$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: VKu6R0TXEGKajqMyJ3x+x0XBh0nEfi7ag5w3VHWvsSk= Subject key identifier: A3:C8:40:B8:B9:05:A2:E5:DD:36:F9:F7:85:0B:1B:3E:16:16:F5:B3 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 021E Signing time: Sun 21 Jun 2026 03:13:27 +0000 Manifest this update: Sun 21 Jun 2026 03:13:26 +0000 Manifest next update: Sun 28 Jun 2026 03:13:26 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: FuO57fsjYltRNSORvaCVjDf16VrIZxUp2CqMInM0Nhg=) 2: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: d0JlKivvI0UuN/+g7FjPgsMv6qjwloa3O1BziCQ3cTE=) 3: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: r/B/wTWM1e+RbFQV+OxoufBd8XhZQMs6+SrSBQGZEm0=) 4: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: kvLOqAvejoloIcBp8iOod+XLqcMm6Km2ICEQUCNEODY=) 5: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: CKjWrRKFrq5wIXerALs28X5SJv1uenx7ZdloeFQoUHo=) 6: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: yxoJxjt522RCtypxdpCWh8Ki8MQz+o9DlkQu175uTk8=) 7: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: sT56QjRFMA5RYNrfwK84aeqd2CWRIQx/z7cMGwk6r48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Jun 2026 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Jun 21 03:13:26 2026 GMT Not After : Jun 28 03:13:26 2026 GMT Subject: CN=6a3756d7-a837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:df:bf:2f:f9:ca:1b:bd:61:22:98:86:d7:16: 65:31:04:12:a6:65:d8:74:70:e3:64:37:f9:1f:94: eb:a9:c8:49:a7:d2:ee:4f:ee:a5:da:77:fa:c4:c0: fb:fa:d6:44:62:41:ae:25:1d:17:d4:48:0c:50:86: c9:c1:45:89:c8:fb:11:22:93:3d:05:d4:c3:90:d5: 65:07:ea:6e:8c:ed:ae:50:24:3f:89:cc:74:c2:3e: bd:65:8b:41:a2:54:8a:8d:2f:5d:b2:03:8d:ba:67: 4d:fa:9f:f9:48:62:f5:ae:9b:90:3c:bf:e1:a6:61: 20:39:72:f0:72:f7:35:77:3f:70:03:90:d2:20:fc: 60:00:bc:47:3c:e3:ae:a1:16:4a:01:0e:d3:fa:0a: 28:07:65:b2:9f:78:de:bc:6c:88:6a:f9:13:92:62: a0:d0:8c:cf:73:c6:08:14:c3:f9:ab:ec:3c:32:2c: 3e:37:6d:f4:ec:2d:cc:7b:b4:3b:d0:bb:6c:8f:b0: a8:f1:d8:4c:c1:e6:5e:ed:81:ec:59:07:a1:a2:23: 9d:1f:8e:9c:c2:c9:1f:a0:14:2a:10:00:cb:eb:2a: db:01:08:81:40:74:88:86:c2:c4:02:b6:ff:3f:63: c1:c5:d4:cd:be:a0:4d:60:94:fe:e8:2c:4c:36:3e: 1d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C8:40:B8:B9:05:A2:E5:DD:36:F9:F7:85:0B:1B:3E:16:16:F5:B3 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ca:07:89:36:a1:8a:32:a6:31:bd:a7:fd:83:1e:2f:67:e1: 04:06:69:fb:a2:5a:e0:35:cf:15:e3:b4:46:a0:c3:7f:4b:58: 2a:63:b3:ad:24:dc:b9:c7:e8:47:e1:5f:5b:6e:b4:83:74:88: ca:bf:59:a3:28:4b:44:42:49:d6:21:ca:5c:70:a1:01:2b:79: 5d:56:7a:8a:6a:ba:02:10:a6:2b:ad:20:f9:1e:35:ac:32:09: 4a:fb:11:26:00:28:42:ea:d6:ea:57:d2:48:41:6f:55:8e:c2: d0:d3:09:34:4c:d2:93:c8:b9:0a:bc:6f:e9:5a:d1:70:94:54: a2:9f:26:9a:1d:42:c8:95:e4:87:39:74:ed:23:c6:44:c9:b6: b0:25:01:92:be:f9:e3:e9:fb:5e:4c:e6:a8:19:55:2a:01:3e: ce:d5:63:4d:6a:ee:6a:e5:ed:30:f1:e4:b8:e7:50:f7:a6:9f: 56:41:4e:3f:54:70:13:5b:f5:28:5b:76:41:c0:67:89:bf:9a: e7:8c:03:6c:9e:0a:66:89:27:7a:44:1b:2b:b6:21:c1:e4:46: f0:7c:e8:f5:22:47:7d:e6:ec:c4:53:75:32:db:74:0d:7c:70: f0:9c:c5:d5:d3:df:b2:94:b6:6c:5f:54:d0:5e:74:a7:48:d2: fe:e4:02:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjYwNjIxMDMxMzI2WhcNMjYwNjI4MDMxMzI2WjAYMRYwFAYD VQQDEw02YTM3NTZkNy1hODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlN+/L/nKG71hIpiG1xZlMQQSpmXYdHDjZDf5H5TrqchJp9LuT+6l2nf6xMD7 +tZEYkGuJR0X1EgMUIbJwUWJyPsRIpM9BdTDkNVlB+pujO2uUCQ/icx0wj69ZYtB olSKjS9dsgONumdN+p/5SGL1rpuQPL/hpmEgOXLwcvc1dz9wA5DSIPxgALxHPOOu oRZKAQ7T+gooB2Wyn3jevGyIavkTkmKg0IzPc8YIFMP5q+w8Miw+N2307C3Me7Q7 0Ltsj7Co8dhMweZe7YHsWQehoiOdH46cwskfoBQqEADL6yrbAQiBQHSIhsLEArb/ P2PBxdTNvqBNYJT+6CxMNj4dmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKPIQLi5 BaLl3Tb594ULGz4WFvWzMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWsoHiTahijKmMb2n/YMeL2fhBAZp+6Ja4DXPFeO0RqDDf0tYKmOzrSTcucfo R+FfW260g3SIyr9ZoyhLREJJ1iHKXHChASt5XVZ6imq6AhCmK60g+R41rDIJSvsR JgAoQurW6lfSSEFvVY7C0NMJNEzSk8i5Crxv6VrRcJRUop8mmh1CyJXkhzl07SPG RMm2sCUBkr754+n7XkzmqBlVKgE+ztVjTWruauXtMPHkuOdQ96afVkFOP1RwE1v1 KFt2QcBnib+a54wDbJ4KZoknekQbK7YhweRG8Hzo9SJHfebsxFN1Mtt0DXxw8JzF 1dPfspS2bF9U0F50p0jS/uQC4Q== -----END CERTIFICATE-----Generated at Sun Jun 21 12:44:29 2026 by rpki-client