$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: N/AWYcGmWsZSFZeKZYBA+XXciq/QU2/+bPg63oOBJqs= Subject key identifier: 26:7A:B1:B2:F8:E2:7B:36:E8:A3:FB:43:24:A5:99:11:13:1A:18:E8 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 01AF Signing time: Mon 01 Jun 2026 04:48:07 +0000 Manifest this update: Mon 01 Jun 2026 04:48:07 +0000 Manifest next update: Mon 08 Jun 2026 04:48:07 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: TI6GYFN1mgMsHf6bBk1z6t3m45PUYRGv5HgHNPrCHBI=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: CHmfasvIFMB8cvnVplF2VU1d1UcvTiGGkiQVF3TlMl8=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: tbhcExPyMdasBxcbE73h7b5HlPi0div8uaJX4sMb5Ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Jun 1 04:48:07 2026 GMT Not After : Jun 8 04:48:07 2026 GMT Subject: CN=6a1d0f07-7a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ed:c0:e5:a5:d4:c6:bc:a5:d7:d0:6f:60:e9: 45:bb:b3:77:51:d7:61:59:00:e0:01:25:13:40:14: b0:0d:c8:43:1e:5b:c5:e7:78:08:8e:43:21:0c:a6: a2:55:e5:8a:45:00:82:b9:86:15:2e:18:91:9f:55: 36:de:3f:0b:83:dc:a8:26:29:bb:24:31:83:a7:fc: 77:93:87:28:7c:56:9c:9e:9b:ea:88:9f:dc:04:c7: 84:d2:57:4d:50:41:33:84:f9:17:79:1e:41:fc:30: b5:9e:80:83:67:df:c4:54:ca:86:87:f9:b1:e8:48: 3e:86:b3:94:7f:af:0f:0a:e9:7e:43:3e:75:7e:c1: 3a:ea:7e:92:61:15:a4:f6:f6:f6:81:19:16:09:5f: 84:11:96:45:e2:61:b6:18:f6:94:46:77:c6:7d:18: 24:40:0d:95:02:d9:2a:5e:c8:1a:c9:db:68:62:a4: b7:7a:22:bb:26:46:01:19:99:1a:7f:ce:06:69:4f: 9b:c9:9b:a0:64:de:f0:a9:f3:ba:f3:0e:ec:50:3f: fa:83:7e:94:3b:87:43:5d:4f:da:63:00:3b:e3:2e: 79:b8:b7:51:66:30:d5:ce:88:06:a9:8e:08:9c:d7: b8:65:c3:0b:c4:79:3d:1c:5c:ba:cc:52:2c:10:18: 40:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7A:B1:B2:F8:E2:7B:36:E8:A3:FB:43:24:A5:99:11:13:1A:18:E8 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b0:0f:2d:aa:93:ce:2a:f3:52:f3:0d:07:38:12:38:64:88: b0:1e:e1:61:c0:2a:c8:f5:5b:79:30:13:8f:ac:d1:86:47:e3: ea:20:3f:4c:e8:6e:29:34:5e:2f:a7:9c:2f:7f:9c:7e:7a:88: 44:85:f1:cd:0a:d2:f0:db:5d:03:fa:77:87:1e:0b:e1:1d:9d: df:d5:e0:50:3e:b1:b2:61:11:43:f8:3d:e5:2c:7f:e4:ec:dc: 31:be:c5:70:9c:78:09:49:3f:e9:fb:6e:25:5b:a3:34:7d:50: 02:b5:8a:1d:72:53:3a:de:86:c8:4d:f8:7a:57:e6:09:9d:be: 75:db:c5:7f:41:ae:c8:80:6a:41:ea:01:43:5a:ae:6c:4d:4b: 44:44:b9:8a:0c:fd:f6:65:87:dd:26:d3:1f:1a:cb:8d:04:ee: 2d:00:cb:d8:04:4d:34:89:d1:43:5c:c8:1e:3e:10:53:92:63: 88:87:7e:5c:cb:15:f0:3e:d0:8d:4b:e9:52:55:28:78:b5:24: 0b:40:33:46:ed:57:a3:bd:81:e0:94:22:b6:8b:83:00:ef:ff: 0a:c7:d1:fe:bf:31:f0:13:bc:6c:4a:8e:f1:cd:8e:39:cd:57: 73:1b:47:94:4f:89:d0:0b:e1:28:51:20:7b:29:ce:b1:dd:9e: a5:d3:cb:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjYwNjAxMDQ0ODA3WhcNMjYwNjA4MDQ0ODA3WjAYMRYwFAYD VQQDEw02YTFkMGYwNy03YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru3A5aXUxryl19BvYOlFu7N3UddhWQDgASUTQBSwDchDHlvF53gIjkMhDKai VeWKRQCCuYYVLhiRn1U23j8Lg9yoJim7JDGDp/x3k4cofFacnpvqiJ/cBMeE0ldN UEEzhPkXeR5B/DC1noCDZ9/EVMqGh/mx6Eg+hrOUf68PCul+Qz51fsE66n6SYRWk 9vb2gRkWCV+EEZZF4mG2GPaURnfGfRgkQA2VAtkqXsgaydtoYqS3eiK7JkYBGZka f84GaU+byZugZN7wqfO68w7sUD/6g36UO4dDXU/aYwA74y55uLdRZjDVzogGqY4I nNe4ZcMLxHk9HFy6zFIsEBhA7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCZ6sbL4 4ns26KP7QySlmRETGhjoMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPrAPLaqTzirzUvMNBzgSOGSIsB7hYcAqyPVbeTATj6zRhkfj6iA/TOhuKTRe L6ecL3+cfnqIRIXxzQrS8NtdA/p3hx4L4R2d39XgUD6xsmERQ/g95Sx/5OzcMb7F cJx4CUk/6ftuJVujNH1QArWKHXJTOt6GyE34elfmCZ2+ddvFf0GuyIBqQeoBQ1qu bE1LRES5igz99mWH3SbTHxrLjQTuLQDL2ARNNInRQ1zIHj4QU5JjiId+XMsV8D7Q jUvpUlUoeLUkC0AzRu1Xo72B4JQitouDAO//CsfR/r8x8BO8bEqO8c2OOc1XcxtH lE+J0AvhKFEgeynOsd2epdPLkQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:40:50 2026 by rpki-client