$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: OEHvSM1W5R5jSk/f3N3+nb3MCgYAzY+ghjSRCU9Zsi4= Subject key identifier: C2:54:FD:55:D8:06:18:37:2D:A2:92:D8:21:C7:4F:6F:39:E4:C9:59 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 024C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: 021E Signing time: Fri 05 Jun 2026 03:07:52 +0000 Manifest this update: Fri 05 Jun 2026 03:07:51 +0000 Manifest next update: Fri 12 Jun 2026 03:07:51 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: YxX6WBhbYLkkV2xABp77wRIOm7HyS6+EwRYbKj3rhzI=) 2: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: Oxk9ItIFF7Cmn++8Qhf8B9/Jba23NXxEuE7o6lYsVNY=) 3: 7031BFB6ED2B11F083BC5EDE456F56BC.roa (hash: YUDn/ImHnu8Aga92avplp7MOrOxQVfmR+LNkM6xYKp8=) 4: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: L4NVil8pbyS/cOY/ej3K8v/jrMsLv9IfqmTy0v9YRG8=) 5: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: jqwk3bmRPDf7C3aKoz+TsrX90WbUHOfRvQL1M86whDk=) 6: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: 7QH1OiU8+y0kM0Xbew8STqzznYlr3akTS6fkDWFomuY=) 7: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: WlT7lqcgc4c8+rWeXt+Y5JcXRKuZvK0wiGPxDwUbSb0=) 8: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: bcg53TLs5nFR2EV4CBcEFe8zIM0whJbmabWS8ZS93/Q=) 9: 9D6E545AA84B11F0B4DF3885C4F9AE02.roa (hash: f4OVUhW0bi1lo1n9ZSiR+RCv7DhSrpC0lFB7A/Kd8HU=) 10: E9874B2A16D011EF90793868C4F9AE02.roa (hash: RDszepU6uUEnaTneHbLYTo9ekedmlaHSehV5QBWdDbs=) 11: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: XLyiIx6bH4MWL4cXY1N6tcvmekDJmpJls17+hd3FRlA=) 12: 511564A2ED2B11F08C401BDD456F56BC.roa (hash: /UOXs33KnAIdS9eZMavjXXvZDkm7O2iN3QjaCdMcSZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 03:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94, serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Jun 5 03:07:51 2026 GMT Not After : Jun 12 03:07:51 2026 GMT Subject: CN=6a223d87-2b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8a:e4:e4:55:9d:a4:ba:54:5b:29:9a:4b:37: 23:c3:5b:1a:6d:d6:0b:ba:d4:28:c0:2a:ce:c8:98: 1c:47:12:1e:e5:0b:bc:cf:e5:f7:7e:12:63:4f:0d: 3f:eb:a0:64:7f:13:b1:e3:9d:42:a6:19:3a:4b:19: fb:36:48:df:17:82:84:2f:0d:52:54:ce:8c:2e:4e: bb:0a:31:ff:56:69:a5:6e:1c:0b:b1:8b:18:20:08: 4b:33:19:07:44:27:c2:af:82:11:60:ed:72:f3:ad: 6c:23:ba:1c:da:9d:ef:5a:64:71:32:c7:47:7c:1b: 38:7b:55:75:ee:e8:12:13:2a:41:5b:00:d7:e5:b9: 