$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: lhsIeFmZBouITynJ/vt80ujYrRKTS/zeM9DXtjDvEdM= Subject key identifier: 82:C1:D1:85:AC:66:62:AC:90:88:64:4D:8B:D0:00:7A:92:B7:69:BA Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 0730 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 0708 Signing time: Thu 04 Jun 2026 22:13:00 +0000 Manifest this update: Thu 04 Jun 2026 22:12:59 +0000 Manifest next update: Thu 11 Jun 2026 22:12:59 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: citj38DfwNKvA7W0uamPRdbQMR3qccekoLjacSXCOvQ=) 2: C51F34AAC46711F09831793EC4F9AE02.roa (hash: 5Dfo+86REWSOOvSHSQa6ahUnKj3THgLtEtsMrC5m7/I=) 3: 144A90F233ED11F1A6562CADBA833773.roa (hash: mEB/Hlpd+TSPYfzIl0a7s1rseBjBsIWm6aFfj0Z1rnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 22:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1840 (0x730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Jun 4 22:12:59 2026 GMT Not After : Jun 11 22:12:59 2026 GMT Subject: CN=6a21f86c-f5f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:00:99:85:b4:c8:ce:3c:6b:90:47:21:79: a5:b5:75:e5:e7:32:50:56:15:8b:dd:ed:1a:cf:24: fd:c7:fe:c7:80:67:3a:8f:b7:c1:dc:a8:9b:3e:02: dd:06:90:5e:06:3d:6a:41:e2:c7:fb:a6:30:75:f3: 25:99:2b:a6:38:2c:ef:ac:a3:fb:3a:78:7c:0c:6a: 49:b0:93:cb:a0:f5:6b:a4:28:b9:aa:62:0a:5b:f4: d4:f9:41:f1:dd:3f:f8:9f:a9:21:c6:00:ea:b0:26: 0b:dc:b3:3f:11:22:07:3a:fd:d9:60:34:89:a8:9d: ce:79:b4:fc:5d:68:07:49:1c:fa:0a:09:78:b8:43: 51:8f:5d:e7:87:38:a0:f8:bd:32:1a:ac:9b:7d:8b: 99:b3:2c:0e:8d:b7:cc:8a:33:41:92:20:b2:00:e8: 0e:bc:ca:0b:fc:2a:a9:27:50:c1:6f:cd:d5:e1:90: c2:f4:a6:04:03:76:01:bf:90:a9:c3:93:60:ac:dd: 20:a5:89:13:79:d8:33:f5:bf:00:40:1a:75:64:b4: 3f:49:81:7b:be:6d:4b:f7:ee:21:83:57:ca:7d:5a: a8:96:70:61:8a:c0:65:ed:3c:74:49:fa:4c:8b:6f: cf:31:3f:31:5f:48:6b:11:d8:c7:6e:29:fc:9d:ac: e5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C1:D1:85:AC:66:62:AC:90:88:64:4D:8B:D0:00:7A:92:B7:69:BA X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ba:d0:1a:55:7d:b1:d1:87:cd:0e:e6:c9:77:1a:45:a7:ef: 15:d5:50:ea:c4:89:4c:02:eb:21:0f:39:a9:14:8c:2d:80:1e: 81:65:aa:d8:40:ab:52:92:d4:b2:6e:77:da:ac:e5:7c:47:56: 2c:4b:c2:4c:d3:04:f4:e5:2a:e3:28:a5:90:89:32:16:ba:81: 27:57:a5:05:f1:34:08:cc:4f:5e:12:a6:9c:21:2b:3d:32:23: 26:cb:c5:6e:ce:fe:64:d6:c3:92:25:ae:de:30:98:4e:9f:49: df:6f:28:34:e0:e7:6e:2d:90:e4:be:4e:18:32:f0:ba:06:92: f0:49:db:60:5e:19:d3:9c:03:1f:01:1e:ba:22:ee:9b:3f:d0: 30:60:35:39:d0:89:71:1b:e8:3e:25:26:ba:3f:5e:70:cd:d4: 1b:05:8f:60:98:89:41:58:fb:1e:70:2e:91:69:11:4c:6a:95: 92:ea:3b:f3:35:03:ba:d5:bd:21:d1:e9:a0:2f:68:89:3e:9e: e6:70:b0:5e:41:b4:99:4a:99:56:42:5c:05:ca:1e:5d:b2:48: 32:3b:f9:55:df:f7:80:ca:0d:d7:dd:bd:d5:22:70:50:a2:7e: b5:76:58:2e:cf:0e:72:8d:a1:39:9a:35:47:f0:21:f2:15:c5: 08:97:37:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjYwNjA0MjIxMjU5WhcNMjYwNjExMjIxMjU5WjAYMRYwFAYD VQQDEw02YTIxZjg2Yy1mNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/YAmYW0yM48a5BHIXmltXXl5zJQVhWL3e0azyT9x/7HgGc6j7fB3KibPgLd BpBeBj1qQeLH+6YwdfMlmSumOCzvrKP7Onh8DGpJsJPLoPVrpCi5qmIKW/TU+UHx 3T/4n6khxgDqsCYL3LM/ESIHOv3ZYDSJqJ3OebT8XWgHSRz6Cgl4uENRj13nhzig +L0yGqybfYuZsywOjbfMijNBkiCyAOgOvMoL/CqpJ1DBb83V4ZDC9KYEA3YBv5Cp w5NgrN0gpYkTedgz9b8AQBp1ZLQ/SYF7vm1L9+4hg1fKfVqolnBhisBl7Tx0SfpM i2/PMT8xX0hrEdjHbin8nazlSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFILB0YWs ZmKskIhkTYvQAHqSt2m6MB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVrrQGlV9sdGHzQ7myXcaRafvFdVQ6sSJTALrIQ85qRSMLYAegWWq2ECrUpLU sm532qzlfEdWLEvCTNME9OUq4yilkIkyFrqBJ1elBfE0CMxPXhKmnCErPTIjJsvF bs7+ZNbDkiWu3jCYTp9J328oNODnbi2Q5L5OGDLwugaS8EnbYF4Z05wDHwEeuiLu mz/QMGA1OdCJcRvoPiUmuj9ecM3UGwWPYJiJQVj7HnAukWkRTGqVkuo78zUDutW9 IdHpoC9oiT6e5nCwXkG0mUqZVkJcBcoeXbJIMjv5Vd/3gMoN19291SJwUKJ+tXZY Ls8Oco2hOZo1R/Ah8hXFCJc3ew== -----END CERTIFICATE-----Generated at Sat Jun 6 07:01:58 2026 by rpki-client