$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: BIUDE5x0JKxsv6f8isG1+3hz2gCHhMjz4aCV8Atvi1Y= Subject key identifier: B7:68:36:62:F9:EF:32:39:F5:54:18:A1:62:00:62:58:5E:5E:64:43 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: DE Signing time: Mon 01 Jun 2026 07:25:04 +0000 Manifest this update: Mon 01 Jun 2026 07:25:03 +0000 Manifest next update: Mon 08 Jun 2026 07:25:03 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: ZT9sFX+f2NQwNO5yw6sD59bEMFwe8ISgOblrLf3iUd4=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: 09psz8wD6VQRY3lNubXSJ0qySYqq1I9NwqwomYkBSy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 07:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Jun 1 07:25:03 2026 GMT Not After : Jun 8 07:25:03 2026 GMT Subject: CN=6a1d33d0-ba24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ca:38:aa:72:6c:a0:a7:0e:f8:ee:07:90:16: 55:ff:20:a0:47:60:ef:b0:5d:81:40:7c:f0:e4:ad: 81:a1:f9:c4:84:f5:82:9d:1f:3e:e5:ff:23:17:58: 6e:31:5c:b3:34:f0:46:60:73:25:0e:80:e3:25:04: 88:51:26:0e:07:33:d3:9c:fe:0b:06:b5:86:78:ed: 7c:b5:7c:c4:bf:69:9b:34:a6:d4:9d:d1:ab:b0:e2: 34:39:b6:dc:f0:7e:66:ae:40:9a:51:e2:5d:fa:ca: c2:a1:43:d6:25:e0:35:cd:05:95:71:fb:72:b8:9b: ef:37:00:50:f7:a4:00:47:50:e4:cf:82:bc:d6:5b: 6f:20:a7:2c:2e:7d:74:5e:7c:24:51:0e:a7:0f:ad: 58:9f:7f:33:a5:43:0d:fb:0d:0e:4f:7c:3a:7e:50: 17:a3:78:3a:f5:59:cd:d7:4b:dd:5a:35:87:ca:81: c5:f0:86:4e:62:02:61:73:d2:00:f3:78:eb:86:4d: b1:73:89:c9:ab:3c:75:f5:92:5a:6e:3d:d2:11:ca: 29:48:40:26:df:0f:c2:0d:06:32:fc:cc:71:b0:ec: 49:c4:ec:12:0f:e7:f8:be:e8:34:ce:e8:ba:b4:db: 60:3f:98:24:c1:72:2f:c5:1c:3a:75:63:6f:d1:2d: 0a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:68:36:62:F9:EF:32:39:F5:54:18:A1:62:00:62:58:5E:5E:64:43 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ee:bf:e8:db:af:50:77:fa:ac:d8:19:1a:9c:fb:00:59:66: ce:c0:44:3b:a9:f0:b7:1f:ef:af:6b:0f:ed:e5:4e:be:5f:dd: 62:16:f2:a1:bd:a7:9a:8c:cf:c2:f3:a8:8f:90:7b:07:c5:17: 89:08:38:62:ca:bf:5c:83:92:83:08:c0:ba:da:8c:e1:78:01: 19:1d:f7:95:a5:34:bd:ce:9b:e5:3f:14:10:fc:da:d7:34:99: af:80:78:f0:1d:a4:eb:2b:81:3d:6a:0c:41:6f:8d:7a:a3:c2: fd:24:95:e5:2b:88:3a:8e:b6:41:24:6f:94:94:f8:e0:74:9a: 12:20:84:86:b2:ad:fc:fe:d2:a4:fa:f4:2a:72:d4:a7:e2:cc: cb:1b:e7:be:a5:9a:ec:9c:38:eb:f5:8d:2f:5d:dd:ed:23:45: 3e:dc:c8:4b:c2:c0:60:55:5a:b1:7f:bb:43:1f:61:29:bd:aa: 7a:4b:1d:3d:27:3a:c0:c0:40:b1:57:9a:82:9c:36:96:78:16: 3a:5b:a8:c9:68:77:4a:48:fb:c1:12:61:ac:22:ef:f3:eb:12: 12:5c:71:4f:36:1c:a3:2a:61:cc:1f:6a:c7:58:4b:9f:90:cd: ee:0d:44:69:f9:4d:af:1c:2c:98:e1:ed:1b:32:20:fb:4a:d6: 33:c5:43:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKEIwRDUyNUVBOTlENEM4RUM3NTYwNzEyNkE0OUVGNjcw N0JENkY0QUQwHhcNMjYwNjAxMDcyNTAzWhcNMjYwNjA4MDcyNTAzWjAYMRYwFAYD VQQDEw02YTFkMzNkMC1iYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38o4qnJsoKcO+O4HkBZV/yCgR2DvsF2BQHzw5K2BofnEhPWCnR8+5f8jF1hu MVyzNPBGYHMlDoDjJQSIUSYOBzPTnP4LBrWGeO18tXzEv2mbNKbUndGrsOI0Obbc 8H5mrkCaUeJd+srCoUPWJeA1zQWVcftyuJvvNwBQ96QAR1Dkz4K81ltvIKcsLn10 XnwkUQ6nD61Yn38zpUMN+w0OT3w6flAXo3g69VnN10vdWjWHyoHF8IZOYgJhc9IA 83jrhk2xc4nJqzx19ZJabj3SEcopSEAm3w/CDQYy/MxxsOxJxOwSD+f4vug0zui6 tNtgP5gkwXIvxRw6dWNv0S0KeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLdoNmL5 7zI59VQYoWIAYlheXmRDMB8GA1UdIwQYMBaAFLDVJeqZ1MjsdWBxJqSe9nB71vSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS83QkEzRTcwQzBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlPeDFZSEVtcEo3MmNIdlc5 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRDOS83QkEzRTcwQzBFQzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlP eDFZSEVtcEo3MmNIdlc5SzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWe6/6NuvUHf6rNgZGpz7AFlmzsBEO6nwtx/vr2sP7eVOvl/dYhbyob2nmozP wvOoj5B7B8UXiQg4Ysq/XIOSgwjAutqM4XgBGR33laU0vc6b5T8UEPza1zSZr4B4 8B2k6yuBPWoMQW+NeqPC/SSV5SuIOo62QSRvlJT44HSaEiCEhrKt/P7SpPr0KnLU p+LMyxvnvqWa7Jw46/WNL13d7SNFPtzIS8LAYFVasX+7Qx9hKb2qeksdPSc6wMBA sVeagpw2lngWOluoyWh3Skj7wRJhrCLv8+sSElxxTzYcoyphzB9qx1hLn5DN7g1E aflNrxwsmOHtGzIg+0rWM8VDaA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:33:58 2026 by rpki-client