$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft File: caPb4vD_0LEHymtXE7Fcl6jj4dE.mft (raw, json) Hash identifier: TyxbX71vZB/KBUY1IPyj2iJmKEMpQzSPmgxlGwA9gNg= Subject key identifier: F0:9C:7A:37:D0:EF:B3:51:AE:46:55:04:04:3A:E5:7A:26:87:EE:83 Authority key identifier: 71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 Certificate issuer: /CN=A91EEE79/serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft Manifest number: 71 Signing time: Tue 23 Jun 2026 08:03:12 +0000 Manifest this update: Tue 23 Jun 2026 08:03:11 +0000 Manifest next update: Tue 30 Jun 2026 08:03:11 +0000 Files and hashes: 1: caPb4vD_0LEHymtXE7Fcl6jj4dE.crl (hash: 8raDxtgtfpYOB3pZT+HvwwlBBy9WU+A99wJzI2Vqa0Y=) 2: 078123C8C45711F09E1B7D38C4F9AE02.roa (hash: 77Ti4coJG6upOfWGSXiHZBgxkM1mBFKcvk6A/BW0GOQ=) 3: 0853E998C45711F080167D38C4F9AE02.roa (hash: q06BkXWxrAKL8dfnFJAQ0hKBleWRtfFz0FU/k9ATOTo=) 4: 07EF6C98C45711F0A1027D38C4F9AE02.roa (hash: MKqJq2FumoKTrTwmyrH8ChMilgYTt/EL/h7r2rH2ApY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 08:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE79, serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Validity Not Before: Jun 23 08:03:11 2026 GMT Not After : Jun 30 08:03:11 2026 GMT Subject: CN=6a3a3dbf-5fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:37:54:1e:da:aa:e4:1f:a3:58:94:89:c4:37: 4f:a8:63:b9:1a:38:ec:7c:3f:b9:73:0c:82:2a:36: f5:1e:a4:7d:67:c7:c2:4f:ce:d3:44:42:c7:d7:17: 56:f3:1c:d7:d5:e9:09:cc:c6:e0:84:62:50:2e:10: ff:b2:db:82:01:55:09:da:3a:fe:85:a7:81:4d:0b: e3:ad:3b:2f:bf:e2:79:cf:e6:11:b2:53:a9:69:d5: 6f:4a:63:56:b9:22:94:4b:28:3d:04:11:20:30:44: d9:d5:6e:ab:25:a1:74:ee:59:ff:8f:58:3b:be:99: 78:72:5c:7d:b1:24:4d:ab:9f:85:20:c5:08:ad:53: ce:60:1d:12:b2:64:d3:a6:c0:a2:03:6e:7b:60:41: 9b:73:e3:98:d7:3f:dd:7d:14:39:40:1d:5c:a2:43: 0b:49:4e:2a:44:cd:53:c9:a5:07:70:65:ae:2d:9d: ca:57:bf:b4:5f:34:e9:99:c5:5a:52:0d:53:02:a5: c6:87:8b:84:5c:7d:75:94:b4:d0:72:d6:50:3e:46: 5c:d8:23:d0:0f:01:dc:ea:da:4a:ff:04:f3:71:c2: 01:9f:c7:74:99:0c:28:dc:c5:f2:c0:ef:6d:2a:6b: c9:d6:5f:dd:45:0e:72:78:41:81:d2:f7:90:84:17: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9C:7A:37:D0:EF:B3:51:AE:46:55:04:04:3A:E5:7A:26:87:EE:83 X509v3 Authority Key Identifier: keyid:71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:6a:f0:55:87:9d:37:3b:b5:37:36:5b:79:6e:06:8c:79:b5: