$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: dcSNcY6W/e3nj1n0sCACiHeAuwxprUv5mCW4iC0wzfo= Subject key identifier: 20:72:2D:6D:A0:5D:19:EA:E1:D3:C3:F0:FB:04:8B:7E:17:B6:86:B5 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0291 Signing time: Mon 01 Jun 2026 02:30:53 +0000 Manifest this update: Mon 01 Jun 2026 02:30:53 +0000 Manifest next update: Mon 08 Jun 2026 02:30:53 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: /jyIwQajX64Y51p4Ioeg+Gx4k0JGJpd5EWggUiaWk8c=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 02:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Jun 1 02:30:53 2026 GMT Not After : Jun 8 02:30:53 2026 GMT Subject: CN=6a1ceedd-1b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:29:6e:0b:35:1c:df:97:ec:27:27:52:58:1b: d9:31:bd:55:16:68:a7:f5:d1:f1:59:86:d0:40:aa: 80:2d:65:a2:47:e9:59:27:ae:31:f3:48:76:e3:e3: a3:31:33:dd:8e:bc:39:b1:94:1c:6f:bd:dd:d1:af: 1c:82:fa:a9:9c:85:67:9b:b3:6e:75:42:f2:74:c2: 58:35:bd:ec:85:b0:9d:d7:76:18:a5:b8:23:56:e9: 7c:bc:30:db:1f:52:01:1d:0d:31:a6:09:35:44:07: 07:5e:37:69:59:a1:c2:76:c2:92:da:b5:6e:20:c7: 7d:48:d3:55:be:86:7f:d5:b4:dd:6d:cf:ca:be:c7: ff:0a:a9:c2:c7:39:19:5c:b7:d4:73:0e:53:d2:c9: 5c:47:a9:91:c1:58:ef:30:08:d6:26:e5:6d:10:37: db:75:a7:17:14:ba:0a:5f:f2:0f:91:57:6d:30:55: 43:53:32:74:9a:8a:d3:68:16:d5:85:2c:ca:ff:16: d8:2a:e3:5b:1f:7a:d7:ff:74:ba:2a:8c:8f:51:09: 7a:fd:7e:48:cd:36:99:6a:58:4a:2e:45:1d:57:da: 6f:b3:c3:ad:c2:c2:c4:43:73:6b:93:d5:07:6a:f9: 70:f0:d8:d8:41:ed:45:68:76:ce:53:fa:25:11:f2: bf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:72:2D:6D:A0:5D:19:EA:E1:D3:C3:F0:FB:04:8B:7E:17:B6:86:B5 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:7a:5b:ee:37:39:1d:f3:79:2a:b9:a2:23:bb:bf:95:28:67: 9a:12:7a:45:a2:d1:1d:cf:d9:e7:d3:2d:82:f5:b8:c1:49:73: 12:18:ae:90:15:d0:07:8a:b0:84:13:d9:2b:7e:5e:16:85:14: af:22:bb:70:d1:3f:39:76:89:1b:0b:36:95:cc:c1:22:56:9f: a1:31:59:b8:a1:3a:25:94:1b:ba:7c:1f:02:35:4d:bf:4a:ec: 2f:a9:7d:29:8b:22:ff:54:37:bc:3d:fb:76:b2:18:68:ca:85: ea:8f:39:ea:11:77:31:82:19:c3:3d:a1:af:7d:dd:46:5f:86: 40:fa:dc:9e:01:bd:59:75:1b:f7:c1:c8:c4:c3:86:f1:51:65: f2:fa:2e:96:87:1c:08:d2:35:75:69:9a:87:b0:20:9f:58:02: 82:a1:f6:7e:e7:a2:45:d9:ba:b7:f7:9d:61:61:3f:36:d1:d4: 86:d9:87:2d:85:aa:41:23:bc:6d:27:3d:8d:e5:bc:bf:b7:ed: 50:7a:03:0a:c4:95:a9:21:48:93:17:ca:61:b2:85:ad:f8:d5: eb:81:c9:31:b6:30:cc:bf:5e:bc:33:55:84:0f:48:78:bb:be: 18:4b:6f:33:f9:35:26:1d:be:04:62:ee:af:0c:4b:95:0d:49: 88:a8:82:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwNjAxMDIzMDUzWhcNMjYwNjA4MDIzMDUzWjAYMRYwFAYD VQQDEw02YTFjZWVkZC0xYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCluCzUc35fsJydSWBvZMb1VFmin9dHxWYbQQKqALWWiR+lZJ64x80h24+Oj MTPdjrw5sZQcb73d0a8cgvqpnIVnm7NudULydMJYNb3shbCd13YYpbgjVul8vDDb H1IBHQ0xpgk1RAcHXjdpWaHCdsKS2rVuIMd9SNNVvoZ/1bTdbc/Kvsf/CqnCxzkZ XLfUcw5T0slcR6mRwVjvMAjWJuVtEDfbdacXFLoKX/IPkVdtMFVDUzJ0morTaBbV hSzK/xbYKuNbH3rX/3S6KoyPUQl6/X5IzTaZalhKLkUdV9pvs8OtwsLEQ3Nrk9UH avlw8NjYQe1FaHbOU/olEfK/DwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCByLW2g XRnq4dPD8PsEi34Xtoa1MB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMHpb7jc5HfN5KrmiI7u/lShnmhJ6RaLRHc/Z59MtgvW4wUlzEhiukBXQB4qw hBPZK35eFoUUryK7cNE/OXaJGws2lczBIlafoTFZuKE6JZQbunwfAjVNv0rsL6l9 KYsi/1Q3vD37drIYaMqF6o856hF3MYIZwz2hr33dRl+GQPrcngG9WXUb98HIxMOG 8VFl8vouloccCNI1dWmah7Agn1gCgqH2fueiRdm6t/edYWE/NtHUhtmHLYWqQSO8 bSc9jeW8v7ftUHoDCsSVqSFIkxfKYbKFrfjV64HJMbYwzL9evDNVhA9IeLu+GEtv M/k1Jh2+BGLurwxLlQ1JiKiC0Q== -----END CERTIFICATE-----Generated at Tue Jun 2 10:56:53 2026 by rpki-client