$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft File: Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json) Hash identifier: z5yJKRg4BmtamtWO6wTNN1lTBPbMMrFyUYOsAIxIfn8= Subject key identifier: 7C:54:88:CD:0D:6F:7A:E9:10:CA:A8:DA:59:CA:4B:AF:97:AD:D0:21 Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft Manifest number: 0139 Signing time: Mon 01 Jun 2026 04:18:59 +0000 Manifest this update: Mon 01 Jun 2026 04:18:59 +0000 Manifest next update: Mon 08 Jun 2026 04:18:59 +0000 Files and hashes: 1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: 2Gsv1GEQQNI5FByKIk775A95pEAnrg5425NpeKLPuew=) 2: 1C6D5ED2C51F11F08993E41BC4F9AE02.roa (hash: h9DoWAti9FtevIgArDst4H6dPePV+rhbEHLYlKOnyqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Jun 1 04:18:59 2026 GMT Not After : Jun 8 04:18:59 2026 GMT Subject: CN=6a1d0833-21f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f7:d8:73:de:09:71:b4:66:46:01:4e:ee:9c: 82:98:22:3e:17:e3:f8:cb:e4:07:ab:5d:8f:8b:db: 00:d4:6c:2a:fe:15:f7:7d:fd:15:c9:9a:f8:3f:8f: c6:d7:85:1a:ae:59:29:47:c1:34:e5:2d:0b:de:e4: 8f:53:8d:33:a7:41:67:a7:d1:f2:9a:4f:dc:28:55: 72:e9:2f:b0:11:6f:62:04:93:11:63:5a:a6:c8:82: 05:b8:7a:c2:8e:ff:8d:77:14:23:62:f5:bf:d5:6e: ef:5f:94:a6:c3:e1:d2:64:d8:2d:c0:27:38:61:b8: 67:40:7e:a1:85:77:4c:a4:41:05:2c:03:94:e1:ea: 0b:83:96:39:67:10:cb:5a:da:98:a2:f0:0f:45:92: 44:20:9c:bc:95:55:70:e8:69:35:0b:63:6d:65:71: 2c:3a:eb:9a:df:6e:ce:ec:0c:e3:83:ef:af:79:05: fc:2f:22:18:cd:0f:91:b5:aa:7c:09:bf:cf:81:e2: 2e:90:1d:d5:03:c8:17:d7:8b:f3:29:83:0a:1c:09: 58:d0:a3:df:ab:f3:f7:75:37:59:19:ce:b3:2b:89: 2c:9e:99:32:62:b2:0a:d0:22:7c:5e:12:3d:6e:5f: 7c:5a:0c:09:ce:9a:b4:55:44:ec:f6:04:a1:d4:9d: 7d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:54:88:CD:0D:6F:7A:E9:10:CA:A8:DA:59:CA:4B:AF:97:AD:D0:21 X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:be:61:6b:99:c5:a3:8d:60:c7:60:56:85:23:57:c2:fc:ce: 97:6c:86:20:7d:12:d5:b0:20:c4:70:9c:a5:4e:24:4c:7a:d3: 5a:84:15:c6:23:84:fb:03:58:83:3f:00:d0:59:01:7b:e5:e3: eb:b2:7b:34:80:96:9e:dd:0b:c7:59:ed:32:6c:27:63:c2:66: 22:0e:05:d4:0c:9e:6b:e9:19:e8:56:50:74:fd:ea:30:bb:c0: 26:a9:60:66:ac:6f:9c:6c:a1:e3:55:91:f6:0e:e4:54:44:e3: 7a:75:b6:c1:54:7c:1f:91:44:24:2a:08:67:ff:79:43:0d:c3: 89:dd:50:0a:7e:a7:c5:70:81:cd:f6:d2:ce:f3:48:9b:51:7b: bb:c8:5a:9e:8c:5e:7b:29:31:78:d6:0d:4d:38:4b:ce:16:33: 5e:fd:5d:92:e6:cd:f6:c0:17:70:17:67:f6:27:35:42:15:71: 81:b5:95:c6:4f:b7:c9:79:85:2e:6f:b6:e3:6b:73:8f:d2:68: cb:68:9a:3f:d0:f5:3c:4b:4e:1b:fb:eb:54:92:78:0e:b7:e3: a2:16:9e:4a:f8:7e:f1:77:72:e8:50:99:24:c2:4c:01:ec:d9: 0f:5d:4c:b1:d7:81:56:84:02:38:21:75:95:ff:b3:70:a1:6d: 80:29:d8:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx RjM3Q0M4RTQwHhcNMjYwNjAxMDQxODU5WhcNMjYwNjA4MDQxODU5WjAYMRYwFAYD VQQDEw02YTFkMDgzMy0yMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPfYc94JcbRmRgFO7pyCmCI+F+P4y+QHq12Pi9sA1Gwq/hX3ff0VyZr4P4/G 14UarlkpR8E05S0L3uSPU40zp0Fnp9Hymk/cKFVy6S+wEW9iBJMRY1qmyIIFuHrC jv+NdxQjYvW/1W7vX5Smw+HSZNgtwCc4YbhnQH6hhXdMpEEFLAOU4eoLg5Y5ZxDL WtqYovAPRZJEIJy8lVVw6Gk1C2NtZXEsOuua327O7Azjg++veQX8LyIYzQ+Rtap8 Cb/PgeIukB3VA8gX14vzKYMKHAlY0KPfq/P3dTdZGc6zK4ksnpkyYrIK0CJ8XhI9 bl98WgwJzpq0VUTs9gSh1J19owIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHxUiM0N b3rpEMqo2lnKS6+XrdAhMB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5 T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS9EMDMyMEVGOEJGNEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktn dFRqb3pmZ3kyYW9mTjh5T1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvb5ha5nFo41gx2BWhSNXwvzOl2yGIH0S1bAgxHCcpU4kTHrTWoQVxiOE+wNY gz8A0FkBe+Xj67J7NICWnt0Lx1ntMmwnY8JmIg4F1Ayea+kZ6FZQdP3qMLvAJqlg ZqxvnGyh41WR9g7kVETjenW2wVR8H5FEJCoIZ/95Qw3Did1QCn6nxXCBzfbSzvNI m1F7u8hanoxeeykxeNYNTThLzhYzXv1dkubN9sAXcBdn9ic1QhVxgbWVxk+3yXmF Lm+242tzj9Joy2iaP9D1PEtOG/vrVJJ4DrfjohaeSvh+8Xdy6FCZJMJMAezZD11M sdeBVoQCOCF1lf+zcKFtgCnYaw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:24:10 2026 by rpki-client