a7:c4:8a:75:67:6f:ae:0f:80:15:f2:4e:d6:1d:b0:34:63:e5: 80:3d:1d:d5:36:7c:d6:af:d3:47:6e:a7:45:79:25:5d:11:c5: 56:5d:45:ac:71:52:e5:31:02:f8:95:ae:80:1a:67:6e:90:af: eb:30:0b:d8:9d:bc:77:62:24:a7:ef:9b:98:c0:10:42:dc:d5: be:58:02:1f:25:42:3c:ab:46:13:34:d2:c8:5f:a4:75:7f:aa: 46:7b:b6:b7:a8:48:e6:34:9d:f3:94:1e:14:2d:d8:33:46:4a: 46:40:a9:93:ba:9f:81:18:c1:fc:99:bf:72:c5:f8:d7:6c:ca: 65:9b:92:f7:4b:a7:39:a4:84:6f:7b:eb:b8:63:04:47:de:e0: b9:ae:06:34:13:a9:e0:80:10:79:55:07:27:2f:e2:19:44:85: cf:7c:ab:a4:8d:dc:4a:70:5e:2f:3a:31:d3:88:b9:55:5a:df: f9:b6:68:60:c7:28:c5:49:b2:b5:d6:23:2c:4d:72:9b:ca:73: 5d:b5:0d:08:ec:38:61:cb:d8:78:b4:51:aa:f7:55:ab:bd:4d: 96:27:01:af:5b:84:c1:22:bc:9a:5e:a9:0a:26:10:0f:ac:fc: ef:be:3d:9d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RUU3OTExMC8GA1UEBRMoNzFBM0RCRTJGMEZGRDBCMTA3Q0E2QjU3MTNCMTVDOTdB OEUzRTFEMTAeFw0yNjA2MjMwODAzMTFaFw0yNjA2MzAwODAzMTFaMBgxFjAUBgNV BAMTDTZhM2EzZGJmLTVmZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWN1Qe2qrkH6NYlInEN0+oY7kaOOx8P7lzDIIqNvUepH1nx8JPztNEQsfXF1bz HNfV6QnMxuCEYlAuEP+y24IBVQnaOv6Fp4FNC+OtOy+/4nnP5hGyU6lp1W9KY1a5 IpRLKD0EESAwRNnVbqsloXTuWf+PWDu+mXhyXH2xJE2rn4UgxQitU85gHRKyZNOm wKIDbntgQZtz45jXP919FDlAHVyiQwtJTipEzVPJpQdwZa4tncpXv7RfNOmZxVpS DVMCpcaHi4RcfXWUtNBy1lA+RlzYI9APAdzq2kr/BPNxwgGfx3SZDCjcxfLA720q a8nWX91FDnJ4QYHS95CEF+9TAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU8Jx6N9Dv s1GuRlUEBDrleiaH7oMwHwYDVR0jBBgwFoAUcaPb4vD/0LEHymtXE7Fcl6jj4dEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFRTc5Lzk1MUUyOEY4QzQ1 NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExFSHltdFhFN0ZjbDZqajRk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2FQYjR2RF8wTEVIeW10WEU3RmNsNmpqNGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF RTc5Lzk1MUUyOEY4QzQ1NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExF SHltdFhFN0ZjbDZqajRkRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCFavBVh503O7U3Nlt5bgaMebWnxIp1Z2+uD4AV8k7WHbA0Y+WAPR3VNnzWr9NH bqdFeSVdEcVWXUWscVLlMQL4la6AGmdukK/rMAvYnbx3YiSn75uYwBBC3NW+WAIf JUI8q0YTNNLIX6R1f6pGe7a3qEjmNJ3zlB4ULdgzRkpGQKmTup+BGMH8mb9yxfjX bMplm5L3S6c5pIRve+u4YwRH3uC5rgY0E6nggBB5VQcnL+IZRIXPfKukjdxKcF4v OjHTiLlVWt/5tmhgxyjFSbK11iMsTXKbynNdtQ0I7Dhhy9h4tFGq91WrvU2WJwGv W4TBIryaXqkKJhAPrPzvvj2d -----END CERTIFICATE-----Generated at Wed Jun 24 21:16:57 2026 by rpki-client