$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: QhACs4BUwrMlbbc3CucZbHzD+Dy0PT1KhoejWk9/VyA= Subject key identifier: 56:80:53:C8:BE:08:5B:33:61:CB:DD:FE:0F:9E:D8:4B:8D:69:85:BA Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 0A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 0A1F Signing time: Mon 22 Jun 2026 20:23:44 +0000 Manifest this update: Mon 22 Jun 2026 20:23:43 +0000 Manifest next update: Mon 29 Jun 2026 20:23:43 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: va8nDcq7UX7lSeXcDV9Mp1E+rlctALTZlHDC+wDdG+8=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: OYi6iPOzlWh6eoXqX49fJiVTJCcfXyryKflqKEAnvYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 20:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2, serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: Jun 22 20:23:43 2026 GMT Not After : Jun 29 20:23:43 2026 GMT Subject: CN=6a3999d0-d822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:04:3d:38:a3:90:ea:b1:7f:04:5b:ad:f1:d9: 53:e9:f7:f1:64:85:59:6e:fc:a0:50:40:8e:34:52: fe:1e:c6:6c:06:e4:b5:c3:3b:bf:10:9f:2c:bc:30: ab:7e:8f:f9:ec:b4:c6:31:c8:20:4f:b1:1a:64:06: ce:8f:8d:94:8b:9b:db:cb:ca:8b:85:b4:5e:7b:20: c7:96:3a:9c:42:b5:4a:cf:b7:01:c2:0b:a2:ad:94: b2:34:75:fa:a6:8d:78:8d:45:b0:ce:f4:9a:f0:9f: b5:26:08:9d:ca:91:01:15:96:5c:9f:ea:14:f7:40: 04:9e:5c:b3:3d:15:7a:69:a5:ff:92:3e:19:c5:08: fe:86:4e:43:43:eb:82:f6:92:28:d0:57:7b:90:50: 24:db:32:79:be:ab:dc:89:ea:f8:ff:d0:d4:9b:14: 90:d1:40:f2:36:be:4b:c9:09:ad:f1:ee:8e:02:b4: 2e:aa:d2:b3:d7:b1:71:80:16:8b:8f:d1:dc:b8:b3: ad:55:84:5c:45:60:5d:1d:dd:e6:16:35:5a:ff:ce: fc:05:ff:cc:cb:7a:84:23:08:af:88:1d:8e:e9:4d: b8:e7:61:95:89:ed:d0:95:1b:54:0b:e6:93:99:66: bd:fa:ce:4d:cf:3f:94:34:4b:d5:10:bd:54:42:4a: e5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:80:53:C8:BE:08:5B:33:61:CB:DD:FE:0F:9E:D8:4B:8D:69:85:BA X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5e:62:da:5d:37:ea:50:9b:f7:cb:39:90:f0:4a:e0:ac:3a: ad:10:0e:16:cd:c5:03:7d:e2:9f:08:86:00:53:a2:d2:e6:8a: 06:74:bd:40:27:c9:de:79:32:78:8f:29:ed:10:f2:e4:a4:76: 94:4e:97:26:b2:66:ea:d7:4f:e9:76:46:fa:b2:79:10:af:0c: 50:7d:76:7e:9e:c9:a6:9e:04:49:65:49:63:17:d3:dd:af:58: 7a:2a:97:a2:37:7b:5d:34:45:27:36:73:3c:be:7f:36:52:b7: b5:d7:c3:06:4d:df:11:a6:cd:69:eb:e2:aa:13:c8:72:cc:ad: f0:ca:3b:6b:d3:1f:2a:27:02:f2:e2:d2:23:e5:50:86:60:31: ec:7e:14:f2:91:05:22:47:68:e5:5a:70:8d:2e:8a:00:78:15: a2:cf:6b:56:d9:ed:5d:2b:dc:e1:b7:67:82:50:33:9e:20:f1: 93:31:73:f1:6c:57:04:58:18:5e:43:9e:8c:29:76:60:9e:88: bb:1f:18:8f:43:02:b5:27:c1:74:c5:4c:7b:57:06:92:c9:23: 3c:15:7e:29:e0:9c:20:19:74:7c:20:ad:3c:ee:d6:e6:10:9d: 77:9c:14:c6:ec:82:3a:b5:3d:ba:18:db:23:27:f0:71:3d:20: e2:77:97:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjYwNjIyMjAyMzQzWhcNMjYwNjI5MjAyMzQzWjAYMRYwFAYD VQQDEw02YTM5OTlkMC1kODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgQ9OKOQ6rF/BFut8dlT6ffxZIVZbvygUECONFL+HsZsBuS1wzu/EJ8svDCr fo/57LTGMcggT7EaZAbOj42Ui5vby8qLhbReeyDHljqcQrVKz7cBwguirZSyNHX6 po14jUWwzvSa8J+1JgidypEBFZZcn+oU90AEnlyzPRV6aaX/kj4ZxQj+hk5DQ+uC 9pIo0Fd7kFAk2zJ5vqvcier4/9DUmxSQ0UDyNr5LyQmt8e6OArQuqtKz17FxgBaL j9HcuLOtVYRcRWBdHd3mFjVa/878Bf/My3qEIwiviB2O6U2452GVie3QlRtUC+aT mWa9+s5Nzz+UNEvVEL1UQkrlWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFaAU8i+ CFszYcvd/g+e2EuNaYW6MB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL15i2l036lCb98s5kPBK4Kw6rRAOFs3FA33inwiGAFOi0uaKBnS9QCfJ3nky eI8p7RDy5KR2lE6XJrJm6tdP6XZG+rJ5EK8MUH12fp7Jpp4ESWVJYxfT3a9YeiqX ojd7XTRFJzZzPL5/NlK3tdfDBk3fEabNaeviqhPIcsyt8Mo7a9MfKicC8uLSI+VQ hmAx7H4U8pEFIkdo5VpwjS6KAHgVos9rVtntXSvc4bdnglAzniDxkzFz8WxXBFgY XkOejCl2YJ6Iux8Yj0MCtSfBdMVMe1cGkskjPBV+KeCcIBl0fCCtPO7W5hCdd5wU xuyCOrU9uhjbIyfwcT0g4neXmw== -----END CERTIFICATE-----Generated at Wed Jun 24 11:15:15 2026 by rpki-client