$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: yYMw+yZp0aEbfdINupWXIU7sINemj7tAznUVvoVzNTU= Subject key identifier: 2F:46:4A:9E:B7:28:66:82:CE:A9:A3:E5:02:92:B4:D9:4E:59:93:A3 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 0400 Signing time: Wed 17 Jun 2026 00:32:01 +0000 Manifest this update: Wed 17 Jun 2026 00:32:01 +0000 Manifest next update: Wed 24 Jun 2026 00:32:01 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: KowyLBqgsaxqjLJ5liLCsFIKn190k4QTyAnumtsElZY=) 2: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) 4: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Jun 17 00:32:01 2026 GMT Not After : Jun 24 00:32:01 2026 GMT Subject: CN=6a31eb01-b025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:88:eb:0a:e2:ea:6b:67:c8:23:bb:b6:8f:ff: 90:dc:00:d6:5f:61:31:91:c1:a1:76:55:95:e3:b8: 9d:00:f8:7a:ff:e1:a3:f0:98:f1:b3:74:52:85:56: 52:c0:3b:3f:cd:07:56:ce:38:a3:ab:da:d6:48:40: ca:2d:ec:97:f9:c8:7b:a0:8f:fa:9d:4c:13:4f:11: 45:53:3d:64:9e:90:a6:9d:68:f8:1a:73:44:3a:54: cc:fb:f9:07:69:59:5d:bb:a0:d6:3a:4f:a2:15:7c: f2:7f:f4:61:ba:28:96:a5:e1:87:6b:87:91:b2:85: a7:8d:b2:bb:9f:dd:02:44:54:17:3b:5b:d1:b8:35: 77:e9:a1:49:6b:5f:23:92:c5:94:96:38:25:cc:92: f5:d9:62:02:42:26:ca:37:4b:37:31:db:dc:13:33: e7:4d:c5:0f:27:4f:f6:ef:1e:43:bd:26:24:2d:ab: 87:c0:f1:2b:7d:9b:84:1f:74:f1:df:6e:2c:51:27: 6a:0c:37:39:d4:aa:a1:8b:5d:d7:37:34:a9:3d:cd: 97:e3:f7:11:cb:23:99:71:c5:b0:c4:13:27:fe:d2: be:43:56:7a:4b:4a:1c:46:1e:d1:ba:3f:5e:cf:67: 45:19:72:3f:87:ca:7f:c2:c5:3d:14:ca:df:3a:e4: 51:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:46:4A:9E:B7:28:66:82:CE:A9:A3:E5:02:92:B4:D9:4E:59:93:A3 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f3:20:d7:6e:c5:1c:65:56:99:04:43:c8:ce:0f:ca:29:a8: 23:db:65:e9:51:54:76:c5:5d:3e:a0:5c:17:81:e5:bd:ec:7e: f3:fe:31:21:e8:ce:62:65:9a:8c:ad:24:c3:c6:da:d6:bb:b7: 51:ba:ee:e2:fb:56:15:a8:20:71:e7:60:a1:14:77:ff:23:42: b5:a7:aa:71:ba:d1:ca:1d:b3:87:df:60:b7:a0:d1:15:4a:2d: 4b:34:10:c5:08:bc:39:bf:33:c1:d5:49:da:36:81:d9:11:20: 84:4c:3a:3c:0f:a4:c7:1e:7c:e2:f4:33:f6:3f:10:7a:56:60: 6e:bf:0a:cb:02:2c:94:54:b6:d3:a0:a1:2c:1d:e1:82:2d:57: 7b:5f:60:19:ea:45:e2:e1:17:2d:3a:c0:db:bc:d9:03:d7:83: dc:d3:68:26:74:96:d9:35:7f:ec:69:7f:9b:f4:b1:02:7e:b6: 70:7d:c2:2e:4a:71:9e:09:9f:17:14:14:0e:80:e9:f4:fc:77: 61:10:5b:bd:5d:ee:a4:bc:83:84:b8:10:4a:97:54:85:9f:68: 69:09:75:42:90:58:f4:32:94:d7:ac:49:39:08:54:6f:09:ff: 40:ee:2e:82:21:06:d1:ed:7e:56:83:4b:80:d9:28:f9:a1:36: 74:00:ad:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwNjE3MDAzMjAxWhcNMjYwNjI0MDAzMjAxWjAYMRYwFAYD VQQDEw02YTMxZWIwMS1iMDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIjrCuLqa2fII7u2j/+Q3ADWX2ExkcGhdlWV47idAPh6/+Gj8Jjxs3RShVZS wDs/zQdWzjijq9rWSEDKLeyX+ch7oI/6nUwTTxFFUz1knpCmnWj4GnNEOlTM+/kH aVldu6DWOk+iFXzyf/RhuiiWpeGHa4eRsoWnjbK7n90CRFQXO1vRuDV36aFJa18j ksWUljglzJL12WICQibKN0s3MdvcEzPnTcUPJ0/27x5DvSYkLauHwPErfZuEH3Tx 324sUSdqDDc51Kqhi13XNzSpPc2X4/cRyyOZccWwxBMn/tK+Q1Z6S0ocRh7Ruj9e z2dFGXI/h8p/wsU9FMrfOuRR6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC9GSp63 KGaCzqmj5QKStNlOWZOjMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYPMg127FHGVWmQRDyM4PyimoI9tl6VFUdsVdPqBcF4Hlvex+8/4xIejOYmWa jK0kw8ba1ru3Ubru4vtWFaggcedgoRR3/yNCtaeqcbrRyh2zh99gt6DRFUotSzQQ xQi8Ob8zwdVJ2jaB2REghEw6PA+kxx584vQz9j8QelZgbr8KywIslFS206ChLB3h gi1Xe19gGepF4uEXLTrA27zZA9eD3NNoJnSW2TV/7Gl/m/SxAn62cH3CLkpxngmf FxQUDoDp9Px3YRBbvV3upLyDhLgQSpdUhZ9oaQl1QpBY9DKU16xJOQhUbwn/QO4u giEG0e1+VoNLgNko+aE2dACtKA== -----END CERTIFICATE-----Generated at Wed Jun 17 04:17:47 2026 by rpki-client