$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: lazJchqVUYWcqOqQoi5jdIh0ltRChcwzahEcKUfxl/I= Subject key identifier: 08:93:5D:EF:52:E5:4C:AA:78:DD:E4:7D:54:02:9F:27:BA:81:7A:5E Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 09FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 09B2 Signing time: Sat 20 Jun 2026 19:59:33 +0000 Manifest this update: Sat 20 Jun 2026 19:59:32 +0000 Manifest next update: Sat 27 Jun 2026 19:59:32 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: Gfv8sD3lPJACmqYv0Ii38cnikAeIJFvpaTm8dAtivdw=) 2: 88252000B55C11ECA9565039C4F9AE02.roa (hash: vpFh2/2Ww8n4gYMHhWBePvd1Fheir2EOHQAoooMfRBo=) 3: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: xihXskffyMmX6uPdr43LH17SKnUp1mNtBqH6MhLI3sk=) 4: 50805C5C6CF911F0A63D4C65C4F9AE02.roa (hash: 7GoPVvNzOxqz0b0bUBa7Sq4uOYDaYVX7ArTVXs9QZv4=) 5: F2A462E66B6C11F0B453B656C4F9AE02.roa (hash: HMcEW/S22FGTvhiPakps8LsqQxXUXp8fWhqX+TVm2Vw=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: lyIUpVCXgqLP2olWGXoY8duGQEhruwus1GboROWSH00=) 7: 1A8C65506B6E11F0AEECA858C4F9AE02.roa (hash: NpbVQQRWWoFXTrGdsKM32fOCA5zAVZsblj+8rYIeUc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 19:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2558 (0x9fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Jun 20 19:59:32 2026 GMT Not After : Jun 27 19:59:32 2026 GMT Subject: CN=6a36f125-a7fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7e:1b:15:aa:c1:50:66:0a:dd:92:db:54:4e: 5d:c4:06:d7:ff:2e:40:ee:ce:19:ec:5d:80:49:9c: 9d:8f:d9:3d:53:b1:1a:79:f5:5a:1b:d1:c2:b2:70: 53:03:f0:11:b0:d1:ce:a8:35:e2:8d:13:81:36:67: f6:d5:b5:e0:69:50:26:11:6d:ad:ae:d4:e8:0c:a7: 62:c4:3c:a8:28:d5:a2:1d:51:4c:85:82:d1:b4:cb: f4:3d:6b:3a:79:19:9c:f4:7f:50:0a:91:bc:0f:e7: ea:6f:b1:c7:b6:c4:cb:b1:78:af:11:10:70:31:b9: 72:a2:0b:10:42:fd:9e:e0:bf:5c:ea:2c:4b:91:c6: d0:34:02:50:15:3b:b8:28:0e:94:39:fe:34:8a:f5: 04:35:61:02:61:3a:bb:23:88:53:8f:57:de:99:2a: 8b:3c:32:ce:bd:0b:98:0f:64:43:46:b5:33:54:8c: 5d:c9:08:31:7a:28:cd:95:30:21:01:4b:14:e8:b7: 27:7b:27:10:7a:d0:5f:40:71:96:96:de:88:7c:4e: 8e:d1:dc:11:6d:66:2c:63:b8:7f:f7:42:e0:cb:e1: b3:6d:44:b2:9b:d0:f3:9f:09:d9:09:20:3d:28:3c: 89:74:53:5e:5e:d0:7b:29:08:fc:70:ca:f6:8e:03: 95:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:93:5D:EF:52:E5:4C:AA:78:DD:E4:7D:54:02:9F:27:BA:81:7A:5E X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:54:85:e4:f9:53:2c:04:e0:f3:fd:df:92:b4:d8:77:94:d5: dc:62:cd:49:66:76:13:30:bb:2d:be:17:79:ef:3a:60:e4:cc: 97:20:d3:85:5d:9b:93:d5:87:c1:a2:1c:13:7d:3b:9f:5c:aa: 71:76:f5:51:28:a8:76:38:47:a3:11:e7:bd:f5:5e:cb:6b:0f: 3b:b3:2c:cd:b9:4f:d0:4e:a4:55:e2:0e:18:48:bf:67:29:1c: e8:f4:e7:13:f9:0e:b9:ab:b2:4f:4a:8b:f4:4d:ce:a4:c5:5a: bd:37:10:69:29:0b:6c:47:85:42:b9:0c:31:5d:2b:91:ea:f6: fe:41:58:c6:43:e6:b5:88:84:60:1f:71:01:b9:74:0a:84:85: 49:cb:c0:99:cb:0d:8f:16:22:c1:eb:59:0b:ee:e9:c7:ac:2c: ad:46:e2:b0:9d:b9:68:fb:f1:5d:42:b0:1f:9c:3b:72:7a:75: 19:0a:84:e3:1e:af:c6:0f:b1:44:22:a3:bf:b8:17:e7:d5:33: 02:87:09:69:45:d9:cc:1f:6d:33:19:0c:25:de:d7:58:21:6e: c7:05:e6:46:ce:13:e9:69:56:1f:a0:79:cb:df:78:c8:8b:c7: bf:bb:fd:d2:4d:9c:b3:0f:22:4b:40:42:05:26:0c:0d:52:e0: 10:d2:22:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjYwNjIwMTk1OTMyWhcNMjYwNjI3MTk1OTMyWjAYMRYwFAYD VQQDEw02YTM2ZjEyNS1hN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxX4bFarBUGYK3ZLbVE5dxAbX/y5A7s4Z7F2ASZydj9k9U7EaefVaG9HCsnBT A/ARsNHOqDXijROBNmf21bXgaVAmEW2trtToDKdixDyoKNWiHVFMhYLRtMv0PWs6 eRmc9H9QCpG8D+fqb7HHtsTLsXivERBwMblyogsQQv2e4L9c6ixLkcbQNAJQFTu4 KA6UOf40ivUENWECYTq7I4hTj1femSqLPDLOvQuYD2RDRrUzVIxdyQgxeijNlTAh AUsU6LcneycQetBfQHGWlt6IfE6O0dwRbWYsY7h/90Lgy+GzbUSym9DznwnZCSA9 KDyJdFNeXtB7KQj8cMr2jgOV4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAiTXe9S 5UyqeN3kfVQCnye6gXpeMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEVSF5PlTLATg8/3fkrTYd5TV3GLNSWZ2EzC7Lb4Xee86YOTMlyDThV2bk9WH waIcE307n1yqcXb1USiodjhHoxHnvfVey2sPO7MszblP0E6kVeIOGEi/Zykc6PTn E/kOuauyT0qL9E3OpMVavTcQaSkLbEeFQrkMMV0rker2/kFYxkPmtYiEYB9xAbl0 CoSFScvAmcsNjxYiwetZC+7px6wsrUbisJ25aPvxXUKwH5w7cnp1GQqE4x6vxg+x RCKjv7gX59UzAocJaUXZzB9tMxkMJd7XWCFuxwXmRs4T6WlWH6B5y994yIvHv7v9 0k2csw8iS0BCBSYMDVLgENIiTA== -----END CERTIFICATE-----Generated at Mon Jun 22 18:03:24 2026 by rpki-client