$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: vkJGiP2tqJazkjb22gtp3ZGoxYG0iAh8AKH6NvQy7Bk= Subject key identifier: 43:E9:07:26:53:E7:67:12:63:51:EA:52:9A:D4:3F:4E:6F:6E:5B:FF Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1F02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1EBF Signing time: Mon 22 Jun 2026 16:02:11 +0000 Manifest this update: Mon 22 Jun 2026 16:02:11 +0000 Manifest next update: Mon 29 Jun 2026 16:02:11 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: CCj8uSoNQhdFVvoqkOZWYgWmLp48BChHOTRWuS51XKw=) 2: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: RsEExvcwJC5E9KwjY1oAwXxgW1IttoQBiLKiJe8oXuE=) 3: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: cWHGKEyK1/n+XzphhsGriIZiXwfaKLq/Wm0XGKlIaZU=) 4: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: LnqeCppjvfZw+kjrXoa/2ToWPDmJSTa9ohrJhVPCflE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 16:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7938 (0x1f02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Jun 22 16:02:11 2026 GMT Not After : Jun 29 16:02:11 2026 GMT Subject: CN=6a395c83-febe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:19:bf:22:04:c2:fa:d4:2d:3c:e5:69:9c:5d: e8:4b:1d:84:6f:24:a4:fb:9e:82:88:77:15:f1:2e: ca:21:27:a2:3e:eb:5c:f5:ca:b8:1f:74:be:4f:fc: e8:4d:0c:e7:14:6a:c5:01:6f:7d:8d:81:02:50:45: 74:41:1b:9c:78:a3:f5:3d:9b:c6:98:f0:03:18:d3: 64:2e:c3:f4:22:6a:2b:41:5c:03:95:d1:46:83:60: ca:f4:3f:1f:5b:02:75:43:b5:e8:83:ac:06:bf:ff: 44:03:9b:42:5e:94:20:b9:3a:71:4b:9b:41:24:e2: 7c:5e:4a:b1:09:c8:25:e9:c1:0a:9f:2f:0b:9c:cf: 26:4a:af:28:ea:d6:c5:bb:ac:ed:43:ad:99:8f:44: 21:09:8d:0a:65:8b:28:f5:f1:88:f7:89:a3:07:3f: 66:f9:69:1f:03:a9:43:5b:c0:06:a6:28:0f:43:99: 85:90:f5:77:f5:9d:d0:4e:49:c5:30:2a:d9:96:92: 4d:de:f9:35:79:47:48:ec:35:01:21:e6:42:1d:d1: 8a:f3:d0:4d:98:0e:40:35:1f:8d:7b:6c:bf:4b:ad: a0:58:ad:cd:57:0b:d4:77:02:bb:db:32:da:a6:e3: e8:f4:99:8f:ee:de:96:0c:05:3b:45:10:8a:bb:70: 10:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E9:07:26:53:E7:67:12:63:51:EA:52:9A:D4:3F:4E:6F:6E:5B:FF X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:08:08:9d:75:24:fb:5a:8d:6d:0e:36:4b:c0:ee:16:9b:b3: 5a:6a:85:e0:c0:c2:ce:58:0b:29:c7:35:19:71:a6:87:28:b1: 06:39:db:0e:13:f4:78:cf:ca:b1:f1:db:e3:88:68:3b:0c:6d: 80:fd:de:ce:fc:40:81:ea:b2:fa:4f:3d:6c:35:57:e2:e7:39: 71:57:49:35:d8:fb:ca:73:cd:71:df:2c:91:4e:d0:cd:e3:92: 1e:bf:1d:77:10:2b:a0:5e:f5:c5:86:ed:a9:0f:9d:2f:a0:88: 0c:b4:b8:fc:ee:e7:ad:a0:9f:7f:0a:88:64:03:d4:8a:71:4b: bf:72:f2:09:ee:55:a1:0f:c7:25:9a:cb:37:e0:1e:e9:42:1d: c6:8b:f6:d4:d4:ed:67:f2:1a:34:2a:8d:f8:ca:27:d4:1c:6b: 1c:89:04:68:40:fd:d4:a9:69:b5:0e:71:4d:43:58:37:c5:cd: 9c:14:87:39:b1:74:5d:41:7f:f3:62:1c:20:64:e4:ed:f3:10: de:79:c8:85:8e:bb:07:83:c5:60:8f:5e:00:b5:73:74:aa:ea: 97:99:76:f6:12:f5:be:71:d9:f4:dc:06:1d:9c:9d:f2:57:c8: 56:20:a4:0b:51:98:a0:b4:e3:41:db:99:0b:3c:d2:0b:dc:d7: 9c:bf:74:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjYwNjIyMTYwMjExWhcNMjYwNjI5MTYwMjExWjAYMRYwFAYD VQQDEw02YTM5NWM4My1mZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhm/IgTC+tQtPOVpnF3oSx2EbySk+56CiHcV8S7KISeiPutc9cq4H3S+T/zo TQznFGrFAW99jYECUEV0QRuceKP1PZvGmPADGNNkLsP0ImorQVwDldFGg2DK9D8f WwJ1Q7Xog6wGv/9EA5tCXpQguTpxS5tBJOJ8XkqxCcgl6cEKny8LnM8mSq8o6tbF u6ztQ62Zj0QhCY0KZYso9fGI94mjBz9m+WkfA6lDW8AGpigPQ5mFkPV39Z3QTknF MCrZlpJN3vk1eUdI7DUBIeZCHdGK89BNmA5ANR+Ne2y/S62gWK3NVwvUdwK72zLa puPo9JmP7t6WDAU7RRCKu3AQZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPpByZT 52cSY1HqUprUP05vblv/MB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEwgInXUk+1qNbQ42S8DuFpuzWmqF4MDCzlgLKcc1GXGmhyixBjnbDhP0eM/K sfHb44hoOwxtgP3ezvxAgeqy+k89bDVX4uc5cVdJNdj7ynPNcd8skU7QzeOSHr8d dxAroF71xYbtqQ+dL6CIDLS4/O7nraCffwqIZAPUinFLv3LyCe5VoQ/HJZrLN+Ae 6UIdxov21NTtZ/IaNCqN+Mon1BxrHIkEaED91KlptQ5xTUNYN8XNnBSHObF0XUF/ 82IcIGTk7fMQ3nnIhY67B4PFYI9eALVzdKrql5l29hL1vnHZ9NwGHZyd8lfIViCk C1GYoLTjQduZCzzSC9zXnL909Q== -----END CERTIFICATE-----Generated at Wed Jun 24 11:30:36 2026 by rpki-client