97:00:44:78:15:fa:31:34:9d:d5:46:cc:65:e3:43: 21:bd:3d:28:d7:cf:30:d2:f1:33:87:2e:69:eb:1d: 35:ba:f5:7a:69:32:41:a8:ea:c6:ac:4f:42:48:b7: 0f:dd:fd:84:68:dd:e9:08:ea:8b:e6:67:75:15:cf: be:90:68:f9:81:ea:78:0e:c6:2c:b2:52:48:66:f7: 31:c3:c2:90:94:f6:cf:d8:18:60:be:62:fe:8e:1c: 66:27:b0:3d:e1:59:11:f8:5d:88:d4:13:55:55:65: da:5d:9f:87:b0:1c:f0:4f:40:12:c2:a8:d2:c5:a0: 4b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:54:FD:55:D8:06:18:37:2D:A2:92:D8:21:C7:4F:6F:39:E4:C9:59 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:2c:06:51:f3:34:97:08:e5:a1:5b:05:e4:ad:9a:c5:3f:50: 62:04:04:ce:51:18:fb:62:a5:e0:26:09:11:05:4b:5a:64:9b: 59:49:2b:80:c5:37:2b:90:74:df:17:72:52:f2:70:ea:5d:2e: 9f:83:59:0f:ca:e8:0a:7a:58:65:82:cb:2a:e9:1b:13:65:10: 87:87:b1:79:de:92:c7:e3:3b:1a:0f:3a:1b:80:94:4d:00:a8: e9:08:ec:af:df:7e:77:a0:c6:46:08:1d:b1:c5:6b:e3:8e:00: b6:0d:57:87:b1:44:56:8f:dd:af:0e:47:b3:7f:5c:74:13:96: e5:a3:1a:e2:bf:4b:90:94:75:cd:7c:16:75:0c:3e:67:11:e8: 97:5d:9f:d5:1a:bf:73:f0:09:a8:11:7b:8f:4b:46:b1:07:e1: 8b:5a:99:d6:88:df:48:ab:02:7d:7e:66:7d:57:43:a3:4b:fd: 20:75:3c:22:31:99:65:a4:55:19:5b:0c:ce:30:53:d2:a2:db: d1:fc:6a:b4:80:70:5c:43:57:cc:62:56:17:1a:80:d0:c9:fc: f1:70:f4:1e:e9:54:a5:df:a4:47:1c:3b:eb:f8:47:a3:6e:0d: b7:1c:b2:99:1b:ac:47:2c:b3:6c:4a:76:77:cd:e6:3d:e3:d4: 7a:c8:9d:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjYwNjA1MDMwNzUxWhcNMjYwNjEyMDMwNzUxWjAYMRYwFAYD VQQDEw02YTIyM2Q4Ny0yYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYrk5FWdpLpUWymaSzcjw1sabdYLutQowCrOyJgcRxIe5Qu8z+X3fhJjTw0/ 66BkfxOx451Cphk6Sxn7NkjfF4KELw1SVM6MLk67CjH/VmmlbhwLsYsYIAhLMxkH RCfCr4IRYO1y861sI7oc2p3vWmRxMsdHfBs4e1V17ugSEypBWwDX5bmXAER4Ffox NJ3VRsxl40MhvT0o188w0vEzhy5p6x01uvV6aTJBqOrGrE9CSLcP3f2EaN3pCOqL 5md1Fc++kGj5gep4DsYsslJIZvcxw8KQlPbP2BhgvmL+jhxmJ7A94VkR+F2I1BNV VWXaXZ+HsBzwT0ASwqjSxaBLMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMJU/VXY Bhg3LaKS2CHHT2855MlZMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqywGUfM0lwjloVsF5K2axT9QYgQEzlEY+2Kl4CYJEQVLWmSbWUkrgMU3K5B0 3xdyUvJw6l0un4NZD8roCnpYZYLLKukbE2UQh4exed6Sx+M7Gg86G4CUTQCo6Qjs r99+d6DGRggdscVr444Atg1Xh7FEVo/drw5Hs39cdBOW5aMa4r9LkJR1zXwWdQw+ ZxHol12f1Rq/c/AJqBF7j0tGsQfhi1qZ1ojfSKsCfX5mfVdDo0v9IHU8IjGZZaRV GVsMzjBT0qLb0fxqtIBwXENXzGJWFxqA0Mn88XD0HulUpd+kRxw76/hHo24Ntxyy mRusRyyzbEp2d83mPePUesidqQ== -----END CERTIFICATE-----Generated at Sat Jun 6 07:10:39 2026 by rpki-client