$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: 4HvIHu2qCjz7+fy91DI39XoYKOU+bCoI5KVEoRK7Uv8= Subject key identifier: C8:E9:2B:CB:9D:BF:2E:D6:3D:27:FD:DE:51:12:93:E5:C0:70:77:41 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 254D Signing time: Tue 02 Jun 2026 15:45:49 +0000 Manifest this update: Tue 02 Jun 2026 15:45:48 +0000 Manifest next update: Tue 09 Jun 2026 15:45:48 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: Om8J0VrhKYTRHvTGH0AosJDwkB9mRcTsmxkp2QporNc=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: 6oC3s9zXSmCynBY9z0T8TeaSrJ6gHinauk9Zr2y+ucg=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: l+zP+x/ZY9cq3nbV4r5XpYolKqUr/0Lu8hDJSfvQgkI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: /w4t5dhbmQEa84JEDJ39VitjjFskPm/mEpnYuZ0T6wQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9593 (0x2579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Jun 2 15:45:48 2026 GMT Not After : Jun 9 15:45:48 2026 GMT Subject: CN=6a1efaad-7da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:5f:f9:e4:16:4b:1f:3d:e7:69:aa:06:15: 36:0c:7a:7d:46:f3:ad:c6:eb:44:75:fd:82:ad:52: 79:fd:fc:cd:10:74:a4:fe:40:dd:f0:44:f1:c7:04: 9e:c9:f3:07:5d:48:24:2f:d3:bd:8b:6a:c3:31:5d: 84:1c:da:c4:0f:8a:87:3b:c9:a2:da:31:9c:9b:24: ac:f5:cd:7b:fe:f5:0f:05:c0:13:ba:45:e1:ad:9f: fe:b6:15:b0:a7:ae:d0:db:bb:a3:73:78:1c:ad:89: 53:20:44:a3:98:a6:65:a3:47:7f:2b:3c:f8:79:5c: fb:53:6b:1f:de:3c:19:c5:41:8d:8c:b3:17:bf:d2: 57:23:a6:6e:c3:5e:5f:d5:75:5d:32:25:02:28:19: 89:72:2b:7c:de:8a:53:e3:83:c0:33:d0:1d:31:76: c6:46:79:01:a9:5b:2f:58:ba:70:f5:75:11:a8:a2: 7f:c7:e6:3d:02:37:4b:95:45:2d:db:bc:14:fe:d6: fb:69:b4:1c:44:2d:9e:44:58:c9:11:6f:85:eb:75: 88:f3:5f:e5:f1:7f:8a:48:87:96:1e:2c:df:63:03: b3:a7:3c:cb:fb:c2:db:2f:1b:49:da:01:ff:53:a9: 2b:66:2c:21:ce:7d:fa:0d:d2:c9:35:07:ad:31:42: bb:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E9:2B:CB:9D:BF:2E:D6:3D:27:FD:DE:51:12:93:E5:C0:70:77:41 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e1:4d:b6:fb:89:62:c8:ea:09:5e:d4:dc:e8:ed:1d:55:1b: 91:47:25:c1:50:1c:87:87:7e:33:e1:6c:8e:52:34:56:5c:83: 4c:21:35:2c:10:c9:b1:d0:01:e9:c4:44:66:7a:f9:46:e5:d7: 24:42:3e:93:67:d0:47:a1:4c:45:7a:06:15:0a:c5:f5:3f:1d: 82:51:d9:f6:ac:91:75:29:c1:b8:8f:2c:75:07:9b:03:a0:cc: 29:df:87:20:6a:a7:06:ca:34:52:bf:31:96:d4:13:51:13:69: 37:fa:95:46:f2:b3:11:22:d5:7a:0d:ff:87:6c:6d:c5:84:26: aa:18:82:fd:ec:92:03:92:01:cf:59:fb:c6:58:3b:45:59:6b: 14:50:28:b6:53:ff:66:af:9b:b1:0d:61:3b:3d:f0:23:d2:d1: a7:11:f7:fd:42:c2:d4:a2:03:2d:a8:06:6a:34:15:3c:ba:43: c0:52:74:3c:91:00:c2:bd:15:90:53:73:87:d5:5c:7d:d0:1f: a5:35:fa:10:fe:9d:98:ae:71:0c:67:1f:f8:e8:cd:d6:10:86: 77:17:0b:23:b8:88:c1:71:77:64:6b:46:19:ef:4b:0c:52:7f: 42:d1:c8:c0:8f:bb:e2:75:59:4f:fb:aa:39:8b:43:66:23:3a: 64:bc:57:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjYwNjAyMTU0NTQ4WhcNMjYwNjA5MTU0NTQ4WjAYMRYwFAYD VQQDEw02YTFlZmFhZC03ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzxf+eQWSx8952mqBhU2DHp9RvOtxutEdf2CrVJ5/fzNEHSk/kDd8ETxxwSe yfMHXUgkL9O9i2rDMV2EHNrED4qHO8mi2jGcmySs9c17/vUPBcATukXhrZ/+thWw p67Q27ujc3gcrYlTIESjmKZlo0d/Kzz4eVz7U2sf3jwZxUGNjLMXv9JXI6Zuw15f 1XVdMiUCKBmJcit83opT44PAM9AdMXbGRnkBqVsvWLpw9XURqKJ/x+Y9AjdLlUUt 27wU/tb7abQcRC2eRFjJEW+F63WI81/l8X+KSIeWHizfYwOzpzzL+8LbLxtJ2gH/ U6krZiwhzn36DdLJNQetMUK7pwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMjpK8ud vy7WPSf93lESk+XAcHdBMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGuFNtvuJYsjqCV7U3OjtHVUbkUclwVAch4d+M+FsjlI0VlyDTCE1LBDJsdAB 6cREZnr5RuXXJEI+k2fQR6FMRXoGFQrF9T8dglHZ9qyRdSnBuI8sdQebA6DMKd+H IGqnBso0Ur8xltQTURNpN/qVRvKzESLVeg3/h2xtxYQmqhiC/eySA5IBz1n7xlg7 RVlrFFAotlP/Zq+bsQ1hOz3wI9LRpxH3/ULC1KIDLagGajQVPLpDwFJ0PJEAwr0V kFNzh9VcfdAfpTX6EP6dmK5xDGcf+OjN1hCGdxcLI7iIwXF3ZGtGGe9LDFJ/QtHI wI+74nVZT/uqOYtDZiM6ZLxXgQ== -----END CERTIFICATE-----Generated at Thu Jun 4 12:31:07 2026 by rpki-client