$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: G82XBADXRXGv8gC77l2jb3l5j9bPRu6R1a2iPVYaYGs= Subject key identifier: 40:85:17:88:05:F3:59:94:1F:BA:D9:A6:86:2E:2B:10:AB:D2:2F:9D Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 03EB Signing time: Mon 01 Jun 2026 00:55:07 +0000 Manifest this update: Mon 01 Jun 2026 00:55:07 +0000 Manifest next update: Mon 08 Jun 2026 00:55:07 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: Z09pvpn1GCNxfFxD94P/kxh5NV31kPkCou12kQwkwXw=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: cp7bTb5LQaah3kkUkaBafNzpnRd6bBUnxxFCOx5DKVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 00:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Jun 1 00:55:07 2026 GMT Not After : Jun 8 00:55:07 2026 GMT Subject: CN=6a1cd86b-cfbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d0:16:c0:5a:27:31:c6:9d:5f:1c:42:7d:71: d0:ad:35:64:81:82:f0:b4:6a:ab:12:a6:98:f2:92: 5f:9a:42:ee:52:09:0b:c5:11:ae:90:c1:67:f5:86: 3c:18:80:27:c4:d4:80:ab:b3:4b:bc:83:34:47:6a: e0:1e:33:e1:56:bc:3a:81:55:98:f2:70:c4:53:b4: 6a:d9:f7:70:95:e6:8f:5a:d7:15:0c:e5:f3:c6:7c: 89:35:77:a3:35:c8:ef:ce:02:ea:e4:68:6c:08:d0: 40:a1:09:c1:50:a1:e7:b1:a7:62:3b:86:4d:22:33: c5:98:21:6a:bf:b9:a3:dd:49:0f:c0:10:93:c7:08: da:02:e1:87:42:f0:25:6f:5a:fc:93:23:27:2b:d0: f7:b0:a7:64:7b:6e:4d:ed:88:30:70:67:58:8e:c8: 5f:9a:50:96:33:14:00:c5:11:58:d6:cc:71:af:5c: 2b:25:d9:af:d0:aa:82:9c:0e:3d:38:ce:24:6a:25: ca:ed:28:64:01:37:29:22:29:d8:11:19:47:a1:d1: c3:e9:ea:de:0f:05:c2:4a:3e:bc:57:d7:83:06:64: 73:aa:02:e5:4a:53:cc:da:df:0d:6b:b9:fd:c2:c0: 2e:a3:8c:53:f8:2b:74:b2:a3:20:66:0f:29:3b:69: e4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:85:17:88:05:F3:59:94:1F:BA:D9:A6:86:2E:2B:10:AB:D2:2F:9D X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:99:7b:33:5b:c0:62:f1:e3:c0:0f:fd:a4:14:86:ed:56:a9: 79:42:d2:f3:7a:78:e6:f3:09:f2:b4:b2:77:9e:9d:99:66:ef: a6:16:32:7d:32:a9:20:25:70:11:cd:ef:90:bd:45:0b:6c:e3: 51:3e:cc:be:f0:c1:53:81:4f:f9:a4:76:8c:b2:f4:ed:cb:5d: 20:35:39:fb:69:f7:35:5b:60:b2:36:dd:11:86:14:55:36:18: 5b:b0:a9:d3:d8:d2:f3:f0:0a:95:57:cf:b9:4b:6b:0c:46:b5: ce:47:84:60:70:9d:3e:a2:f8:8b:e7:b9:84:0f:63:38:52:d0: 19:f2:0c:a9:4c:74:77:1e:61:a0:ee:41:c6:12:33:c9:cd:1d: 46:ce:9f:b2:47:cf:43:02:6b:6c:c1:c8:5c:44:5e:76:e9:4e: 6f:cf:da:86:2a:5d:c5:06:af:6b:a8:84:1e:1c:5b:17:57:ba: ce:5b:36:a5:32:1a:55:93:0c:6f:10:69:0e:bb:1f:1a:87:85: e1:c3:52:a6:ac:ba:62:56:1e:38:5c:bb:2b:23:c7:a6:21:fe: d4:08:a9:2a:e3:d4:d2:eb:8c:0d:dc:20:e8:06:8e:8b:eb:2f: 84:ba:f1:39:47:89:9b:9a:ef:1a:be:6b:2b:cf:94:da:0b:26: 08:69:12:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjYwNjAxMDA1NTA3WhcNMjYwNjA4MDA1NTA3WjAYMRYwFAYD VQQDEw02YTFjZDg2Yi1jZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiNAWwFonMcadXxxCfXHQrTVkgYLwtGqrEqaY8pJfmkLuUgkLxRGukMFn9YY8 GIAnxNSAq7NLvIM0R2rgHjPhVrw6gVWY8nDEU7Rq2fdwleaPWtcVDOXzxnyJNXej NcjvzgLq5GhsCNBAoQnBUKHnsadiO4ZNIjPFmCFqv7mj3UkPwBCTxwjaAuGHQvAl b1r8kyMnK9D3sKdke25N7YgwcGdYjshfmlCWMxQAxRFY1sxxr1wrJdmv0KqCnA49 OM4kaiXK7ShkATcpIinYERlHodHD6ereDwXCSj68V9eDBmRzqgLlSlPM2t8Na7n9 wsAuo4xT+Ct0sqMgZg8pO2nkzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFECFF4gF 81mUH7rZpoYuKxCr0i+dMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALJl7M1vAYvHjwA/9pBSG7VapeULS83p45vMJ8rSyd56dmWbvphYyfTKpICVw Ec3vkL1FC2zjUT7MvvDBU4FP+aR2jLL07ctdIDU5+2n3NVtgsjbdEYYUVTYYW7Cp 09jS8/AKlVfPuUtrDEa1zkeEYHCdPqL4i+e5hA9jOFLQGfIMqUx0dx5hoO5BxhIz yc0dRs6fskfPQwJrbMHIXERedulOb8/ahipdxQava6iEHhxbF1e6zls2pTIaVZMM bxBpDrsfGoeF4cNSpqy6YlYeOFy7KyPHpiH+1AipKuPU0uuMDdwg6AaOi+svhLrx OUeJm5rvGr5rK8+U2gsmCGkSow== -----END CERTIFICATE-----Generated at Tue Jun 2 21:18:09 2026 by rpki-client