$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: dhv4Wr6NGIsbr3d1pEozn0OuqlQO6OU8CEWXe00pQHQ= Subject key identifier: 61:CD:EF:B5:C0:7F:67:B2:99:C2:C2:B2:62:BE:4F:E3:1B:22:91:44 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 024B Signing time: Thu 11 Jun 2026 04:33:48 +0000 Manifest this update: Thu 11 Jun 2026 04:33:48 +0000 Manifest next update: Thu 18 Jun 2026 04:33:48 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: G3VRXj6hdMSc/0FX3Zb9bvdVuAI4uGu8qiE/4JMYZqo=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: 2kSM4B/k8NdFJAL4ebPd/o/E0Fw58aj47tXGXUAxnss=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: JS1ZBhltkdXyrySkpU8SpuqRR1QN77GhpUZ60d1ygSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 04:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Jun 11 04:33:48 2026 GMT Not After : Jun 18 04:33:48 2026 GMT Subject: CN=6a2a3aac-71cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:80:be:ef:ed:94:a8:59:6e:4e:e5:0f:4d:ab: 26:1b:59:bb:a9:fc:0a:e5:66:13:79:80:dc:b1:3a: 5e:c6:0a:f0:32:99:ff:10:28:66:4a:7d:a8:99:55: 58:de:69:eb:81:c8:3d:c2:2f:ff:56:e0:bd:22:12: a4:74:44:7f:68:a5:63:06:31:21:cd:14:a5:14:94: 26:5a:0d:c3:7f:93:2e:fb:3b:91:f0:08:54:11:bf: fc:a9:9d:07:25:bb:92:71:8f:8b:f0:c2:3b:ec:9a: f5:b1:82:b9:77:ec:14:51:ef:66:dc:3c:ce:49:31: 3f:1f:a9:22:42:3f:3e:d2:fc:5b:1c:67:83:37:d7: dd:f5:de:23:ce:87:c7:68:9b:93:13:16:62:a7:a8: 9f:02:e7:5e:06:f1:a4:b8:da:86:f7:2f:14:d0:d1: 4a:0d:94:1e:47:33:a2:fd:65:35:12:62:10:4e:17: 12:ab:f8:b5:aa:8c:3a:fb:36:2f:f0:db:35:12:52: e3:ef:f7:b0:05:43:e5:92:f9:19:e4:7c:97:a2:ac: 70:b3:04:39:15:45:97:a5:9a:06:51:f2:6b:22:a1: ec:ae:0c:d2:71:4f:44:58:72:68:5f:ed:28:e2:bf: a6:81:ad:85:c0:45:72:9a:98:2e:3a:6c:01:5d:f1: 25:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:CD:EF:B5:C0:7F:67:B2:99:C2:C2:B2:62:BE:4F:E3:1B:22:91:44 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:13:91:2e:8a:b0:4e:27:ef:ce:55:4c:3d:dc:5b:eb:cc:5c: 29:ef:04:9d:e9:1c:b9:e5:04:06:c5:ef:84:11:6b:71:29:52: c1:fc:d0:51:17:3b:10:b8:8d:7b:1f:93:cb:c0:d9:b1:40:2d: 8e:ae:3d:84:1a:d4:3e:8b:ee:92:3c:bf:ce:99:7c:f4:98:ef: c6:eb:7b:8c:cf:23:98:e0:9c:2a:03:d5:d5:00:8a:3c:e4:4e: 60:c0:e3:d8:e6:4a:b3:37:02:18:4b:14:82:8a:4d:25:88:1c: 1a:a9:ea:5e:37:29:99:7f:cd:1e:56:7b:11:e9:c2:28:8a:8d: eb:f0:64:ad:84:0c:2f:08:07:3f:7b:06:d3:2f:f1:b4:76:cc: 17:9f:0e:3c:a4:ab:80:b9:52:1f:68:9c:17:46:b5:37:bc:c7: f3:54:eb:24:ae:10:98:8f:21:e0:fb:c5:49:9d:8f:ee:f7:31: 9c:98:19:0c:11:43:f6:ac:26:00:a1:64:64:66:16:8c:10:05: 1a:26:b3:00:ff:7f:0d:37:9c:24:20:62:e6:c4:cd:e6:1d:66: ae:f8:1b:d5:b4:5c:1c:8a:53:57:1f:3b:ab:8e:56:e5:64:ca: a0:50:06:48:bc:d7:bd:02:6a:1a:e0:95:43:69:be:50:0b:96: f4:7c:d9:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjYwNjExMDQzMzQ4WhcNMjYwNjE4MDQzMzQ4WjAYMRYwFAYD VQQDEw02YTJhM2FhYy03MWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4C+7+2UqFluTuUPTasmG1m7qfwK5WYTeYDcsTpexgrwMpn/EChmSn2omVVY 3mnrgcg9wi//VuC9IhKkdER/aKVjBjEhzRSlFJQmWg3Df5Mu+zuR8AhUEb/8qZ0H JbuScY+L8MI77Jr1sYK5d+wUUe9m3DzOSTE/H6kiQj8+0vxbHGeDN9fd9d4jzofH aJuTExZip6ifAudeBvGkuNqG9y8U0NFKDZQeRzOi/WU1EmIQThcSq/i1qow6+zYv 8Ns1ElLj7/ewBUPlkvkZ5HyXoqxwswQ5FUWXpZoGUfJrIqHsrgzScU9EWHJoX+0o 4r+mga2FwEVympguOmwBXfElrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGHN77XA f2eymcLCsmK+T+MbIpFEMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQxORLoqwTifvzlVMPdxb68xcKe8EnekcueUEBsXvhBFrcSlSwfzQURc7ELiN ex+Ty8DZsUAtjq49hBrUPovukjy/zpl89Jjvxut7jM8jmOCcKgPV1QCKPOROYMDj 2OZKszcCGEsUgopNJYgcGqnqXjcpmX/NHlZ7EenCKIqN6/BkrYQMLwgHP3sG0y/x tHbMF58OPKSrgLlSH2icF0a1N7zH81TrJK4QmI8h4PvFSZ2P7vcxnJgZDBFD9qwm AKFkZGYWjBAFGiazAP9/DTecJCBi5sTN5h1mrvgb1bRcHIpTVx87q45W5WTKoFAG SLzXvQJqGuCVQ2m+UAuW9HzZVg== -----END CERTIFICATE-----Generated at Fri Jun 12 17:41:33 2026 by rpki-client