:f9:44:9b:25:80:fb:13:3e:ed:3f:fb:fc:7d: d2:40:13:0c:e3:65:9c:ae:99:79:ab:dd:1b:81:a9: a5:c0:60:42:49:8b:ca:ef:f4:de:83:53:25:5c:df: a7:01:f0:83:10:cf:27:94:50:e9:f6:47:92:cf:0b: c0:5a:5e:ba:6f:5c:80:98:6c:0c:39:e7:98:69:eb: 0b:fd:0b:af:9f:ca:c8:65:c8:5a:97:ee:ba:d6:a5: 19:6b:55:6b:d9:be:1e:89:f5:44:51:af:ec:65:da: 88:19:52:61:d5:23:e8:99:4b:d1:70:35:de:12:ae: 4c:b9:96:b8:a8:61:23:cb:db:4f:91:21:86:03:ce: a8:b4:66:66:57:b0:ab:8c:9b:a7:50:50:9c:da:88: 2d:e1:c9:d4:52:17:69:eb:03:45:b9:cc:9a:eb:0f: c4:d2:ee:ab:2b:5a:fa:ef:70:e2:80:b3:33:d7:cb: 8d:18:06:d6:09:79:48:2b:ae:b6:98:bc:c9:20:3e: ad:b2:a8:76:b1:b3:e6:72:10:27:a1:36:2f:34:70: cc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0F:80:40:D6:26:65:B4:1F:BE:9A:59:9D:91:F1:8A:AE:02:E7:EE X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:aa:b6:46:93:5a:31:6b:df:89:1c:d1:b4:df:a8:c7:c7:d1: 0a:f2:81:61:8d:98:c1:e2:d8:c7:08:b8:a6:d7:94:4d:8a:ec: 92:c2:05:4a:b7:94:5c:04:50:6c:25:94:cd:55:37:b8:d2:14: 44:d1:7b:09:b6:a5:2d:3b:70:d8:38:89:a1:ef:f9:e0:f0:96: 8f:ae:85:58:e2:e2:05:a0:c3:5f:03:df:57:52:92:2e:52:8f: fb:bb:88:3f:17:7c:29:1d:94:0b:f6:ff:f9:f5:24:7d:fe:d6: cb:bc:14:80:83:45:20:a8:b2:80:08:5f:24:dd:41:cb:55:d2: 4c:6f:41:a4:47:b4:65:b3:ae:d8:c5:e8:5c:49:77:2e:e6:10: cd:d2:7b:2a:90:3b:4f:31:8c:90:01:cc:a2:df:bd:8e:e6:b3: e8:de:fc:40:f1:54:06:bb:42:75:ba:34:c4:fc:fd:d0:49:89: b6:3d:01:cd:b5:76:46:d1:33:15:cf:d2:c9:ad:ed:92:34:3f: e0:42:5f:c1:96:01:00:aa:be:1c:54:e3:5c:62:bd:40:c7:87: ab:17:13:6a:4d:5a:83:bd:1c:00:f2:57:40:38:b1:84:8a:03: da:e0:cc:9b:1c:51:d6:11:d0:4a:1c:da:a5:8d:e2:a4:3c:40: 5a:26:2f:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjYwNjExMDM1OTI0WhcNMjYwNjE4MDM1OTI0WjAYMRYwFAYD VQQDEw02YTJhMzI5ZC1kN2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5zqWeHD3XOU3hhTgD2QbaO4RnJ397wt3C2lb9QGA5e1tmt+SRjUETpRAiAa LvlEmyWA+xM+7T/7/H3SQBMM42Wcrpl5q90bgamlwGBCSYvK7/Teg1MlXN+nAfCD EM8nlFDp9keSzwvAWl66b1yAmGwMOeeYaesL/Quvn8rIZchal+661qUZa1Vr2b4e ifVEUa/sZdqIGVJh1SPomUvRcDXeEq5MuZa4qGEjy9tPkSGGA86otGZmV7CrjJun UFCc2ogt4cnUUhdp6wNFucya6w/E0u6rK1r673DigLMz18uNGAbWCXlIK662mLzJ ID6tsqh2sbPmchAnoTYvNHDMYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOwPgEDW JmW0H76aWZ2R8YquAufuMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqqq2RpNaMWvfiRzRtN+ox8fRCvKBYY2YweLYxwi4pteUTYrsksIFSreUXARQ bCWUzVU3uNIURNF7CbalLTtw2DiJoe/54PCWj66FWOLiBaDDXwPfV1KSLlKP+7uI Pxd8KR2UC/b/+fUkff7Wy7wUgINFIKiygAhfJN1By1XSTG9BpEe0ZbOu2MXoXEl3 LuYQzdJ7KpA7TzGMkAHMot+9juaz6N78QPFUBrtCdbo0xPz90EmJtj0BzbV2RtEz Fc/Sya3tkjQ/4EJfwZYBAKq+HFTjXGK9QMeHqxcTak1ag70cAPJXQDixhIoD2uDM mxxR1hHQShzapY3ipDxAWiYvhQ== -----END CERTIFICATE-----Generated at Thu Jun 11 22:41:14 2026 by rpki-client