$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: /PNH64nMjUhhUMudsS+Eb5R9x47JKc/YOfzUJd74uok= Subject key identifier: 6D:15:8A:F9:C6:E4:22:2B:18:30:27:3A:59:9E:98:53:3E:BD:C0:64 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 10A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 1080 Signing time: Sat 20 Jun 2026 17:19:41 +0000 Manifest this update: Sat 20 Jun 2026 17:19:40 +0000 Manifest next update: Sat 27 Jun 2026 17:19:40 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: L+DcxZ1fFlnizINC0rfuMRSmsSiWNEREFBhBWAxEVOU=) 2: 23D70458076811F1A996F976023D8C67.roa (hash: sgDMPCu+RI22Qc97uKPio7BRMvudU0OhoHafl4iZZpk=) 3: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: T7iH4j+Fs0YGxwpO3ni8JBNnOoaLWOu3l74C8nsVoAc=) 4: ADFF1B80076711F1A8EB0774023D8C67.roa (hash: RKwgcMwcAkIc7uHynZPrQbWlXsZHj1vx0pht/X1vhHY=) 5: 6517EB7C5F7311F1B8BB43629547A888.roa (hash: e9s/phH1++I5qahFQ/2J1IQEPJuvHjVe4SztRtq433Y=) 6: B66836E029FD11F1B53E620AA6833773.roa (hash: Zn2BlNHWXlffBqPOiTmcc/nBhDrM+O8fOCYWBgcln1k=) 7: 24528B3C076811F1A996F976023D8C67.roa (hash: bWgfDX1GE7EGRP9RARHJZONgLN/vb6Xu6Lzu2McBHoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 17:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4257 (0x10a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Jun 20 17:19:40 2026 GMT Not After : Jun 27 17:19:40 2026 GMT Subject: CN=6a36cbac-aac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:b9:c1:9e:7b:a8:4e:37:c6:29:7a:2b:5d:fa: ea:85:a7:7a:e1:33:fb:0b:7d:00:f2:f8:77:54:06: 00:aa:fe:38:b7:a1:a6:13:a6:b8:aa:cf:30:64:a4: d9:67:e8:9d:f8:c2:a5:11:92:09:6e:54:6d:a0:6c: f9:f0:e5:04:fb:7a:b2:f3:4e:59:74:52:3d:f1:c1: f4:17:1e:0a:87:07:a7:8a:b6:2a:b3:af:02:0b:bd: 09:e1:2d:da:12:c1:32:f8:76:2c:fd:3a:91:40:2f: 84:53:be:29:8e:7d:6f:b0:c2:37:26:1c:f7:1b:bb: 5c:18:22:bb:e4:47:15:b4:91:a9:6a:ea:e8:be:3f: fc:2d:d2:eb:8d:02:4e:87:b3:23:32:d5:3c:aa:94: 97:e7:c2:26:8f:ce:9c:5b:a3:e8:91:e8:34:8a:64: 0b:7d:65:08:88:b8:70:c7:ed:05:1a:a6:5b:bd:e9: d9:f0:73:6a:27:11:a7:22:4b:7f:31:b8:f9:33:8b: 8c:43:62:5a:65:cf:b1:12:37:44:59:1a:82:01:94: 1d:3a:34:02:2e:26:71:41:d7:17:38:69:68:c6:6b: 29:f1:28:a6:82:11:96:f5:3d:33:ae:91:f8:f0:47: d1:ed:b9:c5:6d:07:b3:a1:2d:07:08:d3:85:4d:9d: 70:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:15:8A:F9:C6:E4:22:2B:18:30:27:3A:59:9E:98:53:3E:BD:C0:64 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:cb:09:80:53:8c:0c:b3:82:ff:95:d1:a9:b7:53:06:5f:27: 88:c4:08:a5:14:4e:72:64:94:90:df:6e:00:79:1a:b2:f7:9b: 73:fc:d7:88:09:3a:df:b7:6c:da:cf:06:73:9e:2b:88:26:43: 27:3c:05:77:c2:a6:a4:f7:fe:ef:b6:7f:ec:e5:0f:6a:ff:e1: 33:1c:8e:a0:c6:17:13:b2:86:03:7b:e6:e8:bb:6f:e2:e3:f8: c1:8e:19:b8:59:b8:f1:db:3b:f2:ae:da:bc:6d:47:27:09:38: 00:cb:b5:89:1b:7f:64:ef:5f:6f:40:b2:8f:21:71:b5:35:d1: 56:c8:51:33:a7:96:de:46:67:c2:93:fd:21:81:2a:a5:6a:66: 0f:cd:13:8a:d3:98:d9:99:5d:ac:6c:3d:23:04:e0:8a:5e:77: 0f:d4:91:af:16:65:d8:07:15:a0:90:4b:bc:2b:4e:ec:9c:4a: 34:c7:58:84:be:8d:3d:9a:17:91:fe:94:aa:e9:3f:63:8a:6d: e1:62:8a:41:48:db:17:96:fd:96:b5:66:49:7c:66:a3:a1:db: fc:11:34:ea:0c:dd:38:d7:1c:c3:6e:1f:71:9a:f7:5b:3f:7e: fe:1d:ba:2f:fa:24:1c:91:d5:54:35:6b:60:61:40:32:3b:de: 6b:a1:32:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjYwNjIwMTcxOTQwWhcNMjYwNjI3MTcxOTQwWjAYMRYwFAYD VQQDEw02YTM2Y2JhYy1hYWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj7nBnnuoTjfGKXorXfrqhad64TP7C30A8vh3VAYAqv44t6GmE6a4qs8wZKTZ Z+id+MKlEZIJblRtoGz58OUE+3qy805ZdFI98cH0Fx4KhwenirYqs68CC70J4S3a EsEy+HYs/TqRQC+EU74pjn1vsMI3Jhz3G7tcGCK75EcVtJGpaurovj/8LdLrjQJO h7MjMtU8qpSX58Imj86cW6Pokeg0imQLfWUIiLhwx+0FGqZbvenZ8HNqJxGnIkt/ Mbj5M4uMQ2JaZc+xEjdEWRqCAZQdOjQCLiZxQdcXOGloxmsp8SimghGW9T0zrpH4 8EfR7bnFbQezoS0HCNOFTZ1wzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG0VivnG 5CIrGDAnOlmemFM+vcBkMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEssJgFOMDLOC/5XRqbdTBl8niMQIpRROcmSUkN9uAHkasvebc/zXiAk637ds 2s8Gc54riCZDJzwFd8KmpPf+77Z/7OUPav/hMxyOoMYXE7KGA3vm6Ltv4uP4wY4Z uFm48ds78q7avG1HJwk4AMu1iRt/ZO9fb0CyjyFxtTXRVshRM6eW3kZnwpP9IYEq pWpmD80TitOY2ZldrGw9IwTgil53D9SRrxZl2AcVoJBLvCtO7JxKNMdYhL6NPZoX kf6Uquk/Y4pt4WKKQUjbF5b9lrVmSXxmo6Hb/BE06gzdONccw24fcZr3Wz9+/h26 L/okHJHVVDVrYGFAMjvea6Ey8Q== -----END CERTIFICATE-----Generated at Mon Jun 22 07:10:06 2026 by rpki-client