$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: wKl++RoWB4VZ/NCSL/DE9j4jF8xBvixPRObg8qeOZrg= Subject key identifier: 68:7D:6D:BB:BD:13:4E:4C:0E:57:4E:3F:50:6B:8D:63:46:E8:C3:1C Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: 0180 Signing time: Mon 01 Jun 2026 05:22:53 +0000 Manifest this update: Mon 01 Jun 2026 05:22:53 +0000 Manifest next update: Mon 08 Jun 2026 05:22:53 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: mM9ZDj8KxdNBdYPU3FO/SF58hp63MUc6cG1gu6W/r6E=) 2: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: vlR6KwXR8TL2mf6RJa/2FvIbd+B9HhzeWeJ+vJVsVYo=) 3: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: TNEM4VNwQk6CJq6g7Tw93nqe1s3+SXsaXip/J0usQiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Jun 1 05:22:53 2026 GMT Not After : Jun 8 05:22:53 2026 GMT Subject: CN=6a1d172d-ebc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ad:c0:cc:ae:73:ca:59:30:4a:23:2d:b1:a3: 2b:a8:5b:92:8e:10:af:3a:c9:f0:43:c2:e6:e7:1a: 87:7c:b0:1d:ab:54:1c:85:b2:d6:0f:77:cc:f8:47: 34:4f:02:26:eb:bd:40:af:41:b7:6e:e4:54:07:9b: 52:e8:db:d0:7e:c1:88:43:31:a4:cf:e4:39:a1:da: 81:d4:41:6a:6c:cf:37:7b:56:c0:49:44:7c:1e:7b: 5f:56:91:67:8c:55:36:b2:c5:32:b6:2c:8d:40:fb: 0f:b2:ff:c4:3e:01:99:3b:50:aa:38:23:9e:93:dc: 46:0d:01:52:58:8e:b8:e6:1e:69:55:c6:70:a2:a4: 6e:e7:81:56:01:3e:5c:d4:8f:07:e5:e6:9d:23:df: 35:ef:8b:71:4f:ae:35:a9:e8:ff:c3:aa:5f:d1:40: b7:17:cf:67:d1:08:49:3a:25:a1:49:aa:ef:80:6b: fc:27:35:23:b6:2f:45:e2:ef:f4:76:67:a4:4b:d7: 6b:ef:eb:be:93:93:f5:76:45:98:8a:46:4e:93:4c: 47:b6:53:a0:9e:b3:df:67:f3:c9:87:cc:4f:63:f9: f7:e6:40:df:16:4c:8e:34:13:87:14:80:c8:7a:57: 04:f4:35:9f:e5:e3:6e:72:9f:c2:ff:54:75:38:a1: b4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7D:6D:BB:BD:13:4E:4C:0E:57:4E:3F:50:6B:8D:63:46:E8:C3:1C X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:15:b1:79:d2:bb:85:0f:93:69:4d:ee:9b:65:d7:85:39:0d: 97:b0:26:da:2d:64:35:a5:cf:db:6d:4b:a5:03:28:31:f6:78: e1:77:dc:e4:03:84:6b:2a:43:2f:00:cb:82:ba:b2:67:97:4a: 00:13:22:6c:22:6c:15:c3:d1:b7:a0:91:8b:71:cf:3c:c9:09: c1:66:8b:60:cb:2f:7f:ca:2c:71:a3:77:e5:43:c4:db:73:9a: 36:96:06:da:81:44:57:17:c6:e0:80:0d:54:98:74:aa:d9:d9: 35:fd:aa:25:30:a9:75:8a:ca:2c:a9:e6:54:b2:0e:e3:88:ce: 0f:95:46:e0:dc:3e:09:a9:66:88:6c:f8:38:4e:68:7f:84:92: 33:43:19:31:62:44:d0:23:02:f1:ff:49:29:6c:56:f1:5a:8f: a8:54:2d:48:13:b6:8c:0f:bb:d6:7b:28:43:4d:26:a8:d1:5b: 55:c2:a6:a6:9b:20:30:11:5f:80:ef:8c:10:d2:7b:58:57:16: 0e:60:37:76:3e:07:c9:f6:3c:cd:f5:5f:18:86:40:e4:c0:b7: 6a:5f:b9:6b:49:c1:6f:13:07:27:90:43:cb:32:7c:c6:1d:68: 35:a2:e4:f1:9f:dc:1b:07:d1:9d:49:31:09:e6:69:fd:6d:51: 7d:c6:1d:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjYwNjAxMDUyMjUzWhcNMjYwNjA4MDUyMjUzWjAYMRYwFAYD VQQDEw02YTFkMTcyZC1lYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK3AzK5zylkwSiMtsaMrqFuSjhCvOsnwQ8Lm5xqHfLAdq1QchbLWD3fM+Ec0 TwIm671Ar0G3buRUB5tS6NvQfsGIQzGkz+Q5odqB1EFqbM83e1bASUR8HntfVpFn jFU2ssUytiyNQPsPsv/EPgGZO1CqOCOek9xGDQFSWI645h5pVcZwoqRu54FWAT5c 1I8H5eadI98174txT641qej/w6pf0UC3F89n0QhJOiWhSarvgGv8JzUjti9F4u/0 dmekS9dr7+u+k5P1dkWYikZOk0xHtlOgnrPfZ/PJh8xPY/n35kDfFkyONBOHFIDI elcE9DWf5eNucp/C/1R1OKG0lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGh9bbu9 E05MDldOP1BrjWNG6MMcMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALRWxedK7hQ+TaU3um2XXhTkNl7Am2i1kNaXP221LpQMoMfZ44Xfc5AOEaypD LwDLgrqyZ5dKABMibCJsFcPRt6CRi3HPPMkJwWaLYMsvf8oscaN35UPE23OaNpYG 2oFEVxfG4IANVJh0qtnZNf2qJTCpdYrKLKnmVLIO44jOD5VG4Nw+CalmiGz4OE5o f4SSM0MZMWJE0CMC8f9JKWxW8VqPqFQtSBO2jA+71nsoQ00mqNFbVcKmppsgMBFf gO+MENJ7WFcWDmA3dj4HyfY8zfVfGIZA5MC3al+5a0nBbxMHJ5BDyzJ8xh1oNaLk 8Z/cGwfRnUkxCeZp/W1RfcYdFA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:33:56 2026 by rpki-client