$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: jC4PzXbq0ORvPLPd4JguI2rCQgqaJ6GMsn+1Kus39pI= Subject key identifier: F3:8E:12:7B:76:B1:58:22:DA:85:83:88:8D:23:C1:7A:C6:7F:5F:20 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 0582 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0561 Signing time: Mon 22 Jun 2026 23:31:50 +0000 Manifest this update: Mon 22 Jun 2026 23:31:49 +0000 Manifest next update: Mon 29 Jun 2026 23:31:49 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: 1yrUnQ09KbQ8MhH9k2ZWQFWNM01JWoLEI4zJkttP+bU=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: W6dcDrB3RcselU+HE/a3UN93ZRWn0E/P0SOzXj78T2A=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 593+o8elVRSxa1C/n0n+gLQTiowZqiqwRC7MRYiWVSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 23:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1410 (0x582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Jun 22 23:31:49 2026 GMT Not After : Jun 29 23:31:49 2026 GMT Subject: CN=6a39c5e5-e2e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a5:c2:77:fa:e9:79:fc:4f:3c:eb:91:27:89: b7:76:8f:6c:8e:ea:a0:e7:27:81:c6:e5:7d:1e:ed: ae:b7:11:4c:87:d0:a4:11:aa:38:60:ac:95:12:dc: 85:ff:2d:e0:09:5e:af:c5:aa:31:a2:fc:7b:61:da: ba:5e:08:fd:12:8c:cc:60:52:b0:86:de:33:eb:7f: 64:e3:e9:cb:69:7f:57:19:bd:a5:0f:8c:e4:22:cb: ac:4e:06:56:61:2d:72:01:fe:77:f3:3a:84:cd:b0: d1:8b:d1:26:ae:6a:4e:b8:1d:4c:ab:ce:ce:12:35: 47:38:4a:36:36:06:55:cd:87:cb:3f:3e:1b:98:61: 42:13:6c:ca:2a:57:fa:0c:3b:81:3f:52:a1:19:64: 3d:7e:62:27:77:e2:8b:44:55:a5:2d:c2:61:3f:39: 07:0b:c8:59:e4:72:2f:d1:e7:3b:cd:78:3e:7e:cd: 4d:43:58:d2:ed:6d:14:8c:58:01:ab:3f:3c:56:6c: 25:59:c3:cc:df:1e:13:e9:1a:ee:63:35:b4:3d:1c: 1b:8a:6b:5b:55:f3:65:d1:49:52:0e:25:5d:10:ef: da:89:a2:7b:31:54:42:1a:f2:eb:dc:3e:77:35:d3: 89:b6:18:b0:13:94:1a:1e:8c:b2:31:3c:d7:b7:47: db:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8E:12:7B:76:B1:58:22:DA:85:83:88:8D:23:C1:7A:C6:7F:5F:20 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:69:5a:65:f6:a8:97:bf:fe:a6:96:0a:da:e0:75:92:fb:43: 93:fd:06:4b:c6:01:c9:63:40:09:eb:8c:c6:9d:44:38:82:75: 2d:48:c6:48:b9:69:33:66:04:7e:4e:b2:87:e6:85:b1:61:12: 2f:ff:d7:75:c5:df:db:8d:cd:ef:8e:69:14:d8:3c:e2:73:eb: 0a:cd:64:f4:8f:2b:9e:a2:5e:40:2e:96:e2:ed:cd:95:dd:4b: be:f8:fc:7e:1f:c5:d3:40:83:43:34:05:41:68:f0:65:f8:a2: cf:6f:f4:78:d1:36:26:88:82:f8:c7:84:4c:19:9f:4a:f5:cd: a6:67:b8:ae:63:e7:1f:b6:9d:b3:5f:71:19:b3:eb:10:cc:a8: 63:e5:6c:53:5a:40:a7:d0:12:f6:46:7f:ce:0f:e4:7b:7b:fe: 95:3d:cd:6c:5a:86:cb:d4:b1:16:da:38:f6:83:f6:71:5a:07: ed:ef:0c:a7:9f:80:fa:06:0c:e3:5f:a4:5f:a5:68:ea:2f:7d: af:48:42:cb:e0:2c:3c:33:35:3f:d7:4c:ae:81:c4:55:8e:85: 61:ac:16:37:f5:58:e4:1c:fa:ae:fa:fc:0a:c5:a2:b4:59:05: 2e:e9:ad:ff:50:a0:1e:ff:43:3c:b6:16:da:a7:e4:6b:f1:30: 36:13:07:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjYwNjIyMjMzMTQ5WhcNMjYwNjI5MjMzMTQ5WjAYMRYwFAYD VQQDEw02YTM5YzVlNS1lMmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaXCd/rpefxPPOuRJ4m3do9sjuqg5yeBxuV9Hu2utxFMh9CkEao4YKyVEtyF /y3gCV6vxaoxovx7Ydq6Xgj9EozMYFKwht4z639k4+nLaX9XGb2lD4zkIsusTgZW YS1yAf538zqEzbDRi9EmrmpOuB1Mq87OEjVHOEo2NgZVzYfLPz4bmGFCE2zKKlf6 DDuBP1KhGWQ9fmInd+KLRFWlLcJhPzkHC8hZ5HIv0ec7zXg+fs1NQ1jS7W0UjFgB qz88VmwlWcPM3x4T6RruYzW0PRwbimtbVfNl0UlSDiVdEO/aiaJ7MVRCGvLr3D53 NdOJthiwE5QaHoyyMTzXt0fbcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPOOEnt2 sVgi2oWDiI0jwXrGf18gMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmmlaZfaol7/+ppYK2uB1kvtDk/0GS8YByWNACeuMxp1EOIJ1LUjGSLlpM2YE fk6yh+aFsWESL//XdcXf243N745pFNg84nPrCs1k9I8rnqJeQC6W4u3Nld1Lvvj8 fh/F00CDQzQFQWjwZfiiz2/0eNE2JoiC+MeETBmfSvXNpme4rmPnH7ads19xGbPr EMyoY+VsU1pAp9AS9kZ/zg/ke3v+lT3NbFqGy9SxFto49oP2cVoH7e8Mp5+A+gYM 41+kX6Vo6i99r0hCy+AsPDM1P9dMroHEVY6FYawWN/VY5Bz6rvr8CsWitFkFLumt /1CgHv9DPLYW2qfka/EwNhMHhA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:24:39 2026 by rpki-client