$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: pLMXcV+B+O2UzhmvVmouhA+G9IkypYexR28DivcSRbw= Subject key identifier: B3:EC:66:1C:06:70:78:77:E2:F1:14:58:DB:F8:E6:76:D7:51:67:6E Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0485 Signing time: Mon 29 Jun 2026 00:24:55 +0000 Manifest this update: Mon 29 Jun 2026 00:24:54 +0000 Manifest next update: Mon 06 Jul 2026 00:24:54 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: reDxswE2S6cqPeLIseriShRSZ9KhPRcu3oLnHMZQFRs=) 2: 06820D08961011ECA540626AC4F9AE02.roa (hash: 3dB0qB5yNmzIvDRiuP2+fGgguKKPz4Cvi65Utf4OECk=) 3: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: PuL+mA1dV7Hh7bENHYnKx3eA2jTd4Smp4c1oR/M4V58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Jul 2026 00:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Jun 29 00:24:54 2026 GMT Not After : Jul 6 00:24:54 2026 GMT Subject: CN=6a41bb56-a318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:03:04:6b:af:1f:25:81:25:a0:04:12:95:7e: 6f:7d:fb:99:0c:24:2d:cf:54:72:4b:c1:77:c7:03: d5:3a:52:cf:49:43:8f:18:8d:1b:99:62:ec:d6:72: 90:ad:8f:66:d4:8b:33:d2:81:8a:5e:54:72:8e:d2: 14:fd:ab:2c:1c:3d:a7:00:14:6b:bd:16:18:37:cb: c9:f5:05:bd:f1:27:2d:3b:0b:84:30:16:35:f4:c8: c1:32:d3:c4:6c:7f:e0:4c:ef:78:71:28:ce:ac:58: f5:fd:5e:17:52:29:d0:98:4b:e9:c5:d6:81:b1:84: ee:4b:9e:2b:93:81:35:a3:5d:ba:38:c9:3d:42:af: 60:df:a7:10:c7:c8:11:2f:8f:f0:67:b6:94:c8:80: 15:3a:9f:b2:71:81:0f:9f:b0:02:b2:cb:16:bb:05: f7:fe:ca:8f:13:28:6b:fa:f9:6c:1d:5a:86:41:86: ac:ed:7a:42:2f:e0:66:75:6d:e7:87:92:95:b0:bd: 21:5b:1a:4f:b5:9c:14:7a:bf:60:59:df:08:5a:47: 8f:f5:31:2a:f6:aa:09:40:79:ef:3e:66:47:4e:e7: 07:b2:42:f0:60:6f:c6:5b:e6:da:08:bc:1d:d2:21: 75:60:df:36:66:39:b9:7a:e1:28:f2:b0:ff:4a:fd: f7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:EC:66:1C:06:70:78:77:E2:F1:14:58:DB:F8:E6:76:D7:51:67:6E X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:4f:de:a6:8d:03:76:03:0c:b5:cc:5a:c8:39:00:8d:b0:78: 94:35:95:3b:fe:9f:eb:f4:84:13:8a:ff:15:69:3c:82:6a:ae: 51:0d:d1:09:5c:bb:3d:74:02:35:e3:80:dd:02:d5:d7:1e:0a: 88:df:77:ed:ed:80:76:4e:24:16:44:f9:55:9e:1f:9b:db:55: 81:60:0a:b4:f2:1f:33:4f:d0:35:f1:90:d9:f9:b3:30:39:36: ee:c7:d8:08:cf:20:73:50:0e:9d:c9:47:b8:54:63:98:b4:e2: 43:a0:48:19:fc:fd:9e:61:2d:c5:4e:90:05:a2:1d:64:c4:91: 57:35:be:c8:50:77:b9:31:cc:b8:04:f7:6b:8a:97:95:43:1b: c4:7d:69:04:e5:bd:f6:99:5b:b6:4e:bb:06:23:a7:a4:ca:69: 99:9a:49:05:d5:95:aa:12:75:08:97:6f:ff:8f:96:52:62:07: c7:a9:15:41:34:cd:15:43:2f:6a:c4:a0:41:04:ad:6a:0c:f5: 63:25:bf:60:a4:1e:7d:cb:94:d7:6b:d2:f3:8c:98:8b:e1:81: 16:fb:51:ca:16:07:b9:5d:d9:35:c7:d0:ef:72:e6:20:5a:fe: c3:a9:fb:e1:e2:41:d7:2e:86:cb:a9:bb:b8:29:60:3b:86:f0: d9:07:53:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjYwNjI5MDAyNDU0WhcNMjYwNzA2MDAyNDU0WjAYMRYwFAYD VQQDEw02YTQxYmI1Ni1hMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAMEa68fJYEloAQSlX5vffuZDCQtz1RyS8F3xwPVOlLPSUOPGI0bmWLs1nKQ rY9m1Isz0oGKXlRyjtIU/assHD2nABRrvRYYN8vJ9QW98SctOwuEMBY19MjBMtPE bH/gTO94cSjOrFj1/V4XUinQmEvpxdaBsYTuS54rk4E1o126OMk9Qq9g36cQx8gR L4/wZ7aUyIAVOp+ycYEPn7ACsssWuwX3/sqPEyhr+vlsHVqGQYas7XpCL+BmdW3n h5KVsL0hWxpPtZwUer9gWd8IWkeP9TEq9qoJQHnvPmZHTucHskLwYG/GW+baCLwd 0iF1YN82Zjm5euEo8rD/Sv33DwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLPsZhwG cHh34vEUWNv45nbXUWduMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABk/epo0DdgMMtcxayDkAjbB4lDWVO/6f6/SEE4r/FWk8gmquUQ3RCVy7PXQC NeOA3QLV1x4KiN937e2Adk4kFkT5VZ4fm9tVgWAKtPIfM0/QNfGQ2fmzMDk27sfY CM8gc1AOnclHuFRjmLTiQ6BIGfz9nmEtxU6QBaIdZMSRVzW+yFB3uTHMuAT3a4qX lUMbxH1pBOW99plbtk67BiOnpMppmZpJBdWVqhJ1CJdv/4+WUmIHx6kVQTTNFUMv asSgQQStagz1YyW/YKQefcuU12vS84yYi+GBFvtRyhYHuV3ZNcfQ73LmIFr+w6n7 4eJB1y6Gy6m7uClgO4bw2QdTfg== -----END CERTIFICATE-----Generated at Tue Jun 30 22:44:43 2026 by rpki-client