$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: Obr2ZzbUi32Be5qpdrNRtxJlkZJnAfitymVaBDmVmoM= Subject key identifier: FD:9E:46:9C:82:6B:35:C5:52:DA:AE:47:E2:C3:96:7F:4A:60:88:AD Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 02A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 029B Signing time: Tue 23 Jun 2026 01:50:09 +0000 Manifest this update: Tue 23 Jun 2026 01:50:08 +0000 Manifest next update: Tue 30 Jun 2026 01:50:08 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: hTyZh8tTqws53TXs3BOqWY71zPUwgN41D2fXyYPdTow=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 01:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Jun 23 01:50:08 2026 GMT Not After : Jun 30 01:50:08 2026 GMT Subject: CN=6a39e651-95ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ac:92:fb:a5:a8:54:cf:ae:de:17:5d:93:f7: e9:35:fd:4c:ad:33:7c:fe:d0:eb:b2:4f:eb:2f:5a: ad:d8:e7:6d:1b:48:56:d3:a5:c4:9b:66:23:5e:09: 72:61:38:d2:18:2b:71:da:b0:11:0e:94:ef:fa:a4: 28:71:97:a3:a6:68:ea:7b:37:7a:01:63:e2:fc:7d: 2e:0d:27:b7:42:e2:f0:fe:94:b1:dd:d1:90:bb:24: 08:b7:b5:32:3d:03:b1:1d:bc:7b:1e:99:c4:28:82: 3f:6e:29:cb:30:9c:75:a9:bf:c8:73:77:ba:b2:14: b5:98:2c:0b:29:fc:d3:91:ab:c1:2c:7a:7a:2a:4f: 0b:df:1a:b7:ac:4f:f9:ad:51:b3:b5:24:da:80:7f: 4c:12:8c:2b:d4:d7:c4:41:7d:36:14:8c:b4:93:7d: e0:b7:ac:e5:fd:32:24:23:95:ca:8e:3a:08:c0:52: 4c:dc:fa:33:87:7f:5e:11:20:37:01:5b:95:9a:a3: 38:e7:d6:c1:79:41:78:85:6f:92:5a:39:27:16:e3: d2:9c:7d:7f:f0:8b:8f:5d:48:b4:88:c1:41:07:ce: bb:1a:9c:da:09:0f:b9:99:54:b8:f5:ce:67:09:78: b7:ab:f5:84:8d:0c:5f:31:1c:16:fb:05:88:a9:9d: 11:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9E:46:9C:82:6B:35:C5:52:DA:AE:47:E2:C3:96:7F:4A:60:88:AD X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:9b:96:70:29:47:e1:ed:c3:b9:79:8e:4f:4c:9a:1e:2e:cf: 76:e5:78:59:3c:5e:ac:87:cd:7d:58:a9:09:cd:ac:ef:70:a6: 93:03:c1:11:cb:8f:1e:d2:4a:e0:d9:e3:55:87:07:87:b1:ee: 89:1b:9c:fa:9a:2d:0a:b5:99:11:f6:bc:68:63:59:46:25:77: ab:3f:98:3f:24:60:d5:c4:0f:7a:e7:07:74:45:8c:c0:3f:75: ca:f2:83:e6:8d:04:d8:d6:8c:3f:57:81:10:82:42:40:a9:e3: 6d:52:ba:a2:80:b0:02:80:cd:6e:e9:91:fb:e5:67:22:55:8c: 6d:2d:eb:ee:f7:a9:b9:6a:3b:43:9d:e3:07:7c:01:c3:ad:73: 47:1b:01:1a:8f:be:32:8c:5c:0a:06:fb:00:c8:80:02:fe:a1: 60:18:c8:92:8a:ad:8e:08:68:be:0a:23:c4:d4:60:4f:50:28: 02:b9:43:57:2b:74:71:5b:31:62:4c:d7:05:68:64:90:d9:2c: 64:20:44:02:ba:aa:d1:12:e1:e7:fe:8e:f6:34:6a:66:58:b9: ec:b3:43:d7:9c:ab:72:44:71:6b:fa:70:75:1f:7c:20:68:e3: 4a:58:12:9e:c1:00:07:56:aa:fe:55:82:c7:77:97:c5:dd:9d: ef:40:5b:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwNjIzMDE1MDA4WhcNMjYwNjMwMDE1MDA4WjAYMRYwFAYD VQQDEw02YTM5ZTY1MS05NWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqyS+6WoVM+u3hddk/fpNf1MrTN8/tDrsk/rL1qt2OdtG0hW06XEm2YjXgly YTjSGCtx2rARDpTv+qQocZejpmjqezd6AWPi/H0uDSe3QuLw/pSx3dGQuyQIt7Uy PQOxHbx7HpnEKII/binLMJx1qb/Ic3e6shS1mCwLKfzTkavBLHp6Kk8L3xq3rE/5 rVGztSTagH9MEowr1NfEQX02FIy0k33gt6zl/TIkI5XKjjoIwFJM3Pozh39eESA3 AVuVmqM459bBeUF4hW+SWjknFuPSnH1/8IuPXUi0iMFBB867GpzaCQ+5mVS49c5n CXi3q/WEjQxfMRwW+wWIqZ0RUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP2eRpyC azXFUtquR+LDln9KYIitMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASpuWcClH4e3DuXmOT0yaHi7PduV4WTxerIfNfVipCc2s73CmkwPBEcuPHtJK 4NnjVYcHh7HuiRuc+potCrWZEfa8aGNZRiV3qz+YPyRg1cQPeucHdEWMwD91yvKD 5o0E2NaMP1eBEIJCQKnjbVK6ooCwAoDNbumR++VnIlWMbS3r7vepuWo7Q53jB3wB w61zRxsBGo++MoxcCgb7AMiAAv6hYBjIkoqtjghovgojxNRgT1AoArlDVyt0cVsx YkzXBWhkkNksZCBEArqq0RLh5/6O9jRqZli57LND15yrckRxa/pwdR98IGjjSlgS nsEAB1aq/lWCx3eXxd2d70BbEg== -----END CERTIFICATE-----Generated at Tue Jun 23 20:18:25 2026 by rpki-client