$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft File: pkvkSssA5L2uRJGw-gzXCZ0scnw.mft (raw, json) Hash identifier: nYd2yIjzooFuGpWRRYXBZltycCOhTVJdN1+XkUAsrtw= Subject key identifier: 7B:26:D7:1E:DC:8A:CD:0E:AD:C7:5C:A9:E8:A6:3C:39:6D:3B:17:9C Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft Manifest number: 011F Signing time: Tue 02 Jun 2026 18:59:10 +0000 Manifest this update: Tue 02 Jun 2026 18:59:10 +0000 Manifest next update: Tue 09 Jun 2026 18:59:10 +0000 Files and hashes: 1: pkvkSssA5L2uRJGw-gzXCZ0scnw.crl (hash: ee46vvS/ZhP/w/BXqGszFvf8gY1udYs41Z+obmkBIVk=) 2: 8D431594FFDF11EF8DF72930C4F9AE02.roa (hash: pkoy3XTlYyZ8zRpQAksJG/nCLkfVOV6ccFZKSXm/Z5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Jun 2 18:59:10 2026 GMT Not After : Jun 9 18:59:10 2026 GMT Subject: CN=6a1f27fe-3617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4f:78:70:36:bb:76:ea:9a:b2:d6:0d:fb:a8: 93:ae:2a:51:f5:c8:d9:ca:62:da:08:ec:4c:2a:07: b5:db:6d:b9:d5:34:4d:63:a4:81:e1:9e:f2:71:51: bd:82:26:dc:a4:7e:d9:fd:92:8f:04:f3:03:21:a0: e5:15:7b:3b:da:90:14:d1:a3:df:7f:c8:9c:15:ee: b6:51:36:2b:4a:12:5e:be:17:7e:0f:7d:cb:54:a0: 8e:dc:5c:4b:33:91:c0:48:4b:29:eb:af:ef:81:c6: 1a:c0:94:07:41:86:d0:9d:64:2e:24:2c:55:fd:32: 99:78:70:bd:68:7d:2a:f2:f9:e0:da:51:e9:e4:82: 94:ab:03:19:4d:68:4c:79:9b:ab:d7:72:16:39:82: 2c:37:30:52:f2:d0:6e:81:05:55:7b:4e:99:2b:5e: b0:0e:6c:11:3c:dc:f2:bd:00:05:7b:71:10:67:2a: 75:8b:ee:de:bd:a3:d4:61:a0:37:fd:62:dc:93:3b: 14:f1:81:01:44:f0:0c:cc:9f:d6:a0:82:3d:da:04: f4:b8:9a:1c:12:a0:d8:bd:e8:c7:40:7a:48:1a:45: 2d:dc:ec:50:64:90:96:a8:a6:48:0c:b2:ce:60:cf: 36:0e:26:7b:da:1c:18:02:3c:ca:e0:a2:3f:ba:72: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:26:D7:1E:DC:8A:CD:0E:AD:C7:5C:A9:E8:A6:3C:39:6D:3B:17:9C X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:fc:4a:c9:f6:be:49:62:91:39:d9:b6:cb:84:04:22:47:f2: 3d:17:a5:91:fd:58:13:2d:d6:34:00:c3:86:c5:fd:87:db:43: 70:1b:22:77:7d:c7:0c:67:31:5b:ee:d2:e5:58:5e:0a:d0:c8: ab:d4:7f:b6:3b:2f:8d:25:de:28:27:9f:a5:46:93:51:9b:33: a6:bd:ec:c3:21:e0:d3:01:91:78:ce:db:de:97:eb:f7:9b:44: d4:4a:52:f7:d5:63:67:05:5c:24:f5:7d:8b:0a:1e:0c:e5:2f: b2:d4:fa:f7:cc:75:1e:00:17:63:cf:98:9f:10:32:1b:c3:ea: 9a:80:15:2d:e8:e5:0c:6c:11:9e:a4:3a:98:a3:14:c1:5c:6f: c2:48:ce:1f:63:20:d9:2f:21:50:ca:42:77:14:5b:4f:58:ba: 03:3e:79:87:3a:c8:19:41:4a:43:b2:12:93:d3:5c:6a:81:a0: 43:9e:c8:b7:4f:ff:83:cc:d6:29:0e:a2:21:4d:45:4e:78:86: ab:eb:88:52:b7:03:82:c1:97:94:db:06:ea:ac:3a:3c:b4:71: 7d:90:4d:d2:a6:5b:1a:21:0c:5e:1d:ad:d5:25:b9:19:c9:f9: fb:a9:96:c2:48:38:4f:61:3a:92:29:19:a7:81:2d:65:66:ca: 53:88:16:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKEE2NEJFNDRBQ0IwMEU0QkRBRTQ0OTFCMEZBMENENzA5 OUQyQzcyN0MwHhcNMjYwNjAyMTg1OTEwWhcNMjYwNjA5MTg1OTEwWjAYMRYwFAYD VQQDEw02YTFmMjdmZS0zNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl094cDa7duqastYN+6iTripR9cjZymLaCOxMKge122251TRNY6SB4Z7ycVG9 gibcpH7Z/ZKPBPMDIaDlFXs72pAU0aPff8icFe62UTYrShJevhd+D33LVKCO3FxL M5HASEsp66/vgcYawJQHQYbQnWQuJCxV/TKZeHC9aH0q8vng2lHp5IKUqwMZTWhM eZur13IWOYIsNzBS8tBugQVVe06ZK16wDmwRPNzyvQAFe3EQZyp1i+7evaPUYaA3 /WLckzsU8YEBRPAMzJ/WoII92gT0uJocEqDYvejHQHpIGkUt3OxQZJCWqKZIDLLO YM82DiZ72hwYAjzK4KI/unLqewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHsm1x7c is0OrcdcqeimPDltOxecMB8GA1UdIwQYMBaAFKZL5ErLAOS9rkSRsPoM1wmdLHJ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9GODNFM0ZDRUFE QkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVMMnVSSkd3LWd6WENaMHNj bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9GODNFM0ZDRUFEQkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVM MnVSSkd3LWd6WENaMHNjbncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq/xKyfa+SWKROdm2y4QEIkfyPRelkf1YEy3WNADDhsX9h9tDcBsid33HDGcx W+7S5VheCtDIq9R/tjsvjSXeKCefpUaTUZszpr3swyHg0wGReM7b3pfr95tE1EpS 99VjZwVcJPV9iwoeDOUvstT698x1HgAXY8+YnxAyG8PqmoAVLejlDGwRnqQ6mKMU wVxvwkjOH2Mg2S8hUMpCdxRbT1i6Az55hzrIGUFKQ7ISk9NcaoGgQ57It0//g8zW KQ6iIU1FTniGq+uIUrcDgsGXlNsG6qw6PLRxfZBN0qZbGiEMXh2t1SW5Gcn5+6mW wkg4T2E6kikZp4EtZWbKU4gWpg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:41:14 2026 by rpki-client