$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: EQn2h1Imd8Zb2ckgkckNu6gPxO3LgjO/rFf0VzVHMbU= Subject key identifier: 3A:8C:CA:61:52:A6:BD:1A:AE:D6:72:20:FB:AC:07:DA:9F:A9:64:83 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0F33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0F15 Signing time: Mon 22 Jun 2026 17:35:57 +0000 Manifest this update: Mon 22 Jun 2026 17:35:56 +0000 Manifest next update: Mon 29 Jun 2026 17:35:56 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: 1SmJ/i0HbduHEPd6Z3Lc3kkGtRQ5qUerzg5PHH9cxu0=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: CNBlKRGQG6AMZt4K1SNsAWQxw9T+WIEHof1S1C1ZbKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 17:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3891 (0xf33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Jun 22 17:35:56 2026 GMT Not After : Jun 29 17:35:56 2026 GMT Subject: CN=6a39727d-63fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:90:e5:9d:bf:9b:34:92:14:fb:03:a8:08:3c: 59:48:03:55:87:e6:54:47:ea:b3:c7:50:99:59:8c: 88:f0:34:78:36:c5:4b:d1:c7:52:f6:5a:fe:07:fd: 96:b8:df:d7:87:6e:49:77:0a:24:72:28:c0:4d:c1: 71:76:f3:77:a4:ec:7f:a6:94:ee:e8:bb:21:4f:82: 60:62:33:dc:05:60:ed:50:2d:02:4f:38:1b:7f:1a: 97:18:f9:3b:d4:13:97:b8:3c:08:ed:5a:b3:8a:01: 60:87:2a:1c:a6:d8:31:16:ce:01:5e:7e:9c:f9:35: b4:a3:89:c7:ad:c7:93:77:ca:23:a5:d0:64:2c:96: 2f:97:13:d0:f0:96:38:d3:22:c6:fb:41:d5:96:49: 3e:e5:18:34:e2:0c:92:6f:9f:2b:42:6c:33:4e:ce: 7c:cc:6d:21:48:c4:3b:ac:68:36:ba:9e:8a:bf:a9: 20:8f:d2:82:ff:1b:a0:f9:0a:4f:fb:02:2f:22:c3: 9f:9c:5a:ef:e6:c2:bf:1d:de:ef:ce:a1:95:10:52: 9c:c7:56:f6:76:07:e1:76:e0:89:e1:4e:73:1d:d3: 44:85:29:98:4e:96:0a:7c:69:04:a2:be:74:3f:62: 21:b6:67:bb:b8:1d:c3:39:35:ca:86:0b:02:04:99: 35:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8C:CA:61:52:A6:BD:1A:AE:D6:72:20:FB:AC:07:DA:9F:A9:64:83 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:02:a8:62:80:23:dc:37:f2:bf:31:bf:d2:42:45:30:25:3f: 8a:e8:19:bb:54:82:69:41:59:fe:b7:0c:81:f2:09:5c:82:ab: aa:4a:c7:fa:09:90:3a:f4:bf:2a:9c:e4:15:b8:37:8c:4c:3d: b9:30:8c:04:fe:66:17:3b:3a:70:64:32:d6:3c:c1:60:c1:f9: b7:d6:66:7f:4b:d5:ca:3c:92:da:f3:45:09:94:8b:85:50:03: e4:53:0c:c5:72:36:63:d6:7a:4a:6c:38:28:48:2a:1b:ed:b0: 20:f6:0c:7a:46:a1:57:d7:76:21:79:10:c3:ef:c5:31:fa:39: 5a:cf:46:3a:c8:31:c9:cd:52:53:81:93:47:ce:ad:71:78:40: 20:e1:09:d7:c7:1c:4c:e4:ed:b7:56:8b:ba:11:5e:ae:6e:2f: e6:2d:80:ce:1d:51:71:ce:18:d2:1c:73:72:02:84:4b:d8:72: 7d:ac:60:02:ad:b8:5a:e1:6d:36:c6:67:f6:f8:59:93:55:ee: eb:27:0d:60:4e:f2:44:59:cd:62:9f:a0:5c:d8:55:2a:0b:3f: 6e:e6:54:0f:97:a7:28:05:5c:c8:cc:33:36:71:15:94:90:60: c4:6b:ef:62:f1:fa:01:5a:6d:59:ee:5b:60:ff:ba:b9:da:1d: 71:f0:26:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjYwNjIyMTczNTU2WhcNMjYwNjI5MTczNTU2WjAYMRYwFAYD VQQDEw02YTM5NzI3ZC02M2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35Dlnb+bNJIU+wOoCDxZSANVh+ZUR+qzx1CZWYyI8DR4NsVL0cdS9lr+B/2W uN/Xh25JdwokcijATcFxdvN3pOx/ppTu6LshT4JgYjPcBWDtUC0CTzgbfxqXGPk7 1BOXuDwI7VqzigFghyocptgxFs4BXn6c+TW0o4nHrceTd8ojpdBkLJYvlxPQ8JY4 0yLG+0HVlkk+5Rg04gySb58rQmwzTs58zG0hSMQ7rGg2up6Kv6kgj9KC/xug+QpP +wIvIsOfnFrv5sK/Hd7vzqGVEFKcx1b2dgfhduCJ4U5zHdNEhSmYTpYKfGkEor50 P2Ihtme7uB3DOTXKhgsCBJk1EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDqMymFS pr0artZyIPusB9qfqWSDMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPgKoYoAj3DfyvzG/0kJFMCU/iugZu1SCaUFZ/rcMgfIJXIKrqkrH+gmQOvS/ KpzkFbg3jEw9uTCMBP5mFzs6cGQy1jzBYMH5t9Zmf0vVyjyS2vNFCZSLhVAD5FMM xXI2Y9Z6Smw4KEgqG+2wIPYMekahV9d2IXkQw+/FMfo5Ws9GOsgxyc1SU4GTR86t cXhAIOEJ18ccTOTtt1aLuhFerm4v5i2Azh1Rcc4Y0hxzcgKES9hyfaxgAq24WuFt NsZn9vhZk1Xu6ycNYE7yRFnNYp+gXNhVKgs/buZUD5enKAVcyMwzNnEVlJBgxGvv YvH6AVptWe5bYP+6udodcfAmFg== -----END CERTIFICATE-----Generated at Wed Jun 24 11:17:44 2026 by rpki-client