$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: v7qUrmR8XTvF9bNDzByjHyPUWxYikb094gyaI2zddTM= Subject key identifier: DD:F7:A9:55:E9:BF:9B:43:F8:9F:1B:58:80:44:0A:00:94:87:C4:3C Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0C4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0C3D Signing time: Mon 22 Jun 2026 18:45:33 +0000 Manifest this update: Mon 22 Jun 2026 18:45:33 +0000 Manifest next update: Mon 29 Jun 2026 18:45:33 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: T85pR8WtWz0XXdu9YDIdRMqYkLpQ/ovjuN39cO+tW+s=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: sXLJ43OFaVCL1SbiTyWS+wdz+d0djH0QqeNKRGNj+Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Jun 22 18:45:33 2026 GMT Not After : Jun 29 18:45:33 2026 GMT Subject: CN=6a3982cd-bc4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:06:9d:40:a1:f2:0e:d4:b1:4e:a4:eb:64:39: 3f:ff:83:f4:13:13:ed:91:57:42:00:6b:15:22:08: 83:8a:17:bb:92:0d:5e:a0:fb:cb:d0:39:f3:14:6b: f0:d2:b9:9c:33:99:26:d5:a5:40:be:3a:39:ce:84: b2:5a:cb:1b:f5:c5:f2:9f:8b:f5:d9:9a:b0:ee:96: 18:d6:8d:ed:60:0b:85:79:4f:a0:67:a5:4d:dd:60: 86:90:ca:2b:72:75:b1:4c:e0:dc:63:90:a9:c0:67: 8c:e2:96:8a:36:1d:42:82:03:74:1d:9e:9b:e8:e0: ff:7f:83:b7:20:b7:73:ff:32:c0:c1:b9:56:6c:49: af:e5:e9:22:0b:63:39:3a:5b:ca:e6:6b:5d:94:ee: 3e:e1:3d:0a:91:6b:5e:a8:d2:ea:64:6b:c9:1c:94: 9a:86:ab:92:9b:c2:be:76:67:27:d4:b1:07:9d:b0: e4:42:93:15:48:e7:32:17:e1:18:d8:e8:46:a4:a2: 97:77:27:90:a0:dc:9e:8c:c0:ee:c1:ef:bf:b5:7c: 5b:6c:89:8a:1b:a8:90:47:09:5a:7f:75:4b:c5:43: 21:a3:8a:a5:2d:c8:40:4b:5d:b1:bf:7b:51:86:d1: 8e:d7:8e:53:79:e4:fc:97:c4:b2:cd:57:14:c0:99: 81:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F7:A9:55:E9:BF:9B:43:F8:9F:1B:58:80:44:0A:00:94:87:C4:3C X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f8:bb:02:c0:96:cc:41:e6:50:ef:17:61:28:44:dd:c3:a5: ae:5f:f7:20:3d:00:fc:45:cc:12:00:61:7c:94:c3:6f:ab:93: 2c:c6:d8:ec:be:c1:6e:a3:ce:ea:79:30:f8:54:b3:f6:92:a6: 3c:a3:7f:98:a3:d6:78:c7:64:ac:82:0b:34:41:80:22:a8:17: 51:4c:55:38:32:c0:05:93:26:30:08:55:8e:28:26:bf:c9:d4: e0:90:79:91:41:20:6f:cb:3a:ee:b8:db:9a:64:4b:a6:f3:42: 5f:28:23:9e:af:b1:87:4a:f7:25:88:57:91:a6:e1:03:4c:e7: e3:f8:f2:41:86:06:9a:83:ef:02:3b:2f:38:bf:8d:fd:3b:7a: 2e:6a:f1:52:ae:a4:7c:62:c8:8c:6f:2a:e1:d9:e7:69:ac:03: 78:4b:d6:d4:87:25:ef:a8:fb:3d:ee:60:a5:78:a0:03:e7:43: 91:52:43:fc:73:f4:5b:8e:27:4f:8a:0a:0e:55:40:55:d0:61: e4:70:8b:a2:7a:e8:bf:84:18:08:5e:f1:1b:f0:ef:0e:60:8d: f7:d1:8e:7b:70:50:79:66:78:7a:ab:bb:b4:8c:d7:aa:ac:9a: 06:7c:bf:0c:30:22:97:a9:83:cd:80:59:c6:6d:61:84:f5:d5: 48:79:44:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjYwNjIyMTg0NTMzWhcNMjYwNjI5MTg0NTMzWjAYMRYwFAYD VQQDEw02YTM5ODJjZC1iYzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQadQKHyDtSxTqTrZDk//4P0ExPtkVdCAGsVIgiDihe7kg1eoPvL0DnzFGvw 0rmcM5km1aVAvjo5zoSyWssb9cXyn4v12Zqw7pYY1o3tYAuFeU+gZ6VN3WCGkMor cnWxTODcY5CpwGeM4paKNh1CggN0HZ6b6OD/f4O3ILdz/zLAwblWbEmv5ekiC2M5 OlvK5mtdlO4+4T0KkWteqNLqZGvJHJSahquSm8K+dmcn1LEHnbDkQpMVSOcyF+EY 2OhGpKKXdyeQoNyejMDuwe+/tXxbbImKG6iQRwlaf3VLxUMho4qlLchAS12xv3tR htGO145TeeT8l8SyzVcUwJmBYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN33qVXp v5tD+J8bWIBECgCUh8Q8MB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOvi7AsCWzEHmUO8XYShE3cOlrl/3ID0A/EXMEgBhfJTDb6uTLMbY7L7BbqPO 6nkw+FSz9pKmPKN/mKPWeMdkrIILNEGAIqgXUUxVODLABZMmMAhVjigmv8nU4JB5 kUEgb8s67rjbmmRLpvNCXygjnq+xh0r3JYhXkabhA0zn4/jyQYYGmoPvAjsvOL+N /Tt6LmrxUq6kfGLIjG8q4dnnaawDeEvW1Icl76j7Pe5gpXigA+dDkVJD/HP0W44n T4oKDlVAVdBh5HCLonrov4QYCF7xG/DvDmCN99GOe3BQeWZ4equ7tIzXqqyaBny/ DDAil6mDzYBZxm1hhPXVSHlEUg== -----END CERTIFICATE-----Generated at Wed Jun 24 11:29:59 2026 by rpki-client