$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: u9kFVCaUxux3SPEALcJ+UPFLUmRW0+pHTYkghfWKw5A= Subject key identifier: E7:BB:B4:0A:AD:A4:DE:27:F6:E8:1F:26:66:9A:08:84:E5:D1:A2:EE Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 023A Signing time: Tue 23 Jun 2026 02:43:44 +0000 Manifest this update: Tue 23 Jun 2026 02:43:43 +0000 Manifest next update: Tue 30 Jun 2026 02:43:43 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: PNkOHmiliA5i/+nBSdgeR7vEbSogpaCUhwa03sR76eQ=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: dL/U4UhMZabXz3OJx25MIDSywgaSKV+Fyuq3FcC4oxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 02:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Jun 23 02:43:43 2026 GMT Not After : Jun 30 02:43:43 2026 GMT Subject: CN=6a39f2df-1aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:10:6a:35:cb:be:f0:dc:89:05:b0:10:bc:61: 1d:d8:66:1e:c6:d1:70:98:fa:fd:73:b9:43:e7:06: 60:1e:36:61:f0:69:17:9a:84:82:3b:93:c7:6f:f7: cc:3f:00:fe:30:88:95:d2:fb:42:2d:d1:57:2b:d3: 1d:db:56:5e:a7:2d:81:fa:b9:23:c7:e2:25:bd:3c: cc:9d:48:ec:9b:9a:5c:cb:d5:61:0e:d8:bd:a3:8d: c0:a3:b2:3f:8e:69:da:5a:a9:3c:ae:c0:75:6f:45: b6:39:39:f7:80:48:52:e7:2a:3f:ce:ad:e7:f8:67: 11:58:34:9b:b1:da:85:4f:73:55:2d:8b:49:d2:ed: ec:f0:bd:a9:e2:ad:62:73:5e:a3:ed:91:a2:3a:32: d7:44:17:f6:97:a3:80:86:6f:6b:aa:10:01:40:1d: 0a:c7:78:53:41:81:72:d0:12:71:6c:99:56:69:47: 13:f3:db:1e:02:49:63:3a:52:54:f8:28:d8:0f:21: 20:79:de:cf:f0:37:ce:16:b2:c3:22:3e:ab:f8:31: 35:46:8c:d7:b5:86:63:9a:9f:ba:a5:55:85:9e:c4: 10:13:3a:12:45:c6:59:be:b3:96:82:b9:2e:ef:fd: 2b:80:05:24:ac:6f:05:8e:3c:c1:84:14:7c:ba:52: 4f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:BB:B4:0A:AD:A4:DE:27:F6:E8:1F:26:66:9A:08:84:E5:D1:A2:EE X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:48:f3:8b:df:e0:33:5b:c4:2e:fc:23:c0:ae:04:7f:26:18: 1c:84:74:c2:dc:8d:4e:11:dc:aa:d3:fc:1d:3c:b0:eb:65:0d: fa:0e:69:f6:08:db:55:d6:01:10:21:15:a9:d3:84:d0:cb:41: 68:d3:a5:9b:01:3a:91:dd:66:a4:cc:bf:d6:e0:a0:a7:59:e9: e0:b0:eb:38:d6:8b:9b:f5:2b:dc:bd:12:fd:25:57:0f:ba:62: 6b:45:02:2a:2d:d0:82:52:b2:7c:01:f4:32:5e:41:d0:71:c6: 17:b6:db:70:4c:2e:68:13:05:63:ed:f8:8d:4f:11:41:e2:8e: 76:d0:6f:ea:57:51:a9:1c:7e:99:a1:89:19:dc:cd:fc:50:06: d2:e3:e1:23:e6:2d:d1:51:06:29:1a:31:e1:97:47:10:1b:6a: 83:a9:10:7f:c6:84:66:d6:6a:7c:9f:e1:55:ad:b7:aa:cc:42: 86:1f:19:7a:e1:c3:fc:9c:2f:60:20:2d:82:99:b3:41:26:ea: 51:3d:83:e5:d6:e1:10:e5:b4:fb:bd:ea:b7:78:8f:28:8c:10: f2:a6:68:31:72:93:09:d4:18:f5:0c:7c:f4:51:0a:9a:2b:ac: 2c:37:85:39:cd:ea:bf:95:69:28:c3:6e:4a:55:1e:09:36:0f: 2a:46:d6:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwNjIzMDI0MzQzWhcNMjYwNjMwMDI0MzQzWjAYMRYwFAYD VQQDEw02YTM5ZjJkZi0xYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8hBqNcu+8NyJBbAQvGEd2GYextFwmPr9c7lD5wZgHjZh8GkXmoSCO5PHb/fM PwD+MIiV0vtCLdFXK9Md21Zepy2B+rkjx+IlvTzMnUjsm5pcy9VhDti9o43Ao7I/ jmnaWqk8rsB1b0W2OTn3gEhS5yo/zq3n+GcRWDSbsdqFT3NVLYtJ0u3s8L2p4q1i c16j7ZGiOjLXRBf2l6OAhm9rqhABQB0Kx3hTQYFy0BJxbJlWaUcT89seAkljOlJU +CjYDyEged7P8DfOFrLDIj6r+DE1RozXtYZjmp+6pVWFnsQQEzoSRcZZvrOWgrku 7/0rgAUkrG8FjjzBhBR8ulJPuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOe7tAqt pN4n9ugfJmaaCITl0aLuMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABkjzi9/gM1vELvwjwK4EfyYYHIR0wtyNThHcqtP8HTyw62UN+g5p9gjbVdYB ECEVqdOE0MtBaNOlmwE6kd1mpMy/1uCgp1np4LDrONaLm/Ur3L0S/SVXD7pia0UC Ki3QglKyfAH0Ml5B0HHGF7bbcEwuaBMFY+34jU8RQeKOdtBv6ldRqRx+maGJGdzN /FAG0uPhI+Yt0VEGKRox4ZdHEBtqg6kQf8aEZtZqfJ/hVa23qsxChh8ZeuHD/Jwv YCAtgpmzQSbqUT2D5dbhEOW0+73qt3iPKIwQ8qZoMXKTCdQY9Qx89FEKmiusLDeF Oc3qv5VpKMNuSlUeCTYPKkbWzQ== -----END CERTIFICATE-----Generated at Wed Jun 24 11:29:31 2026 by rpki-client