$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: vm1ctaenW9DZHm5mZzBUsWT1B6yNjdq5ZRc1USXrRUk= Subject key identifier: 99:62:5B:6A:CA:9D:0B:84:57:0E:B3:A2:06:52:AE:33:2A:C7:21:67 Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0D35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0D1C Signing time: Mon 22 Jun 2026 18:10:00 +0000 Manifest this update: Mon 22 Jun 2026 18:10:00 +0000 Manifest next update: Mon 29 Jun 2026 18:10:00 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: Li6QieNfSlIIohH6J/HWvsE0D7oJjKBwY9IQdL8Tj9E=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: DvZA6XJDkyHfkolYQVEDhxnUbcvdyFYpNYGE/Rx6mkk=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: zG4D1s2xrlJsIzyQLjKkrbBcFvkHI/PRTbX5mMwZqTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3381 (0xd35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Jun 22 18:10:00 2026 GMT Not After : Jun 29 18:10:00 2026 GMT Subject: CN=6a397a78-6e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:a9:a0:c5:55:1e:f0:4f:84:e4:b2:27:7c:58: d1:ac:4a:94:ff:e3:7f:77:85:e0:e6:0e:ff:d2:22: 85:70:d3:64:9a:59:90:78:ca:04:20:ef:4c:e4:51: 90:92:b0:c8:67:5a:79:48:c3:ba:31:fe:60:d1:f5: b6:04:cc:b2:08:d3:a1:9f:13:96:6d:ba:41:69:8c: 22:1e:c4:15:5b:c8:45:80:6a:73:84:55:65:d8:73: 68:69:20:4b:e8:b4:08:6a:3e:96:97:20:a8:74:bc: 6e:24:ad:d8:9d:03:dd:08:06:85:d8:21:24:9d:4c: 42:fa:8f:c3:d0:54:01:18:4e:0e:d8:2b:02:07:c5: 58:25:52:a3:da:dc:3e:15:b1:f0:e2:d1:70:92:e3: 73:08:24:87:b8:b6:58:27:77:92:76:47:f4:de:1c: 63:19:aa:35:c3:4f:43:bb:8c:16:62:0d:75:01:76: fb:af:8d:c9:f5:1f:ed:4d:c2:66:74:fc:af:28:8d: b9:46:78:94:bb:e5:47:61:14:53:c2:87:a6:40:fd: 12:04:a2:fa:02:98:33:45:65:f2:df:14:42:d7:b0: 4b:1c:42:33:0f:a9:3d:5b:bb:50:f6:4e:e6:5a:73: 80:01:68:0a:6b:d9:88:7d:a6:f3:a2:4b:86:a5:0f: 03:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:62:5B:6A:CA:9D:0B:84:57:0E:B3:A2:06:52:AE:33:2A:C7:21:67 X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:91:48:3f:b8:11:45:b5:83:36:a5:73:5e:7e:c2:c7:3d:5e: 5a:c6:f4:dd:e6:c4:a4:f0:e6:96:74:fa:c4:27:b0:5d:2b:8b: 01:fc:6d:66:56:70:cf:ea:61:f0:53:ad:3b:ed:7c:7f:2b:66: 1e:29:32:00:2f:55:1d:e4:8d:dc:cc:ec:96:80:51:00:83:da: 54:39:3c:aa:ef:30:0f:64:95:bf:cd:7f:73:49:ca:af:30:6f: 13:95:e4:2f:5b:5c:e5:dc:81:4d:b8:23:87:96:db:1d:20:2b: 66:3e:1a:ce:ae:28:89:3e:8e:0e:5b:52:19:1f:21:eb:d7:76: fa:3a:15:af:9a:11:07:2a:54:ac:50:7c:b7:4c:7f:99:92:dc: 14:95:d8:7b:1a:ad:6a:90:d8:6c:f1:6e:8b:6f:3c:69:5b:df: 6d:d8:ad:e9:89:a6:db:8b:94:aa:30:d9:ff:05:2e:42:7f:18: 0b:5e:7d:a6:97:07:c0:27:1c:d7:b9:01:0c:1c:22:3f:35:fe: 09:00:89:0e:55:6a:79:c9:bc:53:58:63:12:e8:d0:70:f0:96: bc:08:a8:b1:0d:cd:5c:14:c1:90:1c:63:4b:08:83:8c:da:ea: c7:e3:c1:7e:b5:f6:7c:69:40:f7:36:92:0b:23:2a:82:7a:94: be:ae:a8:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjYwNjIyMTgxMDAwWhcNMjYwNjI5MTgxMDAwWjAYMRYwFAYD VQQDEw02YTM5N2E3OC02ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkamgxVUe8E+E5LInfFjRrEqU/+N/d4Xg5g7/0iKFcNNkmlmQeMoEIO9M5FGQ krDIZ1p5SMO6Mf5g0fW2BMyyCNOhnxOWbbpBaYwiHsQVW8hFgGpzhFVl2HNoaSBL 6LQIaj6WlyCodLxuJK3YnQPdCAaF2CEknUxC+o/D0FQBGE4O2CsCB8VYJVKj2tw+ FbHw4tFwkuNzCCSHuLZYJ3eSdkf03hxjGao1w09Du4wWYg11AXb7r43J9R/tTcJm dPyvKI25RniUu+VHYRRTwoemQP0SBKL6ApgzRWXy3xRC17BLHEIzD6k9W7tQ9k7m WnOAAWgKa9mIfabzokuGpQ8D3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJliW2rK nQuEVw6zogZSrjMqxyFnMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVJFIP7gRRbWDNqVzXn7Cxz1eWsb03ebEpPDmlnT6xCewXSuLAfxtZlZwz+ph 8FOtO+18fytmHikyAC9VHeSN3MzsloBRAIPaVDk8qu8wD2SVv81/c0nKrzBvE5Xk L1tc5dyBTbgjh5bbHSArZj4azq4oiT6ODltSGR8h69d2+joVr5oRBypUrFB8t0x/ mZLcFJXYexqtapDYbPFui288aVvfbdit6Ymm24uUqjDZ/wUuQn8YC159ppcHwCcc 17kBDBwiPzX+CQCJDlVqecm8U1hjEujQcPCWvAiosQ3NXBTBkBxjSwiDjNrqx+PB frX2fGlA9zaSCyMqgnqUvq6oUQ== -----END CERTIFICATE-----Generated at Wed Jun 24 11:14:54 2026 by rpki-client