$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: TrSV/6UEC/NNYprTQx3fGzOoy0MJhAjMZkmD9G9lt0g= Subject key identifier: B1:F0:68:A5:7A:E3:C9:00:E6:34:D9:AE:B3:EC:40:4D:DA:35:CC:50 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 95 Signing time: Thu 11 Jun 2026 09:47:52 +0000 Manifest this update: Thu 11 Jun 2026 09:47:52 +0000 Manifest next update: Thu 18 Jun 2026 09:47:52 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: ZZeyRQjAsPWmU4EaXW5bUpGA2XveSRfYv5FtjMH5d1Y=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: hmo0JZjqsUcXR1CeyKb5AUyvewOo9tGw1tDFanCmkiU=) 3: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Rt4TGbr/K+WJ5nQlhD3lcCPl9EyJK1zP7OfMfktiw14=) 4: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: ZTYnYrXftu4EMVac2jtmasDDa1311QW4YkSq9Et/mjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 09:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Jun 11 09:47:52 2026 GMT Not After : Jun 18 09:47:52 2026 GMT Subject: CN=6a2a8448-427e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b1:25:37:33:c2:cb:e5:05:f5:a7:e8:85:ea: 58:b7:55:7c:25:ff:b0:e9:63:6b:c6:d8:46:7b:d1: 28:df:50:26:e3:3f:e1:0d:91:34:ae:ba:71:80:63: f8:5d:37:b0:91:62:0e:32:7c:13:71:4d:8f:ee:dd: 45:a7:fc:18:1a:db:53:ba:71:3b:ec:57:47:c5:24: 82:1c:2a:40:30:94:f5:69:5a:e2:d9:d0:37:e2:f4: 62:d3:42:1b:72:75:b8:e2:1d:e1:f9:7a:6d:32:ea: d5:1d:c4:e6:d4:6b:59:1b:40:49:1a:ed:fb:f7:2e: 54:3c:50:63:86:9e:71:01:4f:6f:6e:6e:83:fb:ba: 1d:b3:96:87:c9:61:fd:2e:6b:d7:63:e5:4f:ff:85: cc:62:57:d7:e6:77:ff:0e:57:b5:b5:b7:54:a0:b7: 6e:77:8b:b3:5d:65:30:41:e9:5e:4f:b9:ca:68:1f: 2c:d5:0e:6d:6e:0f:e4:fd:5f:f3:77:12:07:45:5f: dd:9b:3a:69:77:7d:55:2f:78:74:18:47:69:b6:99: 92:8e:c0:e1:dc:65:54:8a:cb:37:78:7b:a1:aa:a4: d8:04:f6:13:f3:a6:f9:14:08:58:84:f3:5d:e3:c7: ff:be:50:12:3e:9f:a8:6e:49:45:3e:0d:6a:a1:1f: 31:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F0:68:A5:7A:E3:C9:00:E6:34:D9:AE:B3:EC:40:4D:DA:35:CC:50 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:f9:04:55:ff:3a:03:5a:ab:5f:1b:ee:43:3e:04:93:03:c4: 6a:e1:54:d0:cc:71:3e:07:f7:e1:28:4c:ba:26:19:3f:66:ac: ab:d1:4f:18:48:1e:42:83:f8:fc:04:a6:34:73:88:dc:e8:a7: 05:f5:15:92:21:f3:95:8e:e4:f5:4e:08:a8:f2:21:2a:50:81: 32:27:ac:d3:5c:b0:58:cf:dd:9e:1d:c8:05:c2:58:6b:4d:9e: 2a:65:51:48:73:d7:24:49:e9:c2:5b:e6:d7:32:d2:0e:d0:3f: 73:57:ab:5f:63:e8:72:b1:b3:e0:45:26:61:45:23:06:b2:ec: 5e:e7:23:5e:1d:18:2d:82:d9:7a:b7:70:c1:b1:2d:cb:f3:d8: d1:8a:a1:6a:9a:4a:67:14:11:76:56:9e:74:df:29:f3:9e:f0: 11:7b:4a:73:38:a1:27:7d:a4:2c:5f:c1:b7:14:90:a3:f4:bb: 8a:e5:5f:9e:b3:14:c0:6e:50:3a:43:1c:86:e8:8e:78:13:87: 08:24:a9:79:51:c6:a5:3b:a8:a4:00:da:b9:0d:42:79:f7:33: d5:a5:f1:50:e8:74:f9:3f:9b:bb:43:66:2e:9b:13:fb:6b:e9: d5:14:e7:31:85:37:29:c9:d1:4e:b8:c7:75:27:0f:da:11:1b: e6:cb:c3:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwODcxMTAvBgNVBAUTKDg1MTAwRTVBMUZCQUU1RkUxQTY1Q0JGMTU3MzQxMzBB OEU1NDFCQjIwHhcNMjYwNjExMDk0NzUyWhcNMjYwNjE4MDk0NzUyWjAYMRYwFAYD VQQDEw02YTJhODQ0OC00MjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLElNzPCy+UF9afohepYt1V8Jf+w6WNrxthGe9Eo31Am4z/hDZE0rrpxgGP4 XTewkWIOMnwTcU2P7t1Fp/wYGttTunE77FdHxSSCHCpAMJT1aVri2dA34vRi00Ib cnW44h3h+XptMurVHcTm1GtZG0BJGu379y5UPFBjhp5xAU9vbm6D+7ods5aHyWH9 LmvXY+VP/4XMYlfX5nf/Dle1tbdUoLdud4uzXWUwQeleT7nKaB8s1Q5tbg/k/V/z dxIHRV/dmzppd31VL3h0GEdptpmSjsDh3GVUiss3eHuhqqTYBPYT86b5FAhYhPNd 48f/vlASPp+obklFPg1qoR8x7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLHwaKV6 48kA5jTZrrPsQE3aNcxQMB8GA1UdIwQYMBaAFIUQDlofuuX+GmXL8Vc0EwqOVBuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA4Ny80ODg4MzEzMjhF QUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVmNGFaY3Z4VnpRVENvNVVH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA4Ny80ODg4MzEzMjhFQUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVm NGFaY3Z4VnpRVENvNVVHN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn/kEVf86A1qrXxvuQz4EkwPEauFU0MxxPgf34ShMuiYZP2asq9FPGEgeQoP4 /ASmNHOI3OinBfUVkiHzlY7k9U4IqPIhKlCBMies01ywWM/dnh3IBcJYa02eKmVR SHPXJEnpwlvm1zLSDtA/c1erX2PocrGz4EUmYUUjBrLsXucjXh0YLYLZerdwwbEt y/PY0YqhappKZxQRdlaedN8p857wEXtKczihJ32kLF/BtxSQo/S7iuVfnrMUwG5Q OkMchuiOeBOHCCSpeVHGpTuopADauQ1Cefcz1aXxUOh0+T+bu0NmLpsT+2vp1RTn MYU3KcnRTrjHdScP2hEb5svDnQ== -----END CERTIFICATE-----Generated at Fri Jun 12 18:15:07 2026 by rpki-client