$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: 3soTYf8wHni9NmvcV251ZqgwRHYA3rtbXk5NLBMpTf8= Subject key identifier: D9:24:35:5D:FE:E1:7D:CC:26:C4:9C:EA:83:D6:C7:D7:89:FB:F9:AD Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0AC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0AAA Signing time: Wed 10 Jun 2026 19:34:12 +0000 Manifest this update: Wed 10 Jun 2026 19:34:12 +0000 Manifest next update: Wed 17 Jun 2026 19:34:12 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: hgB0HJrYUx+to5iUOCt6Hj5kJO7zWSkBSQfavydL46U=) 2: EFACF8725A9611F1BEF054C8C8833773.roa (hash: H2seh8ndbPmzBsoU50PQUQi8emQoFFvHq08sQLmrLP8=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: B3rKvJIZKAiFNSNTP07OGjXr92JcCAag/b1E9OB/h34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 19:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2761 (0xac9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Jun 10 19:34:12 2026 GMT Not After : Jun 17 19:34:12 2026 GMT Subject: CN=6a29bc34-c2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a2:28:14:a8:bd:31:04:76:b9:0d:45:24:8a: a3:d8:a1:4b:c0:e4:0b:c9:38:d5:2d:c8:19:49:ce: b5:20:0e:5c:27:5f:74:7b:e5:8f:bf:c3:8f:db:57: 67:48:30:65:92:14:32:70:2a:01:a0:75:73:1f:ab: 6c:f3:3a:87:23:29:46:7f:1f:17:2b:15:96:9e:b8: 53:5a:66:93:89:bb:46:4e:27:15:e0:f3:1a:16:91: 1f:4b:93:9b:94:e5:f4:16:92:8e:d3:b4:b1:75:55: 86:1f:d2:26:54:9b:4f:b4:27:2b:63:ec:23:d1:05: da:4d:9f:ef:e1:fc:70:0e:c8:d5:86:5c:3a:d8:0c: 11:3f:ea:32:40:94:62:3e:83:ca:2b:2d:db:11:8c: 5e:e3:e5:d6:cb:b1:e5:ff:a2:12:80:67:25:09:ca: ba:d6:fd:1d:8c:4b:d5:e4:3c:48:97:ce:28:4d:aa: 57:f6:87:cf:73:cc:92:97:24:5c:a7:16:f2:b4:47: 59:31:b6:8b:61:e6:c7:7d:7f:29:01:cf:b8:ad:35: 0a:22:01:36:4e:3d:4b:e8:8f:9b:9d:b1:85:f3:6d: 9f:31:b9:5f:4d:ee:6d:36:42:40:43:e4:7c:f2:f9: fc:47:1e:62:68:6c:89:a8:d7:82:7a:8f:d1:2f:30: 33:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:24:35:5D:FE:E1:7D:CC:26:C4:9C:EA:83:D6:C7:D7:89:FB:F9:AD X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:37:68:4a:78:16:87:08:83:c1:f8:78:25:24:b9:09:26:15: 4a:23:3e:5e:8e:64:03:16:18:b0:5d:55:0b:da:26:dd:01:e7: 35:b1:29:c6:f4:9a:f2:14:8a:fa:a1:e9:4b:1c:f3:e1:fa:a2: 71:21:33:1f:fd:55:61:3a:22:ac:30:da:04:b9:5d:c1:dc:1d: 40:92:c9:a2:5c:83:ae:6c:b4:e6:da:98:d9:a6:fc:40:d8:97: 34:a2:0c:f9:4a:7c:dc:97:d0:d1:1f:9e:9f:cc:57:09:6d:68: 8f:e8:70:f2:b2:ae:51:3f:fe:80:70:26:c8:d5:81:bb:ad:cc: 1c:d3:e4:5d:09:48:f5:b0:b3:18:01:95:ae:5b:c5:0d:5f:42: 76:73:67:46:4d:12:88:8f:ff:fd:cc:5c:98:b8:db:d5:a7:be: d1:7d:d1:25:b6:b0:e4:22:f6:12:76:30:9a:b3:73:1d:ba:3c: 2d:29:4c:35:71:bc:2e:2c:b7:75:6e:83:cd:af:d8:5b:52:26: 1b:65:0e:e8:c6:e8:4a:8f:a4:70:55:ae:41:96:e5:b9:80:5b: 24:1b:88:23:f7:c7:84:82:2e:86:f3:7d:e4:7e:61:36:54:0a: f2:63:3b:b3:49:78:0e:10:72:54:9a:12:61:07:33:02:e0:ec: 5c:98:14:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjYwNjEwMTkzNDEyWhcNMjYwNjE3MTkzNDEyWjAYMRYwFAYD VQQDEw02YTI5YmMzNC1jMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaIoFKi9MQR2uQ1FJIqj2KFLwOQLyTjVLcgZSc61IA5cJ190e+WPv8OP21dn SDBlkhQycCoBoHVzH6ts8zqHIylGfx8XKxWWnrhTWmaTibtGTicV4PMaFpEfS5Ob lOX0FpKO07SxdVWGH9ImVJtPtCcrY+wj0QXaTZ/v4fxwDsjVhlw62AwRP+oyQJRi PoPKKy3bEYxe4+XWy7Hl/6ISgGclCcq61v0djEvV5DxIl84oTapX9ofPc8ySlyRc pxbytEdZMbaLYebHfX8pAc+4rTUKIgE2Tj1L6I+bnbGF822fMblfTe5tNkJAQ+R8 8vn8Rx5iaGyJqNeCeo/RLzAzXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkkNV3+ 4X3MJsSc6oPWx9eJ+/mtMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABzdoSngWhwiDwfh4JSS5CSYVSiM+Xo5kAxYYsF1VC9om3QHnNbEpxvSa8hSK +qHpSxzz4fqicSEzH/1VYToirDDaBLldwdwdQJLJolyDrmy05tqY2ab8QNiXNKIM +Up83JfQ0R+en8xXCW1oj+hw8rKuUT/+gHAmyNWBu63MHNPkXQlI9bCzGAGVrlvF DV9CdnNnRk0SiI///cxcmLjb1ae+0X3RJbaw5CL2EnYwmrNzHbo8LSlMNXG8Liy3 dW6Dza/YW1ImG2UO6MboSo+kcFWuQZbluYBbJBuII/fHhIIuhvN95H5hNlQK8mM7 s0l4DhByVJoSYQczAuDsXJgUCA== -----END CERTIFICATE-----Generated at Fri Jun 12 15:53:56 2026 by rpki-client