$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft File: cz1KHp8pnM0_jnJKteer9Ci7GV0.mft (raw, json) Hash identifier: adHxXPS0kDTpOuXjYLC1AvtV3W0lZtrLDZLsKq6BBfI= Subject key identifier: 1C:99:7D:AB:FD:A0:07:BB:A8:16:D3:6F:4D:EC:4E:75:DF:1F:31:4B Authority key identifier: 73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D Certificate issuer: /CN=A91DE500/serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft Manifest number: 01C8 Signing time: Thu 25 Jun 2026 04:19:22 +0000 Manifest this update: Thu 25 Jun 2026 04:19:21 +0000 Manifest next update: Thu 02 Jul 2026 04:19:21 +0000 Files and hashes: 1: cz1KHp8pnM0_jnJKteer9Ci7GV0.crl (hash: We4ypt7SHmLWP5uyVsmbMocDK/waM0RNzVj/Z2rV2XU=) 2: D035B7BE5BC711F097260D5EC4F9AE02.roa (hash: 4MonzweCLEnl+TnK4Sp/6IiK94a2qiwQ1O3fFdo89mM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Jul 2026 04:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=733D4A1E9F299CCD3F8E724AB5E7ABF428BB195D Validity Not Before: Jun 25 04:19:21 2026 GMT Not After : Jul 2 04:19:21 2026 GMT Subject: CN=6a3cac4a-380d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4d:19:dc:c4:77:43:e3:80:b9:8e:e8:c2:bc: c2:8b:cd:c0:c0:5a:78:8e:05:e0:ea:a4:1d:3b:ad: 9f:e6:f5:a4:4a:8a:3f:06:b2:f4:a7:6e:2c:f0:2b: ea:19:5f:77:4b:33:bd:54:32:da:f8:6b:05:8a:ea: 9e:2f:42:93:4a:f4:34:51:1f:65:e5:a3:86:4a:62: 36:1a:79:13:8e:b3:e4:b5:0c:85:90:a0:2c:a5:15: bc:47:81:ba:0e:b5:11:f9:21:80:db:6b:71:61:f3: c4:c9:c8:11:c7:9f:fd:62:16:e4:1d:e2:a3:18:2a: d8:2d:a9:47:6d:ba:f7:f6:6d:f6:96:8f:99:f8:95: de:77:b3:e9:cd:0f:e7:46:fc:ef:e6:9e:7b:09:8c: 37:bd:cb:66:ea:56:43:73:0a:29:00:03:a8:70:6f: e7:6c:69:af:7f:9d:78:32:eb:f2:22:d3:2e:18:0e: 38:21:d0:5d:7d:ed:8f:b6:75:ae:1f:88:48:fd:d1: 26:b4:d9:18:a5:4a:68:32:d9:c0:c7:8e:73:b2:7e: 1f:e4:cf:d8:0a:b6:05:8a:6e:39:8c:b8:8a:29:54: aa:a0:3c:aa:46:65:56:8f:98:55:b1:0e:90:8c:2e: 75:16:ab:da:a1:8e:dd:0e:04:37:a9:6a:6a:75:2d: 8f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:99:7D:AB:FD:A0:07:BB:A8:16:D3:6F:4D:EC:4E:75:DF:1F:31:4B X509v3 Authority Key Identifier: keyid:73:3D:4A:1E:9F:29:9C:CD:3F:8E:72:4A:B5:E7:AB:F4:28:BB:19:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cz1KHp8pnM0_jnJKteer9Ci7GV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/49E6FE46C72D11EE9C7C351DC4F9AE02/cz1KHp8pnM0_jnJKteer9Ci7GV0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3b:28:8d:b1:0d:6c:31:32:29:5e:0c:41:73:97:f2:f8:ad: