$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: /gxN0/WFl0Whb58o8G46uwOSHgioxkIqa9jFLV6KHsI= Subject key identifier: E0:66:BE:3D:F8:73:D6:DF:0F:1A:6F:B0:25:B4:90:7D:02:1E:58:29 Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 66 Signing time: Mon 01 Jun 2026 08:48:23 +0000 Manifest this update: Mon 01 Jun 2026 08:48:23 +0000 Manifest next update: Mon 08 Jun 2026 08:48:23 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: zhjH6plN2A24hml+0bJFcaf236jacVQ+h+cro04X7MM=) 2: 74C3FC2413B911F1B7CEB625083D8C67.roa (hash: P4H5FeCoBASYrayJLn/hEkJQo4s7Z0+nN2dTkoyBEgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 08:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Jun 1 08:48:23 2026 GMT Not After : Jun 8 08:48:23 2026 GMT Subject: CN=6a1d4757-e17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ea:c7:9c:49:f2:4a:e3:17:02:d3:3b:29:db: 0b:2b:73:40:33:c6:a6:b4:3d:89:d5:80:db:91:ea: 88:ff:df:98:c5:c5:cf:09:2f:11:5f:b5:e3:c7:39: 59:ad:4a:56:6b:54:e3:60:82:53:2a:a9:22:1d:1d: f1:3a:57:15:c5:16:bb:6f:e9:84:c9:f9:42:a9:d8: 39:77:29:13:56:9b:74:32:06:17:29:d3:4b:8e:05: 8d:84:db:90:19:90:30:43:17:c1:cb:b3:e6:28:ba: d2:d7:3c:ba:71:53:7f:50:ce:f8:e0:28:75:d2:89: a2:8b:c1:fa:a0:5b:c8:e7:b6:d5:63:37:4f:48:e6: 15:15:c0:02:01:5e:ca:0a:ee:d4:90:e3:3f:ed:26: cd:67:53:c1:32:d3:db:b9:c6:54:cf:07:37:ef:35: b3:3e:d9:9b:da:0b:83:17:f1:9a:10:e3:f3:1a:79: 73:d7:c0:e2:bd:93:50:ac:ca:e4:a5:62:84:61:d3: 67:e6:fb:ba:02:57:2c:96:77:f0:52:a8:8b:ff:17: cd:33:76:1d:28:79:df:f4:fd:be:e2:68:42:7a:c2: 67:37:6d:74:1f:fc:2a:3e:96:8d:28:4a:80:83:94: d0:84:78:42:7e:cf:fd:c4:0f:92:88:fd:6c:05:ff: f7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:66:BE:3D:F8:73:D6:DF:0F:1A:6F:B0:25:B4:90:7D:02:1E:58:29 X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:a8:94:71:70:db:78:86:44:35:73:ef:18:ae:c8:0f:dd:a9: 6a:45:9b:4a:b9:38:cd:e3:bf:b7:aa:d1:76:83:4c:e4:c5:33: 42:3b:ff:78:9f:a6:39:59:29:21:05:6f:54:66:48:8a:ed:9d: 38:a2:9d:b5:26:4f:cc:a4:5f:c1:61:21:1f:7f:b0:e5:d8:cf: 96:13:dc:c0:16:f4:ca:0f:28:6c:61:d9:78:42:57:16:08:1b: d5:01:ef:82:bb:0f:4b:2c:ee:93:54:4b:bb:e0:b1:96:26:1c: e3:4c:3c:f7:55:f4:bd:f4:80:6e:d3:78:a7:46:99:6c:e2:2f: 1f:a6:f3:ac:9a:89:17:41:92:e5:35:84:96:2f:5d:53:aa:67: aa:ad:b1:9e:7f:23:c0:b6:2e:ea:bc:34:10:fb:c2:76:29:15: af:4a:5e:c7:2c:64:5b:ad:9d:35:bc:a9:bf:4a:2c:fa:ca:89: 8f:f5:e5:ec:bf:44:58:94:b4:e6:88:a1:6a:2e:4c:04:23:c7: 96:43:a8:23:81:af:0f:1c:38:75:56:a2:32:69:00:4e:51:fb: 80:f9:88:0c:d2:b9:42:1b:bd:05:23:44:03:5f:dd:b5:b1:7d: a0:86:ca:81:19:11:28:90:da:89:31:7e:1a:5e:9c:21:ae:5d: e7:48:da:78 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNjA2MDEwODQ4MjNaFw0yNjA2MDgwODQ4MjNaMBgxFjAUBgNV BAMTDTZhMWQ0NzU3LWUxN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC86secSfJK4xcC0zsp2wsrc0Azxqa0PYnVgNuR6oj/35jFxc8JLxFftePHOVmt SlZrVONgglMqqSIdHfE6VxXFFrtv6YTJ+UKp2Dl3KRNWm3QyBhcp00uOBY2E25AZ kDBDF8HLs+YoutLXPLpxU39QzvjgKHXSiaKLwfqgW8jnttVjN09I5hUVwAIBXsoK 7tSQ4z/tJs1nU8Ey09u5xlTPBzfvNbM+2ZvaC4MX8ZoQ4/MaeXPXwOK9k1CsyuSl YoRh02fm+7oCVyyWd/BSqIv/F80zdh0oed/0/b7iaEJ6wmc3bXQf/Co+lo0oSoCD lNCEeEJ+z/3ED5KI/WwF//c9AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU4Ga+Pfhz 1t8PGm+wJbSQfQIeWCkwHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAyqJRxcNt4hkQ1c+8YrsgP3alqRZtKuTjN47+3qtF2g0zkxTNCO/94n6Y5WSkh BW9UZkiK7Z04op21Jk/MpF/BYSEff7Dl2M+WE9zAFvTKDyhsYdl4QlcWCBvVAe+C uw9LLO6TVEu74LGWJhzjTDz3VfS99IBu03inRpls4i8fpvOsmokXQZLlNYSWL11T qmeqrbGefyPAti7qvDQQ+8J2KRWvSl7HLGRbrZ01vKm/Siz6yomP9eXsv0RYlLTm iKFqLkwEI8eWQ6gjga8PHDh1VqIyaQBOUfuA+YgM0rlCG70FI0QDX921sX2ghsqB GREokNqJMX4aXpwhrl3nSNp4 -----END CERTIFICATE-----Generated at Tue Jun 2 21:34:01 2026 by rpki-client