$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft File: qX6qTW8VW40nxAro4yfZulLDS0I.mft (raw, json) Hash identifier: /scF5wSNLst1AQWoB1RX783z9UPMqBrgLrouu4xDips= Subject key identifier: FD:E7:98:48:30:96:8D:90:B0:15:2F:5E:4D:08:45:17:78:EE:A4:24 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft Manifest number: 03D2 Signing time: Wed 17 Jun 2026 00:44:26 +0000 Manifest this update: Wed 17 Jun 2026 00:44:25 +0000 Manifest next update: Wed 24 Jun 2026 00:44:25 +0000 Files and hashes: 1: qX6qTW8VW40nxAro4yfZulLDS0I.crl (hash: Tn+vLZkmP/Wt6m2muGLdfTgGxNDk1+21XOndwKe7O1U=) 2: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (hash: lkd89MpvF6HjrZnQ7+Am4kQJDo7BJMWf79Z8hJQl200=) 3: 595774341B6211F0B9733473C4F9AE02.roa (hash: FsghJjQsuRRGpnhop47UMyZjNIpI+E4uxqKOZi0XVJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Jun 17 00:44:25 2026 GMT Not After : Jun 24 00:44:25 2026 GMT Subject: CN=6a31ede9-be62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:cc:90:48:24:02:61:ee:ff:bf:1d:06:d5:30: e2:87:2a:e0:ee:a0:e3:ee:73:08:04:21:71:0f:34: 02:48:74:c8:09:5b:a0:9c:88:58:3b:5c:c7:32:e7: 35:6c:c8:7e:90:2a:bb:f0:3c:9b:1c:7e:6b:d4:a3: e7:6a:9b:4f:c8:d0:58:09:65:cc:d8:e5:9e:e3:0f: 6c:99:b8:ac:c0:cf:95:18:5e:cf:ae:ec:ac:9b:25: 30:81:06:a7:92:8b:a9:f6:68:f7:49:a9:8d:bb:53: 58:db:a3:c4:b9:eb:f3:d3:f3:31:42:db:c5:f3:b5: b6:1b:b2:04:c7:82:fe:71:2b:cb:17:f4:92:c0:69: 3c:00:d5:b3:7f:d4:70:10:e0:a8:f6:1a:83:23:4e: 85:ca:be:89:40:37:21:5c:1b:11:0d:27:b4:ba:7e: 94:03:a8:23:65:cd:e9:4f:4e:3e:90:f5:cd:53:4d: b8:8a:50:24:fd:18:c2:87:48:65:d9:29:7c:48:13: 61:98:1b:a8:be:e5:2e:85:cc:ef:7d:ad:5f:92:c1: 60:1f:3f:f5:76:21:14:27:75:f3:89:dc:6b:91:f2: c4:69:54:14:54:7a:0e:08:fd:40:ea:a2:e5:73:de: 34:fa:1d:3c:50:49:b6:4d:51:8d:97:4b:ec:70:6e: 82:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E7:98:48:30:96:8D:90:B0:15:2F:5E:4D:08:45:17:78:EE:A4:24 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:8e:9d:22:e2:73:3c:16:64:f6:52:35:a0:cd:73:41:30:a5: 2b:ac:2e:3f:30:96:75:ca:bc:90:61:62:b7:91:ef:25:bb:28: a6:0f:75:fd:a7:0e:06:c4:5f:3f:0e:e8:29:79:2a:a7:cf:82: 64:a4:b1:c7:65:db:cf:69:41:30:98:1b:44:48:6d:e7:ca:bd: ba:88:c1:54:4d:ad:75:49:0b:49:06:ee:6b:d8:75:15:a2:11: 4b:54:88:15:ca:1e:4a:1e:d5:6a:69:b4:79:c5:8b:2a:f7:4f: 59:7b:00:d3:5a:09:11:54:e4:78:30:3a:c9:ec:97:fa:36:9b: 6d:aa:bb:93:08:19:8d:69:0a:d8:97:54:fa:31:98:f9:1e:39: 22:9a:db:74:9f:ba:1b:0e:9d:47:b2:c7:25:19:21:ff:cb:d6: d4:cb:35:82:5c:6d:b4:e8:3c:77:4a:c0:f6:07:68:78:5d:96: f6:84:82:60:b2:c5:f8:14:5b:0d:b0:9d:1b:01:43:30:d5:7a: 94:89:23:0a:be:07:d3:e6:2e:83:47:5e:d7:8b:b1:ee:94:4d: f6:aa:a7:8e:40:cc:f7:18:1f:a4:bf:8c:dd:8f:e8:32:8d:ef: 91:64:11:b9:dd:9f:b9:d2:f6:df:83:c8:63:a6:21:e0:b1:ee: 00:4e:7d:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjYwNjE3MDA0NDI1WhcNMjYwNjI0MDA0NDI1WjAYMRYwFAYD VQQDEw02YTMxZWRlOS1iZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi8yQSCQCYe7/vx0G1TDihyrg7qDj7nMIBCFxDzQCSHTICVugnIhYO1zHMuc1 bMh+kCq78DybHH5r1KPnaptPyNBYCWXM2OWe4w9smbiswM+VGF7PruysmyUwgQan koup9mj3SamNu1NY26PEuevz0/MxQtvF87W2G7IEx4L+cSvLF/SSwGk8ANWzf9Rw EOCo9hqDI06Fyr6JQDchXBsRDSe0un6UA6gjZc3pT04+kPXNU024ilAk/RjCh0hl 2Sl8SBNhmBuovuUuhczvfa1fksFgHz/1diEUJ3XzidxrkfLEaVQUVHoOCP1A6qLl c940+h08UEm2TVGNl0vscG6CUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP3nmEgw lo2QsBUvXk0IRRd47qQkMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjRBRi9DQzdCMjU1QURDQTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0 MG54QXJvNHlmWnVsTERTMEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbY6dIuJzPBZk9lI1oM1zQTClK6wuPzCWdcq8kGFit5HvJbsopg91/acOBsRf Pw7oKXkqp8+CZKSxx2Xbz2lBMJgbREht58q9uojBVE2tdUkLSQbua9h1FaIRS1SI FcoeSh7Vamm0ecWLKvdPWXsA01oJEVTkeDA6yeyX+jabbaq7kwgZjWkK2JdU+jGY +R45IprbdJ+6Gw6dR7LHJRkh/8vW1Ms1glxttOg8d0rA9gdoeF2W9oSCYLLF+BRb DbCdGwFDMNV6lIkjCr4H0+Yug0de14ux7pRN9qqnjkDM9xgfpL+M3Y/oMo3vkWQR ud2fudL234PIY6Yh4LHuAE59Uw== -----END CERTIFICATE-----Generated at Thu Jun 18 23:21:58 2026 by rpki-client