$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: lxU7vq7iX0Cve1BEHcKLp0OKRUnk3Ed6/XBBjJlQP1k= Subject key identifier: BA:C2:2B:74:00:37:17:05:DA:38:2E:FB:0D:52:7D:18:4A:37:37:EF Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 01B0 Signing time: Mon 01 Jun 2026 04:52:20 +0000 Manifest this update: Mon 01 Jun 2026 04:52:19 +0000 Manifest next update: Mon 08 Jun 2026 04:52:19 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: SYJPCdOTNdqdCTbbbSwjLr/5a8oin/K8LaCyn1hottQ=) 2: C63D0814097B11F0B1329480C4F9AE02.roa (hash: MmLLr6l4IDOg8XMaUZVystbsTDwX0oyuPDuuzGnXhFs=) 3: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: 1R5i5o2t6sI6xlQkmjgkQQNJTTUz/BHQTGAZz17WwEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Jun 1 04:52:19 2026 GMT Not After : Jun 8 04:52:19 2026 GMT Subject: CN=6a1d1004-fee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:92:77:cf:c5:7c:8e:e3:fa:f0:aa:ad:3f:6b: 94:af:a1:cd:11:30:d9:66:24:27:2b:57:dc:81:a7: d0:38:dd:5f:92:ff:66:0f:6d:65:2a:75:af:70:1e: b9:30:75:aa:17:62:30:1c:4d:62:b3:dd:21:96:df: b1:90:f4:ee:ab:42:5b:a1:a0:e5:9a:dc:88:7a:29: 19:a8:61:06:01:f3:d8:11:6d:a9:e2:92:94:42:8c: 0c:a9:9d:19:f5:29:9c:ad:c5:6f:46:fa:e3:17:e9: 08:2b:7c:f1:8f:b8:35:c5:81:36:92:7f:c5:1f:e4: 84:ab:38:73:e8:0c:0f:a8:78:b4:f3:2a:1d:ab:37: 92:f9:d9:0f:d9:54:8d:47:65:ca:ff:81:8e:c9:19: b7:58:c4:b4:72:4f:54:1f:c8:92:f6:b1:19:03:ea: 55:c4:98:51:35:b0:35:97:85:01:44:a0:19:cd:dd: ce:f3:f8:3d:9c:82:74:d4:39:72:38:83:db:b6:1a: 24:f1:83:71:61:a6:61:d2:72:ed:cc:1a:13:66:40: 37:31:27:c0:93:cb:7f:5e:c3:77:09:f1:cd:5c:36: f0:cf:72:f3:3e:62:67:36:55:46:69:41:4d:12:a9: a1:74:56:66:f8:d5:c6:5e:56:78:d9:02:eb:0d:56: 09:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C2:2B:74:00:37:17:05:DA:38:2E:FB:0D:52:7D:18:4A:37:37:EF X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:eb:a5:33:ed:7a:04:5f:7e:04:7b:f8:ab:d8:d4:d4:70:9c: b3:0e:87:02:3e:d9:fa:44:49:ba:da:cd:e9:0b:ec:e1:ee:d8: 05:71:5f:17:c9:cc:08:74:08:b5:45:46:e2:a0:18:60:d6:bc: cd:8c:99:5d:d3:e8:87:bd:09:68:c0:c7:4d:47:85:28:e2:c4: 8f:85:0e:1b:91:a6:d0:8d:16:a5:75:f6:bc:ef:bc:d8:86:4e: 2d:b1:98:28:96:40:3a:94:55:a4:d8:8d:74:4f:46:11:2e:4f: 43:68:c9:b5:b9:08:58:2d:32:27:51:83:e0:72:32:0b:c7:55: ca:90:b5:8d:54:1f:b7:69:c3:d0:62:ce:95:b2:48:b2:87:05: 33:31:6c:17:bc:fa:9d:a5:bb:68:54:db:e0:e7:dc:76:d3:6f: e5:79:74:9c:8a:a7:3e:9f:ce:65:d8:f1:45:ef:dc:3c:df:bb: b9:a4:63:f9:19:6f:d6:49:81:e5:28:1b:a2:56:e6:5f:98:8a: 5b:f0:f0:e4:47:63:b5:26:7b:ac:fb:13:97:0e:db:91:3f:8c: 1d:5c:3b:8d:e5:b8:80:3c:67:db:34:85:62:4f:d0:96:83:48: 93:17:92:78:bf:94:e3:bb:2e:cb:bf:80:f5:e3:d7:12:77:de: 5d:49:e9:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjYwNjAxMDQ1MjE5WhcNMjYwNjA4MDQ1MjE5WjAYMRYwFAYD VQQDEw02YTFkMTAwNC1mZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5J3z8V8juP68KqtP2uUr6HNETDZZiQnK1fcgafQON1fkv9mD21lKnWvcB65 MHWqF2IwHE1is90hlt+xkPTuq0JboaDlmtyIeikZqGEGAfPYEW2p4pKUQowMqZ0Z 9SmcrcVvRvrjF+kIK3zxj7g1xYE2kn/FH+SEqzhz6AwPqHi08yodqzeS+dkP2VSN R2XK/4GOyRm3WMS0ck9UH8iS9rEZA+pVxJhRNbA1l4UBRKAZzd3O8/g9nIJ01Dly OIPbthok8YNxYaZh0nLtzBoTZkA3MSfAk8t/XsN3CfHNXDbwz3LzPmJnNlVGaUFN EqmhdFZm+NXGXlZ42QLrDVYJgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLrCK3QA NxcF2jgu+w1SfRhKNzfvMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsOulM+16BF9+BHv4q9jU1HCcsw6HAj7Z+kRJutrN6Qvs4e7YBXFfF8nMCHQI tUVG4qAYYNa8zYyZXdPoh70JaMDHTUeFKOLEj4UOG5Gm0I0WpXX2vO+82IZOLbGY KJZAOpRVpNiNdE9GES5PQ2jJtbkIWC0yJ1GD4HIyC8dVypC1jVQft2nD0GLOlbJI socFMzFsF7z6naW7aFTb4OfcdtNv5Xl0nIqnPp/OZdjxRe/cPN+7uaRj+Rlv1kmB 5SgbolbmX5iKW/Dw5EdjtSZ7rPsTlw7bkT+MHVw7jeW4gDxn2zSFYk/QloNIkxeS eL+U47suy7+A9ePXEnfeXUnplg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:24 2026 by rpki-client