$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: MQXFHJGg4dfJ02X6Zv8L7fhbT4ApzAfMJGSQDcxq3n8= Subject key identifier: 27:3C:36:EC:69:4F:C1:20:37:F2:C8:63:42:7A:CC:5C:67:0C:6A:E4 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0CC3 Signing time: Mon 22 Jun 2026 18:31:47 +0000 Manifest this update: Mon 22 Jun 2026 18:31:47 +0000 Manifest next update: Mon 29 Jun 2026 18:31:47 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: Xqd3wSAoHEhXb41uqA5f0xe54eyRHoI0TSbybp1tweU=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: rh5kanvG5QXPAMOrNiNLJLVHnbyU12f7aHXUzCF2hMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:31:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3294 (0xcde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Jun 22 18:31:47 2026 GMT Not After : Jun 29 18:31:47 2026 GMT Subject: CN=6a397f93-f6b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b6:eb:e7:67:da:ac:f6:b5:91:e9:33:a1:47: 80:57:22:f6:5f:7a:e8:89:3f:44:e4:b9:96:c2:a2: 10:9b:d9:d6:79:81:ee:52:67:6a:1c:0b:e6:a9:75: 77:c0:74:97:1d:9c:4f:09:d4:d9:fc:4f:21:a4:cc: 57:da:9f:77:cd:e1:9a:5c:d4:eb:1f:51:a9:e7:8e: 6e:35:bb:c4:c0:40:d1:7b:16:ed:e6:a8:cb:05:d3: c1:9b:cb:3a:3d:cd:50:a3:75:60:36:34:ff:3b:b7: 5c:d5:df:46:82:88:68:1e:5b:87:8b:df:ea:04:63: 07:dc:28:2c:f7:95:d4:2c:c0:49:a6:9f:10:c5:c8: 7d:e6:a7:87:1b:a6:a0:6c:1c:b0:a1:32:4f:16:ae: a2:60:37:b5:eb:74:b5:66:c5:21:41:5b:af:1b:20: da:f1:2c:a9:ba:b5:62:b9:b7:36:c0:c3:32:0d:4c: 7b:b9:30:b7:84:b9:8f:ed:58:9f:c0:48:e5:56:04: 6e:2d:83:77:a0:9d:e2:a7:ed:99:69:fe:18:af:dd: 19:df:45:28:72:a6:23:f2:a2:d9:04:6e:b7:63:c4: 9e:3b:df:9e:5f:36:b0:1d:55:9f:09:2e:3e:30:5d: bd:bb:56:92:83:56:c5:c8:55:60:f7:5c:71:21:20: 44:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3C:36:EC:69:4F:C1:20:37:F2:C8:63:42:7A:CC:5C:67:0C:6A:E4 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:82:c9:f4:0b:9c:c5:02:38:31:94:db:ea:7a:8d:a2:9a:e9: e5:78:bc:c2:88:d7:31:0f:69:82:3e:49:f4:2d:c6:9b:2b:93: 53:5c:01:0d:b7:9f:26:fa:f8:02:e9:1e:45:3f:67:60:82:c1: f2:e9:12:66:8a:d8:2e:9f:83:c9:27:6a:55:a0:6a:b6:51:33: 3c:be:58:08:45:4c:94:e1:a4:b0:ca:8c:31:c4:3f:8b:ac:61: 22:57:49:37:66:6d:e5:dd:42:7d:94:82:b7:dd:e0:37:62:97: 97:3c:f4:e0:b5:42:f1:64:3d:25:80:4c:bc:90:9f:40:0c:cf: 0f:3e:21:40:55:a2:d2:84:65:e2:ff:94:b8:27:e9:9c:0c:6d: e2:4c:b9:1b:45:83:a1:58:b8:a6:a6:11:87:c1:17:91:19:09: 1f:92:5f:d1:b9:46:8c:ad:f0:3f:f6:9b:d2:46:39:16:4d:74: 15:74:ee:a0:0b:58:34:d7:76:90:6d:c1:6b:86:d3:35:02:ee: 58:d5:00:10:04:9a:fe:6f:26:4a:b0:c3:c3:2b:e2:ce:d2:bf: 52:43:c2:03:20:32:a5:9a:03:9e:23:16:e3:62:47:89:75:84: b9:f8:aa:45:05:e7:b1:22:96:83:e0:5b:14:66:81:37:f9:77: b9:4d:76:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjYwNjIyMTgzMTQ3WhcNMjYwNjI5MTgzMTQ3WjAYMRYwFAYD VQQDEw02YTM5N2Y5My1mNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bbr52farPa1kekzoUeAVyL2X3roiT9E5LmWwqIQm9nWeYHuUmdqHAvmqXV3 wHSXHZxPCdTZ/E8hpMxX2p93zeGaXNTrH1Gp545uNbvEwEDRexbt5qjLBdPBm8s6 Pc1Qo3VgNjT/O7dc1d9GgohoHluHi9/qBGMH3Cgs95XULMBJpp8Qxch95qeHG6ag bBywoTJPFq6iYDe163S1ZsUhQVuvGyDa8SypurViubc2wMMyDUx7uTC3hLmP7Vif wEjlVgRuLYN3oJ3ip+2Zaf4Yr90Z30UocqYj8qLZBG63Y8SeO9+eXzawHVWfCS4+ MF29u1aSg1bFyFVg91xxISBE7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCc8Nuxp T8EgN/LIY0J6zFxnDGrkMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGILJ9AucxQI4MZTb6nqNoprp5Xi8wojXMQ9pgj5J9C3GmyuTU1wBDbefJvr4 AukeRT9nYILB8ukSZorYLp+DySdqVaBqtlEzPL5YCEVMlOGksMqMMcQ/i6xhIldJ N2Zt5d1CfZSCt93gN2KXlzz04LVC8WQ9JYBMvJCfQAzPDz4hQFWi0oRl4v+UuCfp nAxt4ky5G0WDoVi4pqYRh8EXkRkJH5Jf0blGjK3wP/ab0kY5Fk10FXTuoAtYNNd2 kG3Ba4bTNQLuWNUAEASa/m8mSrDDwyviztK/UkPCAyAypZoDniMW42JHiXWEufiq RQXnsSKWg+BbFGaBN/l3uU12Ew== -----END CERTIFICATE-----Generated at Wed Jun 24 11:19:07 2026 by rpki-client