$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: TWV74K9dGZO7RqDRZH7w+ng0zuf+sUxjsWiax7dvHEQ= Subject key identifier: 41:2D:8C:CC:37:5B:B0:24:01:0E:49:AE:99:AA:E3:61:97:7D:F2:7B Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 017A Signing time: Tue 02 Jun 2026 15:43:18 +0000 Manifest this update: Tue 02 Jun 2026 15:43:17 +0000 Manifest next update: Tue 09 Jun 2026 15:43:17 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: oFUSC2JBmfwVQSLZCIaSjG/qJwPZQYARKSHkFejQ6Qw=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: hOp5C3KdQglyoPlRpzdVUK1HCVo7MMXzvUe8s9/qr10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Jun 2 15:43:17 2026 GMT Not After : Jun 9 15:43:17 2026 GMT Subject: CN=6a1efa16-6beb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:35:a9:d2:eb:bc:68:b5:d2:e7:46:7d:94:ed: 1c:cf:93:86:08:0c:ee:52:61:e4:b6:9b:e3:20:a2: 52:54:af:f9:83:24:85:e6:34:9a:31:6e:54:47:05: 6e:96:da:cc:c2:ce:06:39:f8:9e:8c:15:d8:ba:25: 29:9d:e9:ca:42:08:f0:30:56:6e:c7:4f:21:4b:e2: b0:4c:87:30:3a:dd:86:ff:c6:ca:07:12:fb:07:04: 62:4f:35:ee:1e:52:08:f0:86:c6:5a:7d:56:bc:f3: eb:c8:8e:46:2b:f6:5a:d3:67:66:87:4e:40:fe:52: b7:7e:f0:8e:ce:c7:2c:f8:0b:2b:ef:dd:de:aa:ab: 9e:b1:20:42:0d:97:fa:ce:4d:aa:94:f8:b4:be:d5: cc:0a:b9:1d:db:63:8e:c4:30:0b:15:b3:b0:d3:9a: 90:ea:30:9e:c7:a0:ae:18:34:40:55:5e:1c:cd:b0: fc:aa:de:6d:45:3d:a0:ff:ae:d9:0d:a2:8f:f8:55: 02:c2:f4:8a:7d:fc:12:b8:62:51:e4:57:75:c3:74: 48:39:73:31:03:b3:61:65:4f:ad:0c:9f:ce:7c:2c: 07:3c:04:5d:96:a8:19:22:1b:da:c1:51:a1:12:4f: a5:22:05:e4:72:e1:df:00:34:b4:a7:72:b8:17:85: 78:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:2D:8C:CC:37:5B:B0:24:01:0E:49:AE:99:AA:E3:61:97:7D:F2:7B X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:cf:4d:af:67:21:a7:fe:9f:80:d2:bd:9c:39:ea:3e:c1:16: dd:75:a0:eb:6e:82:71:7f:68:4e:a2:c1:c7:7a:26:06:8c:3e: 69:2d:49:46:b0:aa:4c:40:92:e8:8e:ac:b4:05:23:43:bd:0b: c4:28:0b:05:af:61:4f:55:ea:23:28:4d:cd:db:0a:6a:b2:05: 43:c7:2f:93:de:89:12:a9:ea:bc:64:57:83:91:7e:e3:c1:b4: 5d:9b:2d:31:f2:cc:53:4c:f8:c0:a5:47:ca:8a:f1:bf:b8:ad: 7b:37:5e:f0:9c:79:42:6d:9b:72:7b:35:52:4f:e9:34:17:42: 4b:a0:c8:69:9a:bc:28:e9:d6:66:47:55:4f:37:76:bc:23:f8: 71:43:47:7d:77:f3:d1:11:18:68:11:10:ae:96:78:2f:9f:d7: 7b:a3:8b:64:ac:8f:54:70:7e:22:cb:da:36:29:ec:32:c7:7a: 90:6e:bc:6d:ee:b8:e6:62:c0:a3:75:33:60:5e:02:ac:54:73: f7:fd:cb:ec:df:d8:05:66:bf:1e:23:be:ec:d2:42:ec:0b:6c: bc:84:9f:57:a0:6b:c0:c2:6f:f7:2d:c4:b1:db:2d:01:72:5e: bf:73:c0:33:98:2e:69:f3:f4:6a:78:90:9f:ea:db:bc:84:58: a1:33:e2:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjYwNjAyMTU0MzE3WhcNMjYwNjA5MTU0MzE3WjAYMRYwFAYD VQQDEw02YTFlZmExNi02YmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzWp0uu8aLXS50Z9lO0cz5OGCAzuUmHktpvjIKJSVK/5gySF5jSaMW5URwVu ltrMws4GOfiejBXYuiUpnenKQgjwMFZux08hS+KwTIcwOt2G/8bKBxL7BwRiTzXu HlII8IbGWn1WvPPryI5GK/Za02dmh05A/lK3fvCOzscs+Asr793eqquesSBCDZf6 zk2qlPi0vtXMCrkd22OOxDALFbOw05qQ6jCex6CuGDRAVV4czbD8qt5tRT2g/67Z DaKP+FUCwvSKffwSuGJR5Fd1w3RIOXMxA7NhZU+tDJ/OfCwHPARdlqgZIhvawVGh Ek+lIgXkcuHfADS0p3K4F4V4wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEEtjMw3 W7AkAQ5Jrpmq42GXffJ7MB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOc9Nr2chp/6fgNK9nDnqPsEW3XWg626CcX9oTqLBx3omBow+aS1JRrCqTECS 6I6stAUjQ70LxCgLBa9hT1XqIyhNzdsKarIFQ8cvk96JEqnqvGRXg5F+48G0XZst MfLMU0z4wKVHyorxv7itezde8Jx5Qm2bcns1Uk/pNBdCS6DIaZq8KOnWZkdVTzd2 vCP4cUNHfXfz0REYaBEQrpZ4L5/Xe6OLZKyPVHB+IsvaNinsMsd6kG68be645mLA o3UzYF4CrFRz9/3L7N/YBWa/HiO+7NJC7AtsvISfV6BrwMJv9y3EsdstAXJev3PA M5guafP0aniQn+rbvIRYoTPi9A== -----END CERTIFICATE-----Generated at Tue Jun 2 21:18:51 2026 by rpki-client