$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: KWv4CVlnGFTn7QgUhuULtReFRuHPTvEgvUEMyFOLFQU= Subject key identifier: B4:2D:86:D7:C7:A6:6B:17:BC:36:C1:D7:21:DD:F4:F6:78:29:53:F9 Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0BE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0BD6 Signing time: Mon 22 Jun 2026 18:56:44 +0000 Manifest this update: Mon 22 Jun 2026 18:56:44 +0000 Manifest next update: Mon 29 Jun 2026 18:56:44 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: j2W+JHEAxe64g/XI+X7QN1SkEJPcOfg0ptdLN9cO6Bw=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: owbB/QFVhS3E4rWN71OSFx1s7RgWi4YjBcaDXgNNaiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Jun 22 18:56:44 2026 GMT Not After : Jun 29 18:56:44 2026 GMT Subject: CN=6a39856c-b1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:98:98:40:bb:b5:60:de:f8:c1:38:0f:43:e6: d4:91:ab:85:ec:40:82:ee:ca:9b:4c:08:1b:f5:c8: dd:77:b2:ab:a0:9d:1e:5c:e9:82:1d:1a:5a:26:33: fe:c3:48:b0:21:29:37:fa:4b:c2:ab:ab:e9:25:8c: 14:0a:cb:6d:af:fd:e1:5a:2b:04:d8:ba:20:8b:70: d1:5a:e0:bb:1c:5a:17:c8:06:2a:86:b7:7a:33:5e: 74:7c:da:00:b3:16:5b:c4:5a:44:83:b1:34:2f:ad: b6:d8:b7:2a:86:45:d3:7c:93:03:96:6f:4c:39:89: 47:0f:cc:eb:19:69:89:7f:86:2c:d8:f9:d2:78:24: 42:58:19:0a:0c:df:8d:2d:fc:cd:77:5f:43:9c:73: 71:81:85:20:14:ff:0f:4e:27:c0:45:62:b7:12:a0: c4:be:c7:bb:f2:34:26:cf:cc:67:02:a2:5e:53:1c: 5c:47:93:7c:29:c5:c0:ea:d5:fd:d7:61:fe:db:03: d9:a5:c1:fe:6c:09:4c:ad:a4:5f:30:e0:c9:4f:80: 3a:6e:f1:25:51:67:6a:c4:78:2f:fb:c4:cc:9b:c8: 32:ca:38:3d:88:a9:86:94:b7:09:ec:59:99:b3:9a: 3b:59:3d:64:89:54:b4:04:31:8b:02:76:b3:22:fe: 28:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2D:86:D7:C7:A6:6B:17:BC:36:C1:D7:21:DD:F4:F6:78:29:53:F9 X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:a7:80:9c:de:bd:5d:1e:2d:9f:22:5d:6e:0f:e4:ba:ca:1f: 03:06:5e:15:0a:58:07:64:24:bc:8c:01:8f:51:31:78:10:cf: 37:a6:71:e8:38:d9:98:ea:3c:a0:1f:51:bf:ab:f1:77:2f:b6: 9f:58:1a:db:48:a8:9a:51:a6:b0:bc:ff:9b:23:f5:45:35:4a: 07:50:d1:83:69:d9:92:21:1b:3b:dd:30:c5:8f:8f:e4:39:d4: 42:28:0d:e4:6e:0a:a4:f1:b1:04:b1:30:9c:b0:da:2f:61:24: 5e:b7:35:01:29:ad:51:68:23:84:96:60:b1:50:8d:21:c2:cc: 07:bb:e9:ef:fe:07:d3:b4:f9:f1:77:b5:29:33:06:85:b8:c3: 64:3a:3a:8c:0a:b1:a8:e8:a6:88:6b:a2:9d:61:73:dd:1d:16: 64:c3:d3:be:dd:cb:9b:4f:b2:93:47:7c:9b:ff:ea:e1:4c:13: c5:0e:ce:3b:87:0c:e4:40:ae:dc:d6:35:3c:46:31:34:38:92: 7c:f4:0a:76:20:9b:7e:89:fd:dc:ad:52:01:cd:60:d9:f1:5f: a8:de:e7:d9:b4:15:2c:92:6d:2f:68:32:1a:9d:7a:de:57:ed: ad:85:f2:37:df:3f:c8:ee:e2:47:d9:8f:90:f5:d9:bd:3c:1e: 54:a9:83:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjYwNjIyMTg1NjQ0WhcNMjYwNjI5MTg1NjQ0WjAYMRYwFAYD VQQDEw02YTM5ODU2Yy1iMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZiYQLu1YN74wTgPQ+bUkauF7ECC7sqbTAgb9cjdd7KroJ0eXOmCHRpaJjP+ w0iwISk3+kvCq6vpJYwUCsttr/3hWisE2Logi3DRWuC7HFoXyAYqhrd6M150fNoA sxZbxFpEg7E0L6222LcqhkXTfJMDlm9MOYlHD8zrGWmJf4Ys2PnSeCRCWBkKDN+N LfzNd19DnHNxgYUgFP8PTifARWK3EqDEvse78jQmz8xnAqJeUxxcR5N8KcXA6tX9 12H+2wPZpcH+bAlMraRfMODJT4A6bvElUWdqxHgv+8TMm8gyyjg9iKmGlLcJ7FmZ s5o7WT1kiVS0BDGLAnazIv4oBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLQthtfH pmsXvDbB1yHd9PZ4KVP5MB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzKeAnN69XR4tnyJdbg/kusofAwZeFQpYB2QkvIwBj1ExeBDPN6Zx6DjZmOo8 oB9Rv6vxdy+2n1ga20iomlGmsLz/myP1RTVKB1DRg2nZkiEbO90wxY+P5DnUQigN 5G4KpPGxBLEwnLDaL2EkXrc1ASmtUWgjhJZgsVCNIcLMB7vp7/4H07T58Xe1KTMG hbjDZDo6jAqxqOimiGuinWFz3R0WZMPTvt3Lm0+yk0d8m//q4UwTxQ7OO4cM5ECu 3NY1PEYxNDiSfPQKdiCbfon93K1SAc1g2fFfqN7n2bQVLJJtL2gyGp163lftrYXy N98/yO7iR9mPkPXZvTweVKmD8Q== -----END CERTIFICATE-----Generated at Wed Jun 24 11:20:38 2026 by rpki-client