$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: lwMtoitw+hSoDaXtYZTrPdtJUOf9s2oGy9HoTk0zT7c= Subject key identifier: 91:52:29:1D:4A:1E:D4:06:71:70:77:3F:D7:CE:FA:70:29:F7:BF:2C Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 08C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 0874 Signing time: Wed 10 Jun 2026 20:58:27 +0000 Manifest this update: Wed 10 Jun 2026 20:58:26 +0000 Manifest next update: Wed 17 Jun 2026 20:58:26 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: RI59Xdu+sDhgIknbalXfwwJoGjS1smGA0xsgTNJJusM=) 2: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: 2mIyjIYN6IO7ZQ4FUwscfGnk78kTtsjolDojwIN0av0=) 3: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: +r+gvF4pkq6hFHbY+ZoaIiUoalmLLSMykW5BxcQDeFU=) 4: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: JkwlB4IFE4Dgm1EcLQn9CRo6PclYWkjqCYFJJbMHsj0=) 5: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: i7X6zewMmXOfmuZsHLNceM/lQghxWwQZ7AxU0vSWV0M=) 6: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: ESImnuHKksdWJK2TDU4E1UVvcvoZ37KeHVw4wPPeVXE=) 7: B512A570109211ECA693D74EC4F9AE02.roa (hash: L7d1U3gGL3grFk1wnPeyJKdZ3FejFM4vvmLKY3IRi5A=) 8: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: +cRs2PboXe8g3+V+AJzpQpdTweZR3TGc016yIhZSQMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2241 (0x8c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Jun 10 20:58:26 2026 GMT Not After : Jun 17 20:58:26 2026 GMT Subject: CN=6a29cff3-fa5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c8:6a:4e:41:00:23:ad:05:18:e3:6f:cb:ee: a0:44:ff:d6:0d:34:48:87:fd:21:e5:5c:98:5d:3e: cc:f7:12:ac:6a:70:ac:58:59:e1:76:f9:55:50:81: 76:04:c5:d8:2e:a4:e5:df:6a:9b:df:9b:be:be:a5: 1a:e3:fd:47:65:f3:e6:ef:04:2a:2a:f5:e3:17:b3: 1e:c1:3f:d6:63:aa:60:99:12:31:f8:64:a5:ba:38: 9f:d3:77:0a:cd:97:46:51:1b:59:9b:f6:02:15:11: 45:bc:3e:bf:ee:79:f6:07:95:ae:0e:29:19:61:95: 70:a0:68:f0:45:8c:4c:b6:ba:e6:10:30:ae:06:8f: 91:8b:82:c4:b1:50:f0:82:8b:ed:a0:8c:34:ae:b1: 5c:eb:e3:b2:7a:85:dc:3b:82:fb:5d:d1:dc:b7:4b: 2c:4b:7d:8a:34:12:6f:ba:49:72:86:a4:2a:b1:33: 7a:65:1c:76:8f:17:6d:72:5d:d0:c9:aa:7c:8f:06: da:62:8a:58:c4:8b:2c:ab:55:93:bd:8a:52:9d:86: 6e:3d:54:37:4b:a0:91:15:ef:b0:c0:54:81:b8:78: fe:2c:5f:e9:04:94:eb:4f:cd:ea:67:64:86:59:22: e9:c9:9e:95:2f:77:0f:f2:e9:40:34:08:df:ad:3e: 66:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:52:29:1D:4A:1E:D4:06:71:70:77:3F:D7:CE:FA:70:29:F7:BF:2C X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:09:45:4c:88:ce:e0:8e:e4:75:e6:a5:be:96:26:58:62:a4: 54:da:85:6d:81:84:e0:d4:6f:48:42:1d:0d:72:a4:a8:8f:fa: dc:a3:22:01:05:e5:8f:f3:0a:ed:59:66:80:7b:c7:37:07:db: 28:87:85:7d:61:6c:4c:a7:2f:c7:78:68:b5:e1:38:1f:d3:d6: eb:99:6e:16:4d:2d:09:54:28:71:9e:c5:f0:81:00:f2:08:74: 66:53:1c:16:a1:32:3f:c4:62:d4:51:ec:1e:b8:a3:fe:da:3f: c0:45:0b:be:eb:e6:12:e4:9e:f8:b8:b2:9e:8a:7a:50:56:6f: e9:4c:c4:20:f8:85:00:08:cf:37:64:b4:bd:cb:50:4a:12:a8: 6a:c3:4e:83:4b:cb:8f:2c:d8:27:4b:cd:db:49:fe:45:dc:c3: 87:f5:50:59:fa:f2:f0:50:70:10:ab:0c:a2:18:df:29:2f:3a: 07:7f:f8:f9:e2:39:50:47:e8:04:da:ec:95:fd:39:f7:14:f7: 46:68:e8:86:6f:5b:3b:d8:92:0a:3b:ed:97:c9:9e:7d:95:f8: c8:5a:56:95:91:7e:61:00:41:58:1b:b8:d2:2f:27:09:10:d9: dd:c7:d7:5c:ef:c6:20:9c:8e:e1:0d:20:76:4f:cc:f0:c5:29: 1b:d1:45:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjYwNjEwMjA1ODI2WhcNMjYwNjE3MjA1ODI2WjAYMRYwFAYD VQQDEw02YTI5Y2ZmMy1mYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18hqTkEAI60FGONvy+6gRP/WDTRIh/0h5VyYXT7M9xKsanCsWFnhdvlVUIF2 BMXYLqTl32qb35u+vqUa4/1HZfPm7wQqKvXjF7MewT/WY6pgmRIx+GSlujif03cK zZdGURtZm/YCFRFFvD6/7nn2B5WuDikZYZVwoGjwRYxMtrrmEDCuBo+Ri4LEsVDw govtoIw0rrFc6+OyeoXcO4L7XdHct0ssS32KNBJvuklyhqQqsTN6ZRx2jxdtcl3Q yap8jwbaYopYxIssq1WTvYpSnYZuPVQ3S6CRFe+wwFSBuHj+LF/pBJTrT83qZ2SG WSLpyZ6VL3cP8ulANAjfrT5mpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJFSKR1K HtQGcXB3P9fO+nAp978sMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmQlFTIjO4I7kdealvpYmWGKkVNqFbYGE4NRvSEIdDXKkqI/63KMiAQXlj/MK 7VlmgHvHNwfbKIeFfWFsTKcvx3hoteE4H9PW65luFk0tCVQocZ7F8IEA8gh0ZlMc FqEyP8Ri1FHsHrij/to/wEULvuvmEuSe+Liynop6UFZv6UzEIPiFAAjPN2S0vctQ ShKoasNOg0vLjyzYJ0vN20n+RdzDh/VQWfry8FBwEKsMohjfKS86B3/4+eI5UEfo BNrslf059xT3Rmjohm9bO9iSCjvtl8mefZX4yFpWlZF+YQBBWBu40i8nCRDZ3cfX XO/GIJyO4Q0gdk/M8MUpG9FFCQ== -----END CERTIFICATE-----Generated at Fri Jun 12 20:41:44 2026 by rpki-client