$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: eH5Aj7/fq3rJxdWolqQBIwU66sfDI7XUO8pGHBbsKGI= Subject key identifier: 69:DA:90:5D:FF:3B:77:46:32:6D:18:5A:27:FA:31:02:71:FB:D0:79 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0D71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0D46 Signing time: Mon 22 Jun 2026 18:08:50 +0000 Manifest this update: Mon 22 Jun 2026 18:08:50 +0000 Manifest next update: Mon 29 Jun 2026 18:08:50 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: ZrA3Ri6ymvrWoUntg4dZdPR0jFRfUiD0XW9auPvBaA0=) 2: F824C588FF7A11F0B218EB915B6F56BC.roa (hash: vyzv0f1THJyglSIA32Cmr/3tLhp6nkKIDvP00vthIq0=) 3: 4C8BB01CF0A511F0AE903042706F56BC.roa (hash: O4BcOq2hKD3I3RD3vTsJAeBqf6AIzX76ZzjjaHK+ElU=) 4: 4F383CB6FF6B11F0AD4BC885576F56BC.roa (hash: wwbAK8oiejrRqztY01yoKfr0EpZtJpfxnGCsmORuPJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3441 (0xd71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Jun 22 18:08:50 2026 GMT Not After : Jun 29 18:08:50 2026 GMT Subject: CN=6a397a32-830e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:14:a6:38:51:d5:a8:f8:d6:d8:c9:e9:12:49: 33:97:e7:f6:e6:32:86:b6:e9:9b:cd:73:72:34:dd: 89:62:ec:be:06:80:8f:a1:4c:06:77:d0:6e:2e:d3: fa:51:81:3a:96:a9:1c:6c:d5:22:2b:60:22:20:1e: 6a:cd:ba:c1:a7:e4:ce:47:37:5f:4b:0e:e3:ad:ad: 1b:a3:22:92:7f:af:06:d9:30:dd:1b:f0:a8:8d:c2: 1d:dc:a5:5c:02:a3:9a:55:5e:b8:2c:d4:21:da:58: d6:c8:a1:ba:76:8a:98:a2:78:4c:f8:d4:6d:3e:fb: fa:1b:69:1d:c9:e4:27:c5:f4:54:45:f1:55:49:5c: 7d:c0:7f:76:b3:7d:90:66:1e:59:e9:88:8a:78:43: 1c:ee:4a:c8:fd:75:33:ef:4f:ef:b3:3f:c3:06:ab: b0:aa:95:b8:3c:ce:35:fd:c5:26:7b:94:60:8d:4c: 5c:bc:9b:e5:f6:f0:c4:6c:f4:71:89:7b:ed:c5:5d: c7:22:de:5b:f9:93:f6:17:fb:3e:ce:e2:89:dc:d3: b0:53:f5:08:42:58:a7:ca:c8:0a:70:47:8d:6f:61: 4b:d7:83:ea:20:33:31:f4:25:6e:c2:e3:41:ce:9f: 99:de:6c:57:52:73:d8:f6:d0:b3:c6:63:bd:fd:fa: 48:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DA:90:5D:FF:3B:77:46:32:6D:18:5A:27:FA:31:02:71:FB:D0:79 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:fe:e3:53:47:2d:84:84:ef:fe:f9:39:90:19:ed:33:0d:a2: 0d:b2:a4:a5:5d:b8:15:8d:4c:48:43:80:78:24:c8:0f:4a:71: de:58:3e:95:e2:8e:a6:59:71:94:40:b8:c9:26:96:59:29:f5: eb:96:9d:79:1e:86:c1:6e:11:5f:89:f7:42:48:c8:34:69:88: 93:f6:ef:54:14:f9:f6:85:77:32:ca:22:21:f4:44:c3:f0:86: ab:16:63:04:85:a2:b9:63:f0:21:25:99:32:5c:74:f0:20:2b: d4:ca:e2:e5:d1:33:85:c1:b5:69:1b:d9:58:d2:6c:8a:de:a0: 40:e7:bd:79:91:6b:20:eb:bb:22:08:ca:bf:d6:8b:1c:fe:96: 03:f3:84:e0:69:99:e9:cf:b7:a6:7c:c9:d5:8d:4f:07:55:8d: 31:09:f4:2f:3d:7d:6a:a7:4c:e8:14:e9:96:a4:3d:2e:dd:95: 38:3e:df:2d:93:bb:6b:7d:5b:0c:03:0f:0f:32:f7:bb:62:90: 61:35:ce:18:31:71:9b:6b:22:40:69:bd:7f:cd:59:07:9f:f4: 3f:55:aa:3d:19:f8:1c:39:c6:31:d0:53:f1:66:db:51:06:27: d3:51:99:fb:50:eb:59:23:8a:e0:ab:3c:b6:3a:9e:bb:c3:0b: 87:cf:3c:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjYwNjIyMTgwODUwWhcNMjYwNjI5MTgwODUwWjAYMRYwFAYD VQQDEw02YTM5N2EzMi04MzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApBSmOFHVqPjW2MnpEkkzl+f25jKGtumbzXNyNN2JYuy+BoCPoUwGd9BuLtP6 UYE6lqkcbNUiK2AiIB5qzbrBp+TORzdfSw7jra0boyKSf68G2TDdG/CojcId3KVc AqOaVV64LNQh2ljWyKG6doqYonhM+NRtPvv6G2kdyeQnxfRURfFVSVx9wH92s32Q Zh5Z6YiKeEMc7krI/XUz70/vsz/DBquwqpW4PM41/cUme5RgjUxcvJvl9vDEbPRx iXvtxV3HIt5b+ZP2F/s+zuKJ3NOwU/UIQlinysgKcEeNb2FL14PqIDMx9CVuwuNB zp+Z3mxXUnPY9tCzxmO9/fpI0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGnakF3/ O3dGMm0YWif6MQJx+9B5MB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYf7jU0cthITv/vk5kBntMw2iDbKkpV24FY1MSEOAeCTID0px3lg+leKOpllx lEC4ySaWWSn165adeR6GwW4RX4n3QkjINGmIk/bvVBT59oV3MsoiIfREw/CGqxZj BIWiuWPwISWZMlx08CAr1Mri5dEzhcG1aRvZWNJsit6gQOe9eZFrIOu7IgjKv9aL HP6WA/OE4GmZ6c+3pnzJ1Y1PB1WNMQn0Lz19aqdM6BTplqQ9Lt2VOD7fLZO7a31b DAMPDzL3u2KQYTXOGDFxm2siQGm9f81ZB5/0P1WqPRn4HDnGMdBT8WbbUQYn01GZ +1DrWSOK4Ks8tjqeu8MLh888YA== -----END CERTIFICATE-----Generated at Wed Jun 24 15:35:09 2026 by rpki-client