$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: LVtcDcN2XOzCZpgIxwZ/efJH4BusFhmmJClq2r6DVq0= Subject key identifier: 3E:6E:60:39:23:4F:9F:3A:C2:D5:0B:7E:94:B7:55:6D:89:73:C4:7F Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: 0194 Signing time: Tue 23 Jun 2026 04:34:52 +0000 Manifest this update: Tue 23 Jun 2026 04:34:51 +0000 Manifest next update: Tue 30 Jun 2026 04:34:51 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: xKuwgyJ/RsCIcE+1CGkwEz8c/f6DvULty3+ERgVxE6s=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: pG6Zn0Fg273gHL0Q1D0WBR6oD/KGcYvvimAkz1OUMoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 04:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Jun 23 04:34:51 2026 GMT Not After : Jun 30 04:34:51 2026 GMT Subject: CN=6a3a0cec-2cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:17:d2:af:c1:97:5b:cb:02:b3:5b:5e:ab:52: 1e:95:9d:a7:ff:82:f0:05:8e:05:47:b0:f3:d0:71: f7:7a:ad:fd:36:a4:88:48:a6:eb:28:07:b2:24:69: 49:f1:98:68:4f:8a:23:3c:de:34:9a:0d:b2:3d:4e: 95:b1:88:5d:82:70:31:59:d9:82:c9:58:78:8f:d4: 52:58:64:3d:52:b1:ea:37:8c:ae:da:c1:0b:ab:e9: ed:da:c4:4a:33:ae:a2:26:7f:66:ce:e3:13:f9:c7: e6:da:fa:f9:57:48:fe:8c:c6:35:be:ff:6d:59:d8: 17:73:90:ac:9c:cb:6c:f6:37:9f:2d:11:bc:4a:2e: af:20:36:6d:96:10:dd:74:a6:63:1d:12:97:5c:62: d5:55:90:a9:15:99:02:88:0f:0a:31:fd:8c:fe:95: 02:24:d2:c3:f1:9d:2a:fb:4d:34:7b:34:f7:e2:f5: df:1b:b7:b2:bc:c6:aa:de:0c:cc:35:e8:c5:ef:76: a4:e4:47:d0:8a:e1:83:21:d8:27:0f:7c:17:37:58: ca:36:55:d7:4b:aa:6b:92:ac:5e:a1:0c:df:24:b9: d4:c8:67:45:a0:fc:90:62:fc:38:cd:24:12:75:2e: d1:9e:20:83:48:6e:42:a7:fd:d1:98:17:f7:b5:fc: 09:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6E:60:39:23:4F:9F:3A:C2:D5:0B:7E:94:B7:55:6D:89:73:C4:7F X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:34:a0:8c:ac:a9:22:83:68:e3:9e:cf:76:7b:01:c6:97:57: e8:8c:51:4d:0f:dd:4b:e1:04:14:bd:87:e6:f9:09:b6:aa:12: d1:c3:c6:de:89:ba:57:c8:18:73:12:92:a4:44:7f:f2:ec:a2: 19:ca:4a:d0:c6:8c:81:b1:8a:fe:27:c9:db:a3:52:c4:6e:97: 2f:4e:30:d1:79:54:5c:f6:b6:7d:59:ab:61:59:df:ed:dd:7f: 45:50:af:e8:bd:25:71:07:78:fb:2e:d3:1d:a1:18:db:c5:4b: ce:a6:01:da:6c:45:08:37:0a:3f:b1:c9:f0:7f:af:74:17:71: e1:6a:d9:26:2b:23:98:ec:b7:67:8c:a2:16:cb:be:c6:e5:76: 3d:77:ab:5a:3d:d5:a7:bb:91:32:02:73:7f:6b:24:e9:28:ae: 70:ea:fa:dc:f3:de:4c:4c:62:1d:6c:48:7d:5e:ec:e8:e3:c3: 1e:c6:61:cf:6a:fb:f8:99:cd:a7:f2:5f:0d:1d:86:db:a9:3f: 03:af:e0:2f:63:24:e3:e8:4f:5a:6d:bf:db:94:31:47:96:76: 40:43:1e:bf:e6:1d:e5:8a:8f:83:7e:85:4c:3f:88:3b:17:94: 24:26:47:e8:bd:5d:f7:c1:94:7e:eb:c7:8d:f0:dd:22:d7:a6: b1:21:4d:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjYwNjIzMDQzNDUxWhcNMjYwNjMwMDQzNDUxWjAYMRYwFAYD VQQDEw02YTNhMGNlYy0yY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxfSr8GXW8sCs1teq1IelZ2n/4LwBY4FR7Dz0HH3eq39NqSISKbrKAeyJGlJ 8ZhoT4ojPN40mg2yPU6VsYhdgnAxWdmCyVh4j9RSWGQ9UrHqN4yu2sELq+nt2sRK M66iJn9mzuMT+cfm2vr5V0j+jMY1vv9tWdgXc5CsnMts9jefLRG8Si6vIDZtlhDd dKZjHRKXXGLVVZCpFZkCiA8KMf2M/pUCJNLD8Z0q+000ezT34vXfG7eyvMaq3gzM NejF73ak5EfQiuGDIdgnD3wXN1jKNlXXS6prkqxeoQzfJLnUyGdFoPyQYvw4zSQS dS7RniCDSG5Cp/3RmBf3tfwJlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD5uYDkj T586wtULfpS3VW2Jc8R/MB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASzSgjKypIoNo457PdnsBxpdX6IxRTQ/dS+EEFL2H5vkJtqoS0cPG3om6V8gY cxKSpER/8uyiGcpK0MaMgbGK/ifJ26NSxG6XL04w0XlUXPa2fVmrYVnf7d1/RVCv 6L0lcQd4+y7THaEY28VLzqYB2mxFCDcKP7HJ8H+vdBdx4WrZJisjmOy3Z4yiFsu+ xuV2PXerWj3Vp7uRMgJzf2sk6SiucOr63PPeTExiHWxIfV7s6OPDHsZhz2r7+JnN p/JfDR2G26k/A6/gL2Mk4+hPWm2/25QxR5Z2QEMev+Yd5YqPg36FTD+IOxeUJCZH 6L1d98GUfuvHjfDdItemsSFN4w== -----END CERTIFICATE-----Generated at Wed Jun 24 11:28:51 2026 by rpki-client