$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: bBMKq9hg8KVBFl5LLulaoLaaXl/uqXyld5mm3OTQx4U= Subject key identifier: 6D:DE:2F:41:60:E2:D5:4D:E9:B9:21:DA:04:9E:64:FD:2F:15:7A:05 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 02A3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 029D Signing time: Fri 05 Jun 2026 01:44:21 +0000 Manifest this update: Fri 05 Jun 2026 01:44:20 +0000 Manifest next update: Fri 12 Jun 2026 01:44:20 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: dAc1J0W20LCtp1MsqwrO7DQFKbs8iVCLbooctNre0D8=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: WcWgzJGh0m7kjX3X0vlH0++NcJ8zb8A6kxhRMuoMb8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 01:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jun 5 01:44:20 2026 GMT Not After : Jun 12 01:44:20 2026 GMT Subject: CN=6a2229f5-8774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e5:e4:e5:49:6f:28:8d:8d:e7:e5:70:71:58: 44:7e:b0:f5:32:e7:e7:97:53:bd:ce:81:83:bb:6a: ce:63:14:19:b4:6c:35:55:24:b9:ac:e4:e0:69:7e: 2c:04:fd:fb:0e:a0:6e:23:ac:8f:a9:cc:02:cf:79: c3:a9:e9:87:a7:83:51:70:d4:4d:bb:68:81:c4:6b: fe:1f:dd:6b:d3:a8:25:02:ba:06:d1:01:44:b8:1e: 3d:2c:f2:5c:99:7b:fa:5a:35:5b:55:26:af:b5:cb: d5:94:e2:6c:a3:f9:5f:da:f8:5b:97:b8:66:be:1b: 38:83:0f:c1:45:9f:88:d1:fa:90:b5:62:ea:50:c0: 0f:87:ae:d1:02:4e:a6:80:0e:f3:63:74:51:a2:33: a3:07:e7:0e:88:cc:00:bb:e9:17:e9:1f:5c:a1:ce: 26:b7:96:ae:be:dc:65:f7:74:09:7a:5e:03:b4:bf: 5c:ff:c3:8d:b5:8d:0b:34:73:b4:6a:f1:7a:bf:6d: da:92:49:ed:9d:67:94:3b:fe:c8:d8:0d:dc:86:0e: 47:a0:66:aa:b4:0a:8c:1b:da:1e:8b:66:08:26:7f: df:e3:72:98:ff:75:7d:8a:7d:bd:75:41:89:86:8d: 0e:14:92:8f:15:4b:d2:f9:f0:f9:69:18:dc:f3:59: ed:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DE:2F:41:60:E2:D5:4D:E9:B9:21:DA:04:9E:64:FD:2F:15:7A:05 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:91:41:82:a6:c3:6c:60:fa:df:e5:69:f6:36:97:8b:8d:bb: bc:47:ad:34:4c:92:8b:7e:bc:33:4f:22:6c:b8:d5:3f:4f:ba: 92:7c:07:79:bb:01:81:73:ab:16:96:01:21:dd:0c:25:01:92: ad:68:40:d5:59:79:0e:37:2e:36:49:a9:a5:e5:92:d1:96:49: 6d:12:c4:a0:13:02:49:8f:f7:67:c8:da:89:d2:97:48:9a:05: 0a:4d:fe:d2:24:90:8b:18:91:51:f5:e4:ba:ec:a7:03:c1:de: 0b:65:12:32:86:16:08:66:db:4a:65:f8:e2:a7:76:4a:fc:93: 98:0f:d7:b5:26:7e:58:06:59:fa:cd:c6:cf:69:6f:2e:79:20: 41:5e:8f:06:aa:cd:81:c7:59:4e:d7:91:7d:39:80:8b:00:8d: e4:44:26:f3:c8:ee:85:89:a6:70:5f:36:ad:05:2e:89:4c:4c: 6e:cc:15:87:b0:7f:f1:ca:bc:86:24:cc:9f:a7:8c:ae:9e:18: 1b:a0:07:54:c8:4e:9c:ba:a4:6f:b4:c6:c5:54:ee:0b:0b:7d: be:68:5f:7b:f1:08:54:5a:5a:b4:c0:ab:28:d8:26:e5:61:2a: 5a:01:1a:a9:55:e1:24:c7:40:39:5d:32:ad:dc:7d:15:cd:16: 81:e5:b8:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwNjA1MDE0NDIwWhcNMjYwNjEyMDE0NDIwWjAYMRYwFAYD VQQDEw02YTIyMjlmNS04Nzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeXk5UlvKI2N5+VwcVhEfrD1Mufnl1O9zoGDu2rOYxQZtGw1VSS5rOTgaX4s BP37DqBuI6yPqcwCz3nDqemHp4NRcNRNu2iBxGv+H91r06glAroG0QFEuB49LPJc mXv6WjVbVSavtcvVlOJso/lf2vhbl7hmvhs4gw/BRZ+I0fqQtWLqUMAPh67RAk6m gA7zY3RRojOjB+cOiMwAu+kX6R9coc4mt5auvtxl93QJel4DtL9c/8ONtY0LNHO0 avF6v23akkntnWeUO/7I2A3chg5HoGaqtAqMG9oei2YIJn/f43KY/3V9in29dUGJ ho0OFJKPFUvS+fD5aRjc81ntbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG3eL0Fg 4tVN6bkh2gSeZP0vFXoFMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS5FBgqbDbGD63+Vp9jaXi427vEetNEySi368M08ibLjVP0+6knwHebsBgXOr FpYBId0MJQGSrWhA1Vl5DjcuNkmppeWS0ZZJbRLEoBMCSY/3Z8jaidKXSJoFCk3+ 0iSQixiRUfXkuuynA8HeC2USMoYWCGbbSmX44qd2SvyTmA/XtSZ+WAZZ+s3Gz2lv LnkgQV6PBqrNgcdZTteRfTmAiwCN5EQm88juhYmmcF82rQUuiUxMbswVh7B/8cq8 hiTMn6eMrp4YG6AHVMhOnLqkb7TGxVTuCwt9vmhfe/EIVFpatMCrKNgm5WEqWgEa qVXhJMdAOV0yrdx9Fc0WgeW4Jg== -----END CERTIFICATE-----Generated at Sat Jun 6 12:07:55 2026 by rpki-client