c8:a9:f1:31:02:fc:bb:2f:58:18:71:5d:92:b3:e6:a8:25:8b: 04:14:6d:09:07:de:bc:58:ad:af:dc:07:cf:1d:32:a7:bd:8e: 4a:47:71:ba:62:77:2d:2f:98:80:fa:db:6f:e4:7f:24:5d:2a: 76:db:be:5e:69:6d:bf:0c:49:31:a7:40:ac:bf:91:7a:e6:fe: a3:c8:e9:cb:12:c8:ee:ec:d6:03:8b:ac:c6:df:97:01:34:28: 28:dd:4f:ec:58:76:de:72:f9:fc:3b:9b:4c:9f:de:12:f2:62: 15:fb:58:3c:3f:d3:b1:32:62:bb:cd:ed:93:82:85:58:91:f0: 1a:ff:ec:5d:0e:58:6f:17:db:52:fa:c7:79:e0:cd:2a:4c:8e: f1:6e:94:d5:6b:84:ee:d5:c6:0e:17:a2:01:07:4e:b3:c3:95: f3:46:02:8d:93:ff:c9:0f:8a:92:1d:64:2e:3d:07:a2:61:6f: 70:f6:58:05:6e:a9:0f:f9:0e:55:f3:32:57:45:39:fa:72:01: 20:fb:24:c7:05:d0:04:9c:b9:9e:d2:ab:a7:13:0a:65:91:8b: 74:4f:1f:29:a2:79:f5:93:90:2d:66:08:d1:5d:a5:40:1f:f9: f3:c4:c8:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDczM0Q0QTFFOUYyOTlDQ0QzRjhFNzI0QUI1RTdBQkY0 MjhCQjE5NUQwHhcNMjYwNjI1MDQxOTIxWhcNMjYwNzAyMDQxOTIxWjAYMRYwFAYD VQQDEw02YTNjYWM0YS0zODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApU0Z3MR3Q+OAuY7owrzCi83AwFp4jgXg6qQdO62f5vWkSoo/BrL0p24s8Cvq GV93SzO9VDLa+GsFiuqeL0KTSvQ0UR9l5aOGSmI2GnkTjrPktQyFkKAspRW8R4G6 DrUR+SGA22txYfPEycgRx5/9YhbkHeKjGCrYLalHbbr39m32lo+Z+JXed7PpzQ/n Rvzv5p57CYw3vctm6lZDcwopAAOocG/nbGmvf514MuvyItMuGA44IdBdfe2PtnWu H4hI/dEmtNkYpUpoMtnAx45zsn4f5M/YCrYFim45jLiKKVSqoDyqRmVWj5hVsQ6Q jC51FqvaoY7dDgQ3qWpqdS2PsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFByZfav9 oAe7qBbTb03sTnXfHzFLMB8GA1UdIwQYMBaAFHM9Sh6fKZzNP45ySrXnq/Qouxld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC80OUU2RkU0NkM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5NMF9qbkpLdGVlcjlDaTdH VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N6MUtIcDhwbk0wX2puSkt0ZWVyOUNpN0dWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC80OUU2RkU0NkM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9jejFLSHA4cG5N MF9qbkpLdGVlcjlDaTdHVjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmTsojbENbDEyKV4MQXOX8vityKnxMQL8uy9YGHFdkrPmqCWLBBRtCQfevFit r9wHzx0yp72OSkdxumJ3LS+YgPrbb+R/JF0qdtu+XmltvwxJMadArL+Reub+o8jp yxLI7uzWA4usxt+XATQoKN1P7Fh23nL5/DubTJ/eEvJiFftYPD/TsTJiu83tk4KF WJHwGv/sXQ5YbxfbUvrHeeDNKkyO8W6U1WuE7tXGDheiAQdOs8OV80YCjZP/yQ+K kh1kLj0HomFvcPZYBW6pD/kOVfMyV0U5+nIBIPskxwXQBJy5ntKrpxMKZZGLdE8f KaJ59ZOQLWYI0V2lQB/588TIzQ== -----END CERTIFICATE-----Generated at Fri Jun 26 23:25:01 2026 by rpki-client