$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: UqFTivzOXPMTnPztqjHxVa7E6zK/l7c4EgUUenfS+78= Subject key identifier: D7:0E:DB:E9:EE:4D:24:94:AC:63:E9:DB:80:CD:7F:A3:68:E0:CE:F2 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 029B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0292 Signing time: Fri 05 Jun 2026 01:55:00 +0000 Manifest this update: Fri 05 Jun 2026 01:55:00 +0000 Manifest next update: Fri 12 Jun 2026 01:55:00 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: FWKP6UI9m039BJVyjZJwUYPPaoolf2EfbDXe2HCkVWs=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 01:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Jun 5 01:55:00 2026 GMT Not After : Jun 12 01:55:00 2026 GMT Subject: CN=6a222c74-3b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e5:3a:54:3e:c2:71:cf:01:8d:da:30:38:5f: 73:b1:62:f3:8f:e2:37:13:73:01:59:ad:ab:a9:2a: d7:90:3f:cd:b4:60:1e:6a:a4:f3:39:d6:17:43:4d: 73:e1:4e:79:44:ca:6c:e1:de:39:02:bd:6c:10:bf: b2:3a:ef:33:74:5f:6f:db:dd:3d:75:0f:90:b8:7f: 80:46:84:e3:cf:6b:99:6d:06:b9:34:6b:b5:10:80: dc:b2:d7:57:dc:2b:86:7b:52:44:d8:a7:cd:9d:d9: 2a:b1:52:b9:10:f4:cf:02:de:2a:20:4d:6c:c8:99: 55:30:1b:15:12:bb:21:d4:8a:6d:37:c0:3f:45:a5: 2d:c2:ef:b6:b1:f9:87:20:88:66:48:b0:ae:85:63: 13:44:8a:f1:2a:49:45:41:c8:47:7b:f8:5d:92:6e: 81:e2:28:40:93:d4:48:77:4b:01:ac:52:ba:c7:ea: 77:6c:ae:d8:15:04:5e:93:7d:ac:0f:67:51:0a:69: bd:08:11:13:1b:92:b1:dc:8b:de:b7:d8:9a:85:9d: 9a:e9:c1:b4:00:69:50:00:43:a7:c9:05:69:42:a2: 45:59:1f:69:74:69:5d:cb:0b:1f:b6:55:86:06:45: 7e:d4:dd:3a:00:7c:04:c9:5b:b3:ee:37:12:4f:ec: b8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0E:DB:E9:EE:4D:24:94:AC:63:E9:DB:80:CD:7F:A3:68:E0:CE:F2 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:93:d5:87:81:fa:f6:19:e6:82:ac:6f:d1:ad:79:29:66:15: 5c:85:b9:c1:85:0a:d9:03:4a:e0:8c:7a:2b:14:12:11:ad:11: b6:4d:84:90:95:81:94:29:ff:ad:0f:50:2e:89:34:93:e3:d8: 44:78:f7:6e:cf:86:fa:a1:ed:1c:91:ae:4a:41:aa:a5:ab:23: 07:a6:c8:8b:b1:1c:57:d0:03:7c:9a:08:20:f9:4f:d1:1b:f4: c3:13:07:7f:2e:7d:47:4a:62:f0:ae:4d:91:e4:6e:b1:70:3c: d0:3f:41:df:ac:d7:49:fa:ae:ea:44:07:66:8f:78:e5:c7:bc: f4:d5:3e:f3:90:1b:55:eb:04:b8:21:39:e1:8b:3e:70:ff:b4: 06:df:fe:80:9c:88:9a:bb:e7:7d:5f:b3:a0:f2:32:5e:af:73: 49:3d:d5:6a:d0:cc:09:ad:b6:40:9c:61:65:ed:cb:92:9e:d6: 81:52:20:89:66:43:8e:5e:2a:43:d0:ed:40:70:44:e7:38:4a: 90:94:f9:31:e0:69:ed:35:a7:94:6d:46:09:4e:db:cf:64:3c: 62:36:99:a8:0f:c9:72:fd:47:79:03:d0:b6:dd:d0:44:8d:c5: 59:56:38:ec:2c:af:92:70:b5:14:ac:f9:0c:32:1c:80:83:a7: ef:39:e9:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwNjA1MDE1NTAwWhcNMjYwNjEyMDE1NTAwWjAYMRYwFAYD VQQDEw02YTIyMmM3NC0zYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOU6VD7Ccc8BjdowOF9zsWLzj+I3E3MBWa2rqSrXkD/NtGAeaqTzOdYXQ01z 4U55RMps4d45Ar1sEL+yOu8zdF9v2909dQ+QuH+ARoTjz2uZbQa5NGu1EIDcstdX 3CuGe1JE2KfNndkqsVK5EPTPAt4qIE1syJlVMBsVErsh1IptN8A/RaUtwu+2sfmH IIhmSLCuhWMTRIrxKklFQchHe/hdkm6B4ihAk9RId0sBrFK6x+p3bK7YFQRek32s D2dRCmm9CBETG5Kx3Ivet9iahZ2a6cG0AGlQAEOnyQVpQqJFWR9pdGldywsftlWG BkV+1N06AHwEyVuz7jcST+y4yQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNcO2+nu TSSUrGPp24DNf6No4M7yMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR5PVh4H69hnmgqxv0a15KWYVXIW5wYUK2QNK4Ix6KxQSEa0Rtk2EkJWBlCn/ rQ9QLok0k+PYRHj3bs+G+qHtHJGuSkGqpasjB6bIi7EcV9ADfJoIIPlP0Rv0wxMH fy59R0pi8K5NkeRusXA80D9B36zXSfqu6kQHZo945ce89NU+85AbVesEuCE54Ys+ cP+0Bt/+gJyImrvnfV+zoPIyXq9zST3VatDMCa22QJxhZe3Lkp7WgVIgiWZDjl4q Q9DtQHBE5zhKkJT5MeBp7TWnlG1GCU7bz2Q8YjaZqA/Jcv1HeQPQtt3QRI3FWVY4 7CyvknC1FKz5DDIcgIOn7znpCQ== -----END CERTIFICATE-----Generated at Fri Jun 5 12:41:09 2026 by rpki-client