$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: JKIppY0aLoPa6K2St72UITUF8c8QhzcFrYVIbvSLmEY= Subject key identifier: E6:F5:85:8C:AE:C9:AA:FC:85:6E:01:9A:9A:F9:05:AA:2B:25:8B:84 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 095B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 092F Signing time: Tue 30 Jun 2026 18:18:55 +0000 Manifest this update: Tue 30 Jun 2026 18:18:54 +0000 Manifest next update: Tue 07 Jul 2026 18:18:54 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: 7P8ZTMRiLSi4j3WmQhZ9xEt3oNDn0ohlQRiFKZFqXAU=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: BoTL56JNkoT8zZTebPvc7QbRsS4FGOp32MGJ/vJjCqw=) 3: D385E420314711EBA579873DC4F9AE02.roa (hash: OXpsFXQnHysc6JgYoLG/ywf9w/jV3FpEntMMj1+ecpM=) 4: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: x1jD2hg6E8urDPutIfNWsExPrrmq8yEETqPUKu1cNM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 Jul 2026 15:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2395 (0x95b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Jun 30 18:18:54 2026 GMT Not After : Jul 7 18:18:54 2026 GMT Subject: CN=6a44088e-6697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a1:fa:1c:cf:46:02:65:62:8c:16:bd:a0:16: fc:ce:0b:95:14:fb:1d:d7:cc:81:44:2e:68:19:e8: b0:98:bb:5e:03:6c:7d:44:41:16:8d:c4:fa:c4:44: e0:f5:5c:7e:da:48:42:c2:06:cc:af:25:2d:8e:f5: 1c:ed:46:3f:41:d6:c1:ac:b2:ac:37:50:64:a7:f2: 4b:b6:de:8d:10:f1:7c:b9:15:9f:f7:0b:71:0d:58: 85:b5:fa:32:eb:d0:23:56:51:a0:cf:f8:64:44:89: c1:cc:2d:8b:f8:5e:3a:a4:a6:c2:c9:3e:9e:57:4a: 07:8b:56:5d:b2:9f:1a:be:ab:c5:97:8c:3d:67:37: 81:65:71:f5:e1:dc:b8:38:24:be:c1:8c:b3:16:c1: 3d:19:6f:2a:b0:e2:a9:d7:1d:c0:48:c8:11:1a:90: ef:2f:b4:7f:d9:84:95:c3:d6:f2:75:f3:8a:bc:16: 10:9d:a7:7e:67:8d:6d:43:0f:a8:32:e0:96:c8:38: 83:58:7d:b0:ec:58:4a:d0:2a:d5:62:bb:19:51:ad: 9a:ba:ce:b5:f9:df:4d:d4:2f:d5:73:bb:e2:00:0f: 79:22:29:88:73:db:3c:7e:ca:88:aa:cd:4a:d9:e9: 44:f7:55:c1:e7:18:56:e6:bd:0a:6a:3c:96:13:a0: 6f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F5:85:8C:AE:C9:AA:FC:85:6E:01:9A:9A:F9:05:AA:2B:25:8B:84 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:5c:42:0c:53:e5:26:62:1e:7a:1f:64:49:cb:d9:97:bc:fd: df:74:d4:92:65:c6:b7:af:f1:ba:0f:cd:67:37:cb:fa:81:11: 70:71:6f:cc:56:4d:18:19:4d:62:f4:db:c6:19:2f:d1:5f:74: 2e:f3:77:95:d8:a3:64:85:d7:8d:6b:91:81:b5:22:2c:7e:ab: ed:39:04:0f:7a:c1:6f:f6:aa:39:73:c5:4b:7b:18:bc:c6:00: 50:f9:b8:f2:82:3d:ce:9d:94:b2:b2:9c:60:15:0f:9e:57:a3: a2:de:7f:ce:fa:94:49:5e:5c:06:e5:27:ee:6a:2c:2e:2b:fe: 7c:78:39:26:52:cf:9c:e0:9c:7c:5c:94:d0:70:10:d8:8b:02: 89:53:a2:d6:96:02:67:cc:47:60:79:11:43:e8:6c:65:50:94: 29:42:d3:0c:e2:84:50:da:5f:de:55:a6:89:57:a8:85:0c:8b: 0f:e1:14:8e:cc:21:f0:c5:fe:dc:2c:f6:3e:6f:11:a0:eb:75: 74:ab:a1:4e:57:93:8f:76:60:13:57:f3:f0:82:cd:5b:b7:d6: 32:6a:46:a3:29:5b:e6:b1:46:c8:c3:d4:02:e4:82:7b:2c:f5: 5f:e1:63:d2:28:3e:9d:1e:dd:7e:d4:f8:67:93:a3:27:a7:42: 75:5e:c3:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjYwNjMwMTgxODU0WhcNMjYwNzA3MTgxODU0WjAYMRYwFAYD VQQDEw02YTQ0MDg4ZS02Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aH6HM9GAmVijBa9oBb8zguVFPsd18yBRC5oGeiwmLteA2x9REEWjcT6xETg 9Vx+2khCwgbMryUtjvUc7UY/QdbBrLKsN1Bkp/JLtt6NEPF8uRWf9wtxDViFtfoy 69AjVlGgz/hkRInBzC2L+F46pKbCyT6eV0oHi1Zdsp8avqvFl4w9ZzeBZXH14dy4 OCS+wYyzFsE9GW8qsOKp1x3ASMgRGpDvL7R/2YSVw9bydfOKvBYQnad+Z41tQw+o MuCWyDiDWH2w7FhK0CrVYrsZUa2aus61+d9N1C/Vc7viAA95IimIc9s8fsqIqs1K 2elE91XB5xhW5r0KajyWE6BvlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOb1hYyu yar8hW4Bmpr5BaorJYuEMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJlxCDFPlJmIeeh9kScvZl7z933TUkmXGt6/xug/NZzfL+oERcHFvzFZNGBlN YvTbxhkv0V90LvN3ldijZIXXjWuRgbUiLH6r7TkED3rBb/aqOXPFS3sYvMYAUPm4 8oI9zp2UsrKcYBUPnlejot5/zvqUSV5cBuUn7mosLiv+fHg5JlLPnOCcfFyU0HAQ 2IsCiVOi1pYCZ8xHYHkRQ+hsZVCUKULTDOKEUNpf3lWmiVeohQyLD+EUjswh8MX+ 3Cz2Pm8RoOt1dKuhTleTj3ZgE1fz8ILNW7fWMmpGoylb5rFGyMPUAuSCeyz1X+Fj 0ig+nR7dftT4Z5OjJ6dCdV7D6Q== -----END CERTIFICATE-----Generated at Tue Jun 30 22:41:22 2026 by rpki-client