$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft File: 9ES43awaKuycmNiYFhxzSCwu1Ig.mft (raw, json) Hash identifier: N7fahztu6+CavusgPKne4PAKa7GMbPW+Bnj9nXEomaA= Subject key identifier: 65:5E:AB:B2:EF:7F:C6:66:DB:AA:49:F9:6D:42:44:B2:58:F2:34:2E Authority key identifier: F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88 Certificate issuer: /CN=A91427E2/serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft Manifest number: 012F Signing time: Mon 01 Jun 2026 06:22:26 +0000 Manifest this update: Mon 01 Jun 2026 06:22:25 +0000 Manifest next update: Mon 08 Jun 2026 06:22:25 +0000 Files and hashes: 1: 9ES43awaKuycmNiYFhxzSCwu1Ig.crl (hash: EBoVpD6y0ScWRZOhZvQpXV70I79rJcE6wwaWEneE4mE=) 2: 52EADE54935111EF98AA8C86C4F9AE02.roa (hash: VhIuGtFPo2Cv8cAGYxGtYUO/7hhyF5U43Aacg6GF4jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91427E2, serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488 Validity Not Before: Jun 1 06:22:25 2026 GMT Not After : Jun 8 06:22:25 2026 GMT Subject: CN=6a1d2522-3265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b3:d4:69:67:ad:38:7b:0b:d1:b2:66:ab:03: 83:ac:03:fb:76:90:ed:63:20:ba:7a:7b:f3:cd:82: 63:f4:04:b5:9d:b3:c5:6d:08:d5:86:2c:21:4a:b1: 33:7b:3a:a0:92:94:d2:28:63:86:ec:81:34:8d:27: cc:92:56:12:43:72:c2:0b:a4:60:4c:e6:5c:c9:57: 74:c7:7b:a5:a7:d9:4a:a9:8f:73:f1:a8:05:30:b4: f0:35:b4:c1:c6:2c:14:3d:2e:17:b0:f3:2a:cb:7d: 7c:4a:b7:bc:d1:1d:fb:e7:75:95:de:05:39:0d:5d: ad:97:d9:17:51:41:01:35:52:7c:6a:dc:03:3f:8b: e6:c0:c7:1c:36:fa:fe:9e:40:94:c8:43:2d:83:51: 96:cc:b2:85:84:fd:75:a9:ae:b8:e9:94:29:b1:8d: a1:8b:d8:27:44:8d:5a:e0:c9:80:33:e3:ab:b7:eb: 93:0e:bb:57:99:fa:3a:a9:b2:ac:6f:a3:4c:30:5c: 1f:bb:10:5f:3f:6d:c9:75:07:68:b5:31:ee:05:fe: 52:77:53:6c:1c:fc:cd:43:82:82:43:30:a3:f3:48: 04:04:6e:4f:2e:12:b1:94:75:f5:3b:82:93:40:7e: 09:f1:63:35:b2:4a:3e:17:be:bb:a8:4c:b7:b7:29: f0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5E:AB:B2:EF:7F:C6:66:DB:AA:49:F9:6D:42:44:B2:58:F2:34:2E X509v3 Authority Key Identifier: keyid:F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:a3:ba:27:d6:f6:83:94:cf:44:45:f3:93:10:e7:88:3c:97: 42:c0:e7:30:eb:21:c0:5e:55:4b:fe:d1:da:6f:bf:ca:c1:85: b1:e6:d4:94:f8:86:5a:16:28:97:cd:ed:ff:9e:c6:60:4b:8f: b8:48:a1:01:29:8b:fe:3d:07:b6:30:73:92:71:a9:2d:5e:69: 30:79:eb:44:10:4a:0a:f7:00:ad:dc:34:8d:ff:8d:39:5c:30: 4d:ff:cf:68:76:3c:be:92:06:7b:72:7f:01:af:c3:01:ae:c4: 17:9e:1c:88:a0:49:32:aa:da:02:82:82:e2:4d:07:87:fd:6c: 9d:46:e6:5b:11:e2:4d:f7:c7:cb:55:42:07:4a:91:3c:63:fb: 81:42:28:9c:25:14:b7:ed:5b:2d:6d:b8:31:c9:36:9f:d8:ab: 16:4d:db:4d:c2:48:c9:fe:fb:c1:67:a7:44:88:31:ef:e7:0f: 24:9c:9e:72:a5:ae:ab:90:0e:5b:0e:ba:be:0b:84:ca:ab:ec: fb:a0:49:ee:47:a8:ae:34:73:ce:16:b4:8d:35:4b:69:e1:c1: 11:a1:d2:4a:fe:44:b0:59:9b:ba:43:38:6b:13:d5:86:8c:86: 5c:99:24:25:85:f3:69:31:7f:78:7d:41:8b:8a:27:42:e6:fa: 6a:36:62:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3RTIxMTAvBgNVBAUTKEY0NDRCOEREQUMxQTJBRUM5Qzk4RDg5ODE2MUM3MzQ4 MkMyRUQ0ODgwHhcNMjYwNjAxMDYyMjI1WhcNMjYwNjA4MDYyMjI1WjAYMRYwFAYD VQQDEw02YTFkMjUyMi0zMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7PUaWetOHsL0bJmqwODrAP7dpDtYyC6envzzYJj9AS1nbPFbQjVhiwhSrEz ezqgkpTSKGOG7IE0jSfMklYSQ3LCC6RgTOZcyVd0x3ulp9lKqY9z8agFMLTwNbTB xiwUPS4XsPMqy318Sre80R3753WV3gU5DV2tl9kXUUEBNVJ8atwDP4vmwMccNvr+ nkCUyEMtg1GWzLKFhP11qa646ZQpsY2hi9gnRI1a4MmAM+Ort+uTDrtXmfo6qbKs b6NMMFwfuxBfP23JdQdotTHuBf5Sd1NsHPzNQ4KCQzCj80gEBG5PLhKxlHX1O4KT QH4J8WM1sko+F767qEy3tynwNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGVeq7Lv f8Zm26pJ+W1CRLJY8jQuMB8GA1UdIwQYMBaAFPREuN2sGirsnJjYmBYcc0gsLtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjdFMi83MDMxQTFFQzkz NTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1eWNtTmlZRmh4elNDd3Ux SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlFUzQzYXdhS3V5Y21OaVlGaHh6U0N3dTFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjdFMi83MDMxQTFFQzkzNTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1 eWNtTmlZRmh4elNDd3UxSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABqO6J9b2g5TPREXzkxDniDyXQsDnMOshwF5VS/7R2m+/ysGFsebUlPiGWhYo l83t/57GYEuPuEihASmL/j0HtjBzknGpLV5pMHnrRBBKCvcArdw0jf+NOVwwTf/P aHY8vpIGe3J/Aa/DAa7EF54ciKBJMqraAoKC4k0Hh/1snUbmWxHiTffHy1VCB0qR PGP7gUIonCUUt+1bLW24Mck2n9irFk3bTcJIyf77wWenRIgx7+cPJJyecqWuq5AO Ww66vguEyqvs+6BJ7keorjRzzha0jTVLaeHBEaHSSv5EsFmbukM4axPVhoyGXJkk JYXzaTF/eH1Bi4onQub6ajZi2w== -----END CERTIFICATE-----Generated at Tue Jun 2 21:24:11 2026 by rpki-client