$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: X0KLDSUMKL4/4i/CIPAR0+5nbBHTAqu+prheBH5NGwc= Subject key identifier: 6F:A1:3C:C0:D2:1F:E4:E2:D9:E8:D9:0E:E0:01:2B:41:39:E0:14:BE Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0284 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 027D Signing time: Sun 31 May 2026 01:53:39 +0000 Manifest this update: Sun 31 May 2026 01:53:38 +0000 Manifest next update: Sun 07 Jun 2026 01:53:38 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: /fHDYSxMapGOb+aBD/kYs0QnKZu/4Ea6MX5ArLC6AqY=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: 94M44dsN95Cfdn+68CbMlhuF5n5qBQCEV7YwA9S7Ln8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 01:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: May 31 01:53:38 2026 GMT Not After : Jun 7 01:53:38 2026 GMT Subject: CN=6a1b94a3-f9cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c3:ce:a2:01:01:af:17:d9:57:1a:fd:08:c9: bb:f7:56:9c:96:3e:b4:7e:85:22:30:4e:d5:63:8e: 48:d5:85:c7:5c:80:96:e1:5b:fe:89:64:d7:48:1e: 84:b4:43:e2:63:19:f8:3e:b4:a1:e1:eb:fe:99:f3: 08:42:15:cd:95:3b:ef:4f:c9:1a:d1:94:2a:cd:43: 7e:56:a5:97:bf:d3:f9:79:d8:b6:78:66:56:c5:d2: 58:8f:fe:9b:ed:8b:0c:7d:10:cf:3f:94:ea:ed:0a: 6b:4f:3f:0c:53:06:56:4f:24:b0:e9:f1:b4:d9:e4: b2:59:c4:63:97:e6:12:ac:a8:5c:6b:9c:ce:00:60: 33:d1:21:54:2a:ee:4c:12:fb:28:07:f4:34:43:b9: dd:e1:58:58:e9:f0:41:14:8b:5f:63:55:83:63:ea: fe:92:2d:6d:af:3a:de:60:12:45:15:63:c1:82:b6: 04:bf:87:b2:e9:f0:16:09:fc:de:62:5a:d8:5d:a4: ad:27:9f:94:b8:cc:2c:52:23:6f:c3:08:0e:92:8b: a8:4b:3a:2e:6a:36:c5:b7:16:d0:d4:5a:06:11:bb: 3d:d3:97:b7:de:6b:4b:16:63:2d:08:aa:26:c3:cc: a7:2d:d7:86:f7:57:c3:6c:a8:d9:75:82:94:f9:48: 55:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A1:3C:C0:D2:1F:E4:E2:D9:E8:D9:0E:E0:01:2B:41:39:E0:14:BE X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e1:58:98:fc:ac:f8:43:56:8c:b6:f5:31:ef:cb:d1:a0:e4: b0:35:09:2c:7f:f6:1f:21:53:0f:8a:41:24:6c:b8:a1:09:d8: bc:a0:cc:03:22:1b:de:c1:dd:0e:7a:8d:c9:11:d0:07:03:53: 38:a6:2d:14:48:b5:0e:df:0d:a1:83:9a:c1:96:b8:94:f3:76: 94:8a:18:f5:b7:c0:33:64:89:71:a4:75:a3:08:cd:5d:09:d1: 45:03:2a:8a:a0:a4:97:02:81:45:21:f4:7a:b7:7f:e2:45:2d: 72:e9:c6:f2:41:20:09:c0:40:1a:dc:de:af:52:31:16:d4:b0: e8:4e:71:91:ba:56:15:d9:f3:98:fc:f7:a6:61:f9:f4:44:df: 93:8c:06:61:91:59:41:29:58:11:68:dc:52:0e:a9:19:c9:5f: 38:34:4c:e1:43:1d:1d:bd:c0:a8:31:2b:b9:0c:34:bf:fb:72: 6a:85:c2:56:d5:4f:ed:63:73:79:f5:49:a3:65:85:66:63:0c: 43:7d:3f:fb:83:ec:71:1c:72:4c:7c:70:bd:b5:7d:b8:34:41: 84:3a:31:c2:7b:ee:65:b3:3e:cc:4d:97:82:a8:30:a5:c1:52: 53:8e:4c:b1:77:ef:f0:37:95:aa:cb:e0:2e:82:72:10:12:64: 75:50:dd:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjYwNTMxMDE1MzM4WhcNMjYwNjA3MDE1MzM4WjAYMRYwFAYD VQQDEw02YTFiOTRhMy1mOWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MPOogEBrxfZVxr9CMm791aclj60foUiME7VY45I1YXHXICW4Vv+iWTXSB6E tEPiYxn4PrSh4ev+mfMIQhXNlTvvT8ka0ZQqzUN+VqWXv9P5edi2eGZWxdJYj/6b 7YsMfRDPP5Tq7QprTz8MUwZWTySw6fG02eSyWcRjl+YSrKhca5zOAGAz0SFUKu5M EvsoB/Q0Q7nd4VhY6fBBFItfY1WDY+r+ki1trzreYBJFFWPBgrYEv4ey6fAWCfze YlrYXaStJ5+UuMwsUiNvwwgOkouoSzouajbFtxbQ1FoGEbs905e33mtLFmMtCKom w8ynLdeG91fDbKjZdYKU+UhVMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG+hPMDS H+Ti2ejZDuABK0E54BS+MB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXOFYmPys+ENWjLb1Me/L0aDksDUJLH/2HyFTD4pBJGy4oQnYvKDMAyIb3sHd DnqNyRHQBwNTOKYtFEi1Dt8NoYOawZa4lPN2lIoY9bfAM2SJcaR1owjNXQnRRQMq iqCklwKBRSH0erd/4kUtcunG8kEgCcBAGtzer1IxFtSw6E5xkbpWFdnzmPz3pmH5 9ETfk4wGYZFZQSlYEWjcUg6pGclfODRM4UMdHb3AqDEruQw0v/tyaoXCVtVP7WNz efVJo2WFZmMMQ30/+4PscRxyTHxwvbV9uDRBhDoxwnvuZbM+zE2XgqgwpcFSU45M sXfv8DeVqsvgLoJyEBJkdVDdkw== -----END CERTIFICATE-----Generated at Sun May 31 06:54:10 2026 by rpki-client