$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: WtFYhlXe3gX3RKBRoh0enFUv0n+/fdKwiTgbzrZ83Pg= Subject key identifier: D3:C1:F6:3C:7C:80:57:65:B4:93:77:30:AE:57:7B:FE:3B:96:FA:45 Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: BE Signing time: Mon 01 Jun 2026 07:47:14 +0000 Manifest this update: Mon 01 Jun 2026 07:47:14 +0000 Manifest next update: Mon 08 Jun 2026 07:47:14 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: Tt0g83qBssjnWH/VXCfUTcTUs69texpg3Xkdf/bYk68=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: QEFTIDA+TJrcDI4/EvRQfRv5uCDm3GXgS8OiMfubAA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 07:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Jun 1 07:47:14 2026 GMT Not After : Jun 8 07:47:14 2026 GMT Subject: CN=6a1d3902-dc07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:6e:d4:7a:64:c0:9a:27:1a:fe:45:c1:7f: 45:d1:90:4d:98:02:cb:a2:82:cb:40:b1:01:ad:39: 90:ad:34:99:7f:cb:16:4f:71:5c:17:3b:54:76:87: 64:49:ba:9c:65:c1:ad:29:54:8f:3f:0b:d5:c7:58: b5:1b:55:5a:90:ca:f7:52:60:74:2a:e9:85:dc:b5: 8d:0f:1a:37:f4:4f:d5:e4:49:84:f3:aa:86:e2:9f: 65:02:42:1e:0f:4b:19:80:ce:48:8f:64:b5:34:a8: e6:2a:b3:95:61:25:92:4f:f0:8d:ae:da:ad:f5:a5: 23:76:ac:03:ba:e8:e0:f6:66:84:fd:b9:f6:08:b5: 8f:df:15:1a:ee:f1:f0:5f:d8:d2:8a:89:cb:72:21: 9b:dc:ba:e2:de:ef:20:66:f5:45:aa:63:88:a1:82: e1:e6:fe:5b:6c:5a:97:58:be:dc:2e:03:ef:c4:f6: 13:aa:32:af:de:88:8e:68:1a:f6:4d:c3:68:1c:10: 40:02:b2:f8:ca:12:4d:ad:8e:18:f6:8c:fe:e5:39: b5:65:1d:0d:a9:df:64:b7:da:7d:b6:db:21:55:a7: 39:f2:57:07:33:87:88:85:7f:4e:6c:e2:8f:51:29: 72:c2:99:5c:87:a3:b1:68:bc:a8:40:a1:87:fb:64: 1b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C1:F6:3C:7C:80:57:65:B4:93:77:30:AE:57:7B:FE:3B:96:FA:45 X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d4:11:d7:7c:90:b9:68:9a:02:eb:38:c5:81:ca:69:23:d2: da:7a:da:73:1d:35:85:42:08:cb:34:35:bb:45:73:ae:6c:65: 1c:80:37:2a:7a:14:dd:9b:33:ec:03:f8:40:63:b7:9c:83:90: 26:74:9f:4a:0f:8a:c6:5d:40:fd:02:0d:04:4f:53:3a:3a:92: 15:c0:40:c6:fd:6d:ce:50:77:ca:da:28:ad:53:4c:7a:a9:c7: 00:f4:1f:0c:17:51:c2:33:07:c7:48:af:7a:90:90:6a:c1:3b: 41:ea:95:af:3e:2f:22:ef:18:08:a7:35:ca:a6:c4:53:d9:80: be:9e:37:3f:ce:ef:2f:b1:5b:76:60:aa:0a:4c:3f:21:ee:84: 20:be:f8:3a:f2:4e:4c:64:eb:2e:21:6a:ad:4a:44:e5:f2:49: 83:e3:1d:c8:66:ef:c5:22:7d:c6:2d:65:0a:56:dc:2b:9d:27: a3:4e:88:8a:e5:8f:f9:66:16:58:df:08:ea:0c:9c:ef:ea:64: 48:a9:3a:cc:fe:d8:96:ae:88:27:18:be:99:3c:ad:e9:a3:b6: 39:4c:ba:75:57:78:57:bb:b1:65:ed:19:33:9b:5f:26:bb:ec: 7a:fc:05:89:83:7b:41:b3:c9:1b:b8:6e:14:8a:80:36:7b:42: a3:b2:72:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKDIyMjQyOTQ0MTZCODQ2NTcwNjU1NEI1MkNCQzU2RjQ0 OUJDNDZDODkwHhcNMjYwNjAxMDc0NzE0WhcNMjYwNjA4MDc0NzE0WjAYMRYwFAYD VQQDEw02YTFkMzkwMi1kYzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAdu1HpkwJonGv5FwX9F0ZBNmALLooLLQLEBrTmQrTSZf8sWT3FcFztUdodk SbqcZcGtKVSPPwvVx1i1G1VakMr3UmB0KumF3LWNDxo39E/V5EmE86qG4p9lAkIe D0sZgM5Ij2S1NKjmKrOVYSWST/CNrtqt9aUjdqwDuujg9maE/bn2CLWP3xUa7vHw X9jSionLciGb3Lri3u8gZvVFqmOIoYLh5v5bbFqXWL7cLgPvxPYTqjKv3oiOaBr2 TcNoHBBAArL4yhJNrY4Y9oz+5Tm1ZR0Nqd9kt9p9ttshVac58lcHM4eIhX9ObOKP USlywplch6OxaLyoQKGH+2Qb+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNPB9jx8 gFdltJN3MK5Xe/47lvpFMB8GA1UdIwQYMBaAFCIkKUQWuEZXBlVLUsvFb0SbxGyJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9FRDBGMTFGNDQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJsY0dWVXRTeThWdlJKdkVi SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9FRDBGMTFGNDQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJs Y0dWVXRTeThWdlJKdkViSWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn9QR13yQuWiaAus4xYHKaSPS2nracx01hUIIyzQ1u0VzrmxlHIA3KnoU3Zsz 7AP4QGO3nIOQJnSfSg+Kxl1A/QINBE9TOjqSFcBAxv1tzlB3ytoorVNMeqnHAPQf DBdRwjMHx0ivepCQasE7QeqVrz4vIu8YCKc1yqbEU9mAvp43P87vL7FbdmCqCkw/ Ie6EIL74OvJOTGTrLiFqrUpE5fJJg+MdyGbvxSJ9xi1lClbcK50no06IiuWP+WYW WN8I6gyc7+pkSKk6zP7Ylq6IJxi+mTyt6aO2OUy6dVd4V7uxZe0ZM5tfJrvsevwF iYN7QbPJG7huFIqANntCo7JyhA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:18:56 2026 by rpki-client