$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: UHI45V0hHRMSBqo4u5n2ccLC7zek7HOcaVOMbE4UEIs= Subject key identifier: 62:EF:89:09:EA:2B:8B:20:9A:49:DB:FA:98:17:24:DB:1C:66:3F:09 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 021F Signing time: Tue 23 Jun 2026 02:58:56 +0000 Manifest this update: Tue 23 Jun 2026 02:58:55 +0000 Manifest next update: Tue 30 Jun 2026 02:58:55 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: EOffctJyBCOfSRCI9hOCHbW3BquBgGJQV5yFGtzuPQY=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: EAtID2r50bcuRZVKtp+bEX8FvFjLB8tjThINGgwdwIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 02:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Jun 23 02:58:55 2026 GMT Not After : Jun 30 02:58:55 2026 GMT Subject: CN=6a39f670-cfde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3d:32:97:5b:61:92:a1:d6:73:ee:56:1b:84: 24:a2:65:4f:70:90:04:6b:ab:24:a6:ea:20:11:63: df:ad:f7:1b:2f:5e:47:45:1e:3d:3f:cb:ac:9f:18: 60:eb:aa:89:68:ab:28:53:76:63:c5:f6:56:c5:be: ca:71:9f:64:8a:30:07:dd:66:6a:a8:2a:17:54:6c: d4:d7:cc:30:21:35:a7:da:21:af:71:cc:5f:e3:b0: ab:cf:80:86:20:a1:67:5d:d3:05:ec:08:5e:b6:d4: 3a:a2:a4:1a:53:33:c9:33:d6:77:44:bc:cd:3a:94: c5:56:00:4f:d9:ed:6c:bb:bc:3d:34:b6:e7:76:49: 10:94:cf:71:54:2b:11:15:11:0b:26:e1:4d:e7:fe: d3:11:78:20:1e:bb:95:d5:c6:a4:5a:ef:b9:54:f8: 3e:44:37:d7:80:63:10:b4:fc:02:2c:24:92:c2:92: 82:a2:f8:ca:82:1a:eb:af:4a:b0:75:f8:57:17:cc: 91:fe:03:8a:4e:8c:e2:a4:31:23:d7:a2:2d:36:83: bb:79:86:30:52:7c:84:8b:30:04:a9:71:e4:21:61: 31:3d:b5:ec:1a:24:32:1f:e3:30:6c:94:ef:50:49: cf:92:39:26:87:c8:d1:97:4d:c1:76:41:26:1b:94: db:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:EF:89:09:EA:2B:8B:20:9A:49:DB:FA:98:17:24:DB:1C:66:3F:09 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:c7:15:0d:05:27:1e:70:95:6a:40:25:05:91:05:4f:96:6d: 9c:5c:a2:22:4d:c8:69:6a:1a:ca:e9:bd:c7:84:3b:ba:b2:97: 13:83:d5:72:01:f4:31:7a:ba:a2:af:a8:63:79:9a:cb:d0:43: c1:ac:55:02:2b:3c:4a:eb:4f:67:c8:cd:f9:43:1c:af:de:9f: 9a:d2:a3:13:42:38:da:b3:48:92:35:a8:7a:ff:6b:39:73:9b: 11:9f:ce:09:d3:06:91:c9:bd:0f:7a:6c:ff:42:07:d8:13:89: 2c:40:92:6a:1a:3c:f4:d7:14:1e:66:61:88:bf:c5:ed:87:d5: d8:2e:19:4c:2a:b9:d9:f4:12:5e:b0:08:ab:3c:21:6d:1f:09: 63:23:b1:b6:d5:31:7b:26:e1:f2:dd:25:1c:74:26:3f:c9:51: 8b:ee:e1:53:29:e8:7e:b8:58:be:6e:2b:d6:60:66:8f:8c:a1: 19:a8:92:5a:fb:8b:cf:3d:7a:7e:69:92:64:2c:16:ee:7d:55: 01:40:13:30:a6:e7:3b:c8:ca:d3:92:b2:a3:5d:0b:a2:02:07: 6f:41:d4:25:cc:de:35:96:fa:15:fb:56:03:4a:99:bd:91:86: 98:fd:52:d6:7a:cb:17:8c:5d:c8:b5:0c:05:8a:7f:a0:6d:9a: 8b:3e:92:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjYwNjIzMDI1ODU1WhcNMjYwNjMwMDI1ODU1WjAYMRYwFAYD VQQDEw02YTM5ZjY3MC1jZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqj0yl1thkqHWc+5WG4QkomVPcJAEa6skpuogEWPfrfcbL15HRR49P8usnxhg 66qJaKsoU3ZjxfZWxb7KcZ9kijAH3WZqqCoXVGzU18wwITWn2iGvccxf47Crz4CG IKFnXdMF7AhettQ6oqQaUzPJM9Z3RLzNOpTFVgBP2e1su7w9NLbndkkQlM9xVCsR FRELJuFN5/7TEXggHruV1cakWu+5VPg+RDfXgGMQtPwCLCSSwpKCovjKghrrr0qw dfhXF8yR/gOKTozipDEj16ItNoO7eYYwUnyEizAEqXHkIWExPbXsGiQyH+MwbJTv UEnPkjkmh8jRl03BdkEmG5TbvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGLviQnq K4sgmknb+pgXJNscZj8JMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ8cVDQUnHnCVakAlBZEFT5ZtnFyiIk3IaWoayum9x4Q7urKXE4PVcgH0MXq6 oq+oY3may9BDwaxVAis8SutPZ8jN+UMcr96fmtKjE0I42rNIkjWoev9rOXObEZ/O CdMGkcm9D3ps/0IH2BOJLECSaho89NcUHmZhiL/F7YfV2C4ZTCq52fQSXrAIqzwh bR8JYyOxttUxeybh8t0lHHQmP8lRi+7hUynofrhYvm4r1mBmj4yhGaiSWvuLzz16 fmmSZCwW7n1VAUATMKbnO8jK05Kyo10LogIHb0HUJczeNZb6FftWA0qZvZGGmP1S 1nrLF4xdyLUMBYp/oG2aiz6SPw== -----END CERTIFICATE-----Generated at Wed Jun 24 11:24:44 2026 by rpki-client