$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: qm5hYrEgEvyIyBWGLDqMlNIhkidsomJ+KMs8vpQDG/c= Subject key identifier: C1:4F:18:AB:C3:0E:43:54:3D:12:D5:D3:FC:DD:C9:4E:2A:C3:D9:BC Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1CBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1CA7 Signing time: Sat 20 Jun 2026 16:06:34 +0000 Manifest this update: Sat 20 Jun 2026 16:06:34 +0000 Manifest next update: Sat 27 Jun 2026 16:06:34 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: nGtEqVfnVWrTQ06sS9IDtbUmaUVmHJ+g6FakvKOPRQw=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: Mltlh2bx7WYK1xzaK+H07Yqp+mKuF+w3gv8nIlWhSn8=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: GM2/Zg+eI19YNP6sUwovNgmANsfWwnnAjBpybeU+09Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 16:06:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7357 (0x1cbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Jun 20 16:06:34 2026 GMT Not After : Jun 27 16:06:34 2026 GMT Subject: CN=6a36ba8a-ada1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d3:d7:03:0b:aa:8d:54:75:88:1b:1f:ad:81: f0:1a:36:5c:41:cd:64:33:e9:e3:96:59:4c:32:78: e1:3a:ae:7a:0b:33:14:44:38:ad:c9:2a:d0:e0:e8: e0:9e:aa:74:8f:79:44:7b:02:ed:e3:8e:1e:65:3b: 42:21:67:72:92:fd:9d:ff:01:f3:11:5d:3e:dc:ad: 3b:d8:15:10:f0:d1:31:67:0f:11:71:85:91:68:1a: 1b:93:32:e1:ed:d1:8a:8f:c8:35:08:de:83:64:67: 61:cd:ec:ef:10:5e:3a:2d:a1:09:9f:d3:93:c3:b9: 69:ef:4e:c0:e0:4a:8b:90:7a:43:f8:b9:51:35:11: 29:66:f4:cf:b0:53:cc:3d:d7:83:b5:8e:c7:1d:1f: d2:58:83:dd:f0:c6:b0:16:be:09:ec:0b:13:f6:6e: 79:e4:f9:fe:81:c3:d3:f6:90:49:69:59:83:0c:2f: 66:47:3f:94:0a:c5:25:79:c2:1f:8a:bb:9a:29:15: 1b:b3:b6:66:0a:43:b2:25:9c:b1:46:bc:f1:83:b1: ce:51:d7:df:ad:7d:23:a8:bd:20:f0:6f:3a:31:57: 23:93:c7:bc:05:07:34:85:35:85:c3:d1:60:42:c0: 4e:a9:c1:f9:99:30:65:16:cc:dc:28:ea:5d:00:38: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4F:18:AB:C3:0E:43:54:3D:12:D5:D3:FC:DD:C9:4E:2A:C3:D9:BC X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:60:c3:11:23:96:76:25:e4:a3:66:63:20:eb:e7:08:9a:b9: 75:39:66:38:8d:49:36:ff:48:b8:95:37:59:15:3e:12:76:56: 24:12:d5:b6:b8:89:99:4d:fd:e8:41:61:69:14:64:6b:0c:26: 6d:dd:14:78:5e:75:18:e9:7a:3b:29:22:9b:69:1b:62:3b:4f: 80:99:01:ab:1c:d8:50:aa:9e:9d:90:28:49:f8:a2:6b:37:12: 05:b8:bf:e8:7c:4f:85:a4:aa:03:d3:b9:79:73:f0:3e:99:f1: 4e:ff:48:4d:97:de:41:64:be:f9:07:d4:23:45:49:6b:e3:b3: 10:a1:2d:a0:88:23:77:79:c2:b7:f2:ae:7b:e2:bf:f1:e0:3c: e6:1a:a6:17:5d:24:22:6a:6b:6a:99:cf:e0:22:d7:02:13:44: 34:f6:d2:e6:8f:18:bc:b0:ba:92:d7:d6:cb:7c:17:7b:a0:78: 22:11:ac:b5:48:cc:4c:5f:e8:35:f2:26:4e:57:fd:42:16:06: 12:ae:c7:bd:2a:1a:41:b5:bd:04:26:9c:60:d8:c3:90:02:86: 3d:90:2e:7f:3b:0d:6d:e2:87:5a:19:c2:f0:1d:7e:d1:a7:9b: 29:81:09:fa:95:95:51:29:53:cc:21:2e:06:89:6a:bd:da:cf: 28:5b:a2:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwNjIwMTYwNjM0WhcNMjYwNjI3MTYwNjM0WjAYMRYwFAYD VQQDEw02YTM2YmE4YS1hZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndPXAwuqjVR1iBsfrYHwGjZcQc1kM+njlllMMnjhOq56CzMURDitySrQ4Ojg nqp0j3lEewLt444eZTtCIWdykv2d/wHzEV0+3K072BUQ8NExZw8RcYWRaBobkzLh 7dGKj8g1CN6DZGdhzezvEF46LaEJn9OTw7lp707A4EqLkHpD+LlRNREpZvTPsFPM PdeDtY7HHR/SWIPd8MawFr4J7AsT9m555Pn+gcPT9pBJaVmDDC9mRz+UCsUlecIf iruaKRUbs7ZmCkOyJZyxRrzxg7HOUdffrX0jqL0g8G86MVcjk8e8BQc0hTWFw9Fg QsBOqcH5mTBlFszcKOpdADib9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMFPGKvD DkNUPRLV0/zdyU4qw9m8MB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdmDDESOWdiXko2ZjIOvnCJq5dTlmOI1JNv9IuJU3WRU+EnZWJBLVtriJmU39 6EFhaRRkawwmbd0UeF51GOl6Oykim2kbYjtPgJkBqxzYUKqenZAoSfiiazcSBbi/ 6HxPhaSqA9O5eXPwPpnxTv9ITZfeQWS++QfUI0VJa+OzEKEtoIgjd3nCt/Kue+K/ 8eA85hqmF10kImprapnP4CLXAhNENPbS5o8YvLC6ktfWy3wXe6B4IhGstUjMTF/o NfImTlf9QhYGEq7HvSoaQbW9BCacYNjDkAKGPZAufzsNbeKHWhnC8B1+0aebKYEJ +pWVUSlTzCEuBolqvdrPKFui/w== -----END CERTIFICATE-----Generated at Sun Jun 21 08:19:31 2026 by rpki-client