$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: Nnm3wKiF0U0wfikygqGnU++AvbnomXX7Pk2BlHU4NnQ= Subject key identifier: DC:7D:F6:84:AD:7B:3E:D6:04:A8:71:70:35:11:2F:BE:79:46:D8:60 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: CD Signing time: Mon 01 Jun 2026 07:35:38 +0000 Manifest this update: Mon 01 Jun 2026 07:35:37 +0000 Manifest next update: Mon 08 Jun 2026 07:35:37 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: baHXJYFolLRTXYqdMP54/nFd9X3mzxW/TjgegHRTYS0=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 07:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jun 1 07:35:37 2026 GMT Not After : Jun 8 07:35:37 2026 GMT Subject: CN=6a1d364a-ca80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1b:1b:d9:dc:3b:10:9a:d8:e8:8d:26:a3:0f: 63:85:33:8b:15:b2:89:d1:d7:92:71:96:76:67:a1: 28:4a:72:48:eb:b1:92:9e:a7:f0:f1:84:54:a2:76: c1:1d:27:36:10:62:27:17:5c:3a:42:97:b4:ee:e9: 94:a8:c8:2d:18:02:4d:27:7a:3e:dc:ba:d6:c5:36: 76:66:0c:00:80:e6:5e:4a:80:0e:ab:16:a3:50:33: 45:2a:44:c2:82:c9:23:78:38:ef:e9:17:93:c0:71: fd:ee:4d:64:07:28:9a:01:93:81:13:b5:ae:61:e7: f4:b3:af:34:77:8a:44:fb:81:bd:ad:d9:1e:26:84: 17:80:bb:9e:d9:78:90:64:9b:c4:2b:d2:41:e1:05: 39:ac:43:a6:ee:75:8e:5f:e0:c5:6e:42:24:42:33: 7f:fd:69:a0:fe:46:52:35:ee:fb:f4:bf:79:1d:21: 3c:c0:ea:f5:9c:a6:6a:8a:6d:ff:3c:fd:80:37:12: d2:fa:5c:99:0c:0b:32:61:13:75:b9:6b:c3:9d:9f: d8:8e:65:76:d6:9b:26:16:80:7e:4e:45:19:dc:7f: e7:93:fb:c8:d4:16:3c:e3:5e:34:41:09:f6:f8:90: 45:38:11:1b:07:0c:ec:7f:81:8d:20:fb:cf:1d:fa: c2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7D:F6:84:AD:7B:3E:D6:04:A8:71:70:35:11:2F:BE:79:46:D8:60 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b3:1d:d9:79:f7:01:3b:b4:de:1e:2e:15:41:5e:8d:ff:8c: 71:dd:64:9b:2a:e5:4e:e7:df:f7:59:cb:5c:c4:ef:f2:b1:26: 0a:83:6f:19:5c:a8:2d:03:08:ce:c3:d1:ef:9a:28:b0:91:e4: db:e8:dc:63:c1:5f:7b:96:8f:2f:b8:23:6a:69:f4:2e:34:ba: e7:9a:a2:86:3d:ea:6f:9f:8c:20:ad:11:f5:a1:af:6c:aa:25: 38:0b:af:de:72:d6:9c:4c:07:39:8e:e1:5f:e6:04:1e:64:01: a2:25:cd:94:f3:42:f0:6b:78:21:23:ba:56:0f:e7:3e:8d:65: 6f:2b:2d:10:bd:ea:fd:bb:2c:28:26:f6:91:28:af:f4:a6:cd: 1e:18:91:1a:1b:83:62:0c:9e:9d:ef:c8:e5:0f:16:6a:f3:6b: 7e:44:83:df:f3:a3:6c:d9:67:16:45:08:c4:15:27:20:27:39: dc:f1:06:59:3e:32:89:7f:20:23:98:b0:c2:30:9a:a7:ad:da: a6:d4:f8:54:44:eb:16:a0:0f:f0:2d:82:c3:c3:78:cf:7e:ac: b4:22:c0:30:69:43:48:0b:ad:26:af:bc:aa:84:6c:fe:09:f9: 6d:25:f3:2d:41:59:7f:e3:d8:7c:1c:14:ee:e4:43:72:e3:f4: 29:c3:89:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwNjAxMDczNTM3WhcNMjYwNjA4MDczNTM3WjAYMRYwFAYD VQQDEw02YTFkMzY0YS1jYTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxsb2dw7EJrY6I0mow9jhTOLFbKJ0deScZZ2Z6EoSnJI67GSnqfw8YRUonbB HSc2EGInF1w6Qpe07umUqMgtGAJNJ3o+3LrWxTZ2ZgwAgOZeSoAOqxajUDNFKkTC gskjeDjv6ReTwHH97k1kByiaAZOBE7WuYef0s680d4pE+4G9rdkeJoQXgLue2XiQ ZJvEK9JB4QU5rEOm7nWOX+DFbkIkQjN//Wmg/kZSNe779L95HSE8wOr1nKZqim3/ PP2ANxLS+lyZDAsyYRN1uWvDnZ/YjmV21psmFoB+TkUZ3H/nk/vI1BY84140QQn2 +JBFOBEbBwzsf4GNIPvPHfrCEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNx99oSt ez7WBKhxcDURL755RthgMB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASrMd2Xn3ATu03h4uFUFejf+Mcd1kmyrlTuff91nLXMTv8rEmCoNvGVyoLQMI zsPR75oosJHk2+jcY8Ffe5aPL7gjamn0LjS655qihj3qb5+MIK0R9aGvbKolOAuv 3nLWnEwHOY7hX+YEHmQBoiXNlPNC8Gt4ISO6Vg/nPo1lbystEL3q/bssKCb2kSiv 9KbNHhiRGhuDYgyene/I5Q8WavNrfkSD3/OjbNlnFkUIxBUnICc53PEGWT4yiX8g I5iwwjCap63aptT4VETrFqAP8C2Cw8N4z36stCLAMGlDSAutJq+8qoRs/gn5bSXz LUFZf+PYfBwU7uRDcuP0KcOJYw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:30:28 2026 by rpki-client