$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: VnBqzLnGDFbt1//XRmmbwnrvbO4kr3FlCQtquWgTSq0= Subject key identifier: E0:AF:52:E5:69:05:B0:92:13:8B:4A:B4:B0:EB:90:C1:52:AD:E0:A0 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 355A Signing time: Mon 22 Jun 2026 15:04:21 +0000 Manifest this update: Mon 22 Jun 2026 15:04:21 +0000 Manifest next update: Mon 29 Jun 2026 15:04:21 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: QCuS/SHSuqgYkqQuCANkcTrzfaeLOLudsp1OSlE4YlM=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: grlNN+mm97djcRhLgczSf6yBI8MB1/S7/60D7ODVKSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 15:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13666 (0x3562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Jun 22 15:04:21 2026 GMT Not After : Jun 29 15:04:21 2026 GMT Subject: CN=6a394ef5-59f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:27:cd:ab:29:f6:3b:e1:7a:c7:b5:25:5f:b2: 41:bb:c8:ac:2f:2b:5d:04:b1:4a:af:88:2a:43:4f: 56:3f:ae:8d:9b:e5:69:fa:ad:5d:d4:d8:b7:4c:b4: 42:a0:36:a9:8d:59:81:19:4e:3a:d1:ae:4b:bd:a5: a9:df:d6:a0:e4:e8:cc:2a:35:c9:ed:01:3d:e2:d5: 90:56:7a:f4:ff:0d:1d:c9:44:39:6a:26:9e:f2:25: da:00:f0:7b:22:bb:54:dd:77:64:3d:d3:be:4c:65: b4:45:ba:ba:68:6a:10:46:d2:47:d3:49:85:1d:bd: ce:1b:0b:57:cb:73:9a:0e:37:47:0a:43:c8:e0:90: 89:f5:8c:97:4b:b1:80:19:f5:0b:5b:c7:e5:dd:f8: ed:35:33:e6:ad:05:5d:ed:4d:88:3b:98:ea:12:a3: 8a:27:1f:15:be:0e:62:95:d5:1c:37:89:29:bd:94: 43:67:9d:03:64:b9:01:b4:b3:9f:f2:34:b5:62:d4: 5e:79:29:40:43:e8:b7:38:88:e0:bd:3c:3f:32:1a: 5a:95:ce:de:28:ff:86:70:1a:e9:9b:0a:90:9b:6e: 25:16:c7:97:74:30:8d:75:97:20:f9:a3:33:cc:42: 80:40:19:23:fd:92:6b:15:61:53:41:49:a9:f7:9d: c2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AF:52:E5:69:05:B0:92:13:8B:4A:B4:B0:EB:90:C1:52:AD:E0:A0 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f2:2d:b7:4a:df:56:4d:ea:7a:19:b5:22:77:53:19:49:ba: 0e:df:b1:11:a2:89:94:e0:ac:c4:52:6f:7e:6b:d1:eb:4a:e5: f6:63:b5:e0:26:09:4e:b6:59:88:49:4c:34:3c:6a:84:34:f2: de:15:73:3d:00:7e:4a:77:ab:da:82:3f:d1:88:2d:5d:80:b2: 92:94:66:f2:32:17:65:1d:49:b7:e8:97:10:76:c5:ca:d1:e5: 38:4c:02:ba:3b:8e:25:a8:b6:71:a9:b2:c6:df:54:fa:66:d8: 3b:24:ce:fc:31:35:56:c3:16:34:5e:d6:e9:2c:b5:34:f0:49: 97:9c:9b:73:1c:f5:0d:d1:0d:de:14:d5:26:9f:94:a2:b4:15: 50:ed:4e:14:fa:5e:12:74:17:07:b4:90:f5:e5:8c:55:92:2a: e8:d6:83:14:85:ff:b7:79:2e:c9:bc:db:e1:73:ee:d7:da:20: 93:4b:50:a2:fa:8f:c2:87:0f:f0:ab:ed:ad:6b:0c:3d:b2:b6: d8:aa:03:88:64:6c:da:f3:e9:e4:bb:8d:de:c2:70:ca:f4:9f: b8:67:5d:85:20:ae:3c:9a:79:25:d6:6b:6f:fd:9a:03:d2:b6: 51:93:21:5f:fa:4a:d1:8e:a2:85:52:1b:61:04:54:80:be:cb: 01:84:64:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwNjIyMTUwNDIxWhcNMjYwNjI5MTUwNDIxWjAYMRYwFAYD VQQDEw02YTM5NGVmNS01OWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyfNqyn2O+F6x7UlX7JBu8isLytdBLFKr4gqQ09WP66Nm+Vp+q1d1Ni3TLRC oDapjVmBGU460a5LvaWp39ag5OjMKjXJ7QE94tWQVnr0/w0dyUQ5aiae8iXaAPB7 IrtU3XdkPdO+TGW0Rbq6aGoQRtJH00mFHb3OGwtXy3OaDjdHCkPI4JCJ9YyXS7GA GfULW8fl3fjtNTPmrQVd7U2IO5jqEqOKJx8Vvg5ildUcN4kpvZRDZ50DZLkBtLOf 8jS1YtReeSlAQ+i3OIjgvTw/Mhpalc7eKP+GcBrpmwqQm24lFseXdDCNdZcg+aMz zEKAQBkj/ZJrFWFTQUmp953C8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOCvUuVp BbCSE4tKtLDrkMFSreCgMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR/Itt0rfVk3qehm1IndTGUm6Dt+xEaKJlOCsxFJvfmvR60rl9mO14CYJTrZZ iElMNDxqhDTy3hVzPQB+Sner2oI/0YgtXYCykpRm8jIXZR1Jt+iXEHbFytHlOEwC ujuOJai2camyxt9U+mbYOyTO/DE1VsMWNF7W6Sy1NPBJl5ybcxz1DdEN3hTVJp+U orQVUO1OFPpeEnQXB7SQ9eWMVZIq6NaDFIX/t3kuybzb4XPu19ogk0tQovqPwocP 8KvtrWsMPbK22KoDiGRs2vPp5LuN3sJwyvSfuGddhSCuPJp5JdZrb/2aA9K2UZMh X/pK0Y6ihVIbYQRUgL7LAYRkTg== -----END CERTIFICATE-----Generated at Wed Jun 24 11:15:06 2026 by rpki-client