$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: VWAuJoOHk6BYU8coTc/dY505kIkCRt5sm+8oh9K+ihs= Subject key identifier: 39:74:EC:75:62:D6:C0:70:DE:69:25:2A:C1:71:9B:0A:B7:CC:72:22 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2332 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 22DB Signing time: Sun 28 Jun 2026 15:52:08 +0000 Manifest this update: Sun 28 Jun 2026 15:52:07 +0000 Manifest next update: Sun 05 Jul 2026 15:52:07 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: avTjvWOo5ZcpLoFwBWlZ1oSRohNlAqNk00swrCWbP6M=) 2: D128F6A2366111F19FA677FACA833773.roa (hash: ZY7Vk9qpQDHcmIYTowz44r/Aadjt59khWHwSNvAaAYk=) 3: 05302944D38811F096791A31C4F9AE02.roa (hash: 0TpazCbbP+eq5jbcmOC+QEukwM8XRQa407MbLaS5Vso=) 4: E049BA50335911F193981E57CA833773.roa (hash: ccrqPCbKxkHUXLuFhP49NrNOV6bbgxDvMbrEYPU0/70=) 5: 0EB9C488501611F1BCA6FB50C1833773.roa (hash: hjLor0naDuB1MHE0ASMpLEp5N2HxCBYq1jwBVQbTUI4=) 6: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: fekDwvX/Pg2YZ9Fe3QZAnU92TpFpbncEnNKE83KMH+M=) 7: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: qG9igdUpXB7wk8yx/k2tOuq/gYueDRGW4t5eH6cDkms=) 8: B4A61D2A501511F19B7490E3C0833773.roa (hash: ULhHp7+sYXuEA4oAMAlvVXNC4B0eNrv0HmhmrXot1Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Jul 2026 15:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9010 (0x2332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Jun 28 15:52:07 2026 GMT Not After : Jul 5 15:52:07 2026 GMT Subject: CN=6a414328-4695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:88:bd:fd:a4:20:ae:59:c0:6b:53:b8:ae: bc:25:26:06:7f:53:64:9d:9d:55:76:38:fa:21:49: d7:8c:f1:b4:03:7c:87:26:3d:bd:bf:dc:66:b1:63: be:dc:c3:bb:37:76:ae:ab:7f:e1:0e:53:db:e4:fb: 8f:16:f6:8f:12:4a:ee:b6:ca:70:14:fc:38:99:aa: 7b:1c:65:36:97:dd:3f:33:4f:e1:34:81:54:c1:04: 68:9c:b9:c4:c1:cc:f6:e0:8d:b2:c0:dc:57:f8:c2: c9:fb:82:8b:83:b6:ea:2d:0c:80:70:34:eb:bd:fd: 63:04:7b:3d:7c:72:b1:39:e0:b8:5c:fd:f8:2d:51: 99:82:19:c1:6f:75:1a:12:21:2f:d2:73:3f:09:ce: 3e:9f:29:59:df:30:0d:24:e8:7d:98:5a:90:e5:6c: 8c:20:e8:75:74:38:34:51:17:d4:48:de:a5:0d:71: 13:2c:bd:c6:92:15:0c:a0:5d:34:79:6a:f0:d0:6d: 41:48:a8:0a:19:f8:9b:a9:f3:83:bd:a9:41:d6:e8: 15:67:a7:8e:7c:fd:7a:e3:a2:59:22:50:77:3a:92: 30:5e:1a:44:c2:d2:eb:46:c6:f6:77:22:00:a6:fc: 3b:a6:45:0a:c7:ce:43:11:0b:36:0c:d3:0d:33:bc: 55:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:74:EC:75:62:D6:C0:70:DE:69:25:2A:C1:71:9B:0A:B7:CC:72:22 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:44:6d:2b:17:9e:d1:bc:12:0d:dc:1f:ff:4d:e5:99:b7:3a: ff:3e:57:47:f0:2d:32:e3:16:20:34:4d:01:36:ef:c4:e3:cd: 14:b8:2b:9c:fd:55:b2:a9:64:fc:88:c3:5e:4f:de:07:06:13: 52:d9:dd:90:30:c3:ef:2d:3c:85:78:09:14:53:75:ca:2d:15: 45:ec:04:3a:6c:4f:81:96:3f:de:d1:28:9b:6c:53:72:da:bb: 75:b8:80:17:83:74:b6:01:34:19:df:51:d3:d6:1c:2a:65:8a: 30:60:35:fa:c7:dd:f6:8d:2b:87:05:e7:ed:83:00:22:5c:a3: 97:d2:bf:ef:f0:0e:2c:cf:6b:d8:55:7e:18:89:ac:51:be:54: 7a:ca:64:02:3a:20:f3:d4:a9:95:9a:e3:3d:4f:9c:c4:fe:4d: 8b:6c:2c:35:8d:36:25:63:7c:94:e8:b9:f1:9b:ec:a3:56:22: b8:b7:8a:fd:f8:cd:05:39:5f:e6:b9:5d:b8:41:10:04:7d:99: 2d:30:2e:e7:81:75:e2:53:b8:df:f0:0e:49:f2:fd:a2:0d:ac: fc:29:ba:20:f5:6a:63:2d:85:df:f8:ee:1c:c9:ec:05:d5:ed: c3:be:2d:fc:24:2c:76:60:b8:58:36:19:54:eb:37:3c:12:8b: 81:04:db:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjYwNjI4MTU1MjA3WhcNMjYwNzA1MTU1MjA3WjAYMRYwFAYD VQQDEw02YTQxNDMyOC00Njk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIKIvf2kIK5ZwGtTuK68JSYGf1NknZ1Vdjj6IUnXjPG0A3yHJj29v9xmsWO+ 3MO7N3auq3/hDlPb5PuPFvaPEkrutspwFPw4map7HGU2l90/M0/hNIFUwQRonLnE wcz24I2ywNxX+MLJ+4KLg7bqLQyAcDTrvf1jBHs9fHKxOeC4XP34LVGZghnBb3Ua EiEv0nM/Cc4+nylZ3zANJOh9mFqQ5WyMIOh1dDg0URfUSN6lDXETLL3GkhUMoF00 eWrw0G1BSKgKGfibqfODvalB1ugVZ6eOfP1646JZIlB3OpIwXhpEwtLrRsb2dyIA pvw7pkUKx85DEQs2DNMNM7xVRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDl07HVi 1sBw3mklKsFxmwq3zHIiMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhkRtKxee0bwSDdwf/03lmbc6/z5XR/AtMuMWIDRNATbvxOPNFLgrnP1Vsqlk /IjDXk/eBwYTUtndkDDD7y08hXgJFFN1yi0VRewEOmxPgZY/3tEom2xTctq7dbiA F4N0tgE0Gd9R09YcKmWKMGA1+sfd9o0rhwXn7YMAIlyjl9K/7/AOLM9r2FV+GIms Ub5UespkAjog89SplZrjPU+cxP5Ni2wsNY02JWN8lOi58Zvso1YiuLeK/fjNBTlf 5rlduEEQBH2ZLTAu54F14lO43/AOSfL9og2s/Cm6IPVqYy2F3/juHMnsBdXtw74t /CQsdmC4WDYZVOs3PBKLgQTbTg== -----END CERTIFICATE-----Generated at Mon Jun 29 11:10:50 2026 by rpki-client