$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: tv5sI37U3c0TAxXN+z2FZnSST+a5c8HKc3HejzNiURs= Subject key identifier: 1F:31:6A:75:B3:93:90:7A:37:49:22:85:BA:45:77:15:CB:DD:AA:54 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0AD1 Signing time: Wed 10 Jun 2026 19:27:00 +0000 Manifest this update: Wed 10 Jun 2026 19:27:00 +0000 Manifest next update: Wed 17 Jun 2026 19:27:00 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: ftlARJzX/qvQkp77QyCfaGXSywfHMgL5VsssaAwmgUA=) 2: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) 3: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) 4: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 19:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Jun 10 19:27:00 2026 GMT Not After : Jun 17 19:27:00 2026 GMT Subject: CN=6a29ba84-85a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ae:6a:fc:84:f6:d8:7b:06:3c:9f:28:f4:c8: 67:14:4c:b1:88:b9:98:49:72:56:d1:4c:e3:17:71: f2:da:c3:59:66:4d:a4:57:ca:07:dd:26:7a:cd:96: 69:e7:38:3d:7b:5f:18:a1:47:54:6e:84:1b:08:98: c6:cf:ec:b3:ea:7d:ea:bf:c5:1c:e6:ce:36:45:08: b4:a7:65:52:54:bb:a3:38:c8:d0:e1:f2:36:ad:bb: bf:9a:71:fa:ac:e7:dc:79:b9:da:dd:20:75:83:18: 3b:c5:4c:88:d5:9d:43:7e:1a:0d:7f:31:6d:4d:38: 63:4c:6d:f2:d5:7d:c0:19:95:ee:06:05:c0:60:91: e0:cd:08:ab:e3:84:65:47:a4:5e:8f:e1:87:cf:99: ab:87:89:99:eb:93:b8:b8:b4:f1:0b:54:ec:f0:bf: cd:aa:d9:03:78:e6:a2:c9:2b:f3:89:0e:50:d2:cd: 71:79:1d:94:95:dc:25:bd:bf:ec:b8:f8:9a:4c:a0: c2:eb:7c:04:27:9f:ae:62:c6:04:eb:2c:59:57:49: 07:7c:ff:e6:c0:ab:1e:00:4e:48:dd:c6:8b:4f:0b: c4:90:e5:a3:96:c1:57:26:c0:e1:3b:70:2c:db:9b: ca:45:88:27:6b:22:f6:96:7a:a8:3f:80:1a:37:4e: d1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:31:6A:75:B3:93:90:7A:37:49:22:85:BA:45:77:15:CB:DD:AA:54 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:5a:da:59:30:9a:90:86:93:21:92:fb:7f:cd:3c:57:f4:44: 8a:fc:2e:7b:c0:da:7a:ca:2b:13:eb:c0:b5:37:d4:5a:4f:21: eb:8e:e1:e4:df:93:1f:e6:fc:88:a4:2d:d2:9d:f0:88:57:78: 61:4c:88:34:d6:a1:79:f8:8e:84:c6:0f:5d:21:26:40:84:78: 9f:01:3c:6f:a1:e1:94:17:8f:53:1c:58:28:d9:1d:07:17:68: be:56:2d:97:29:c2:cf:1f:01:cd:12:c4:cb:ab:99:34:cf:b4: 26:81:34:c7:74:e1:45:f6:2e:ee:18:15:ac:1d:e5:0f:69:c3: 07:77:d2:3b:19:19:f6:34:81:dd:d0:f2:fe:89:35:90:8b:cb: eb:d4:87:07:5f:07:bf:45:18:96:98:3e:94:b8:8b:5f:42:69: c5:06:b6:72:08:92:a1:fe:da:ba:b0:16:03:92:50:f6:cb:ba: 70:7d:03:99:38:5c:3b:56:c0:dd:c0:1c:c5:6e:4b:31:88:27: 8c:9e:9e:55:06:41:ce:6e:3b:d2:b1:0d:f8:57:4e:8b:e1:f7: 84:95:ac:0d:8d:f2:a8:d7:15:36:9b:55:94:b0:74:aa:1c:6b: e7:08:58:d3:7a:87:d0:89:f9:40:4b:97:cb:b0:46:d3:ab:20: 03:48:07:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwNjEwMTkyNzAwWhcNMjYwNjE3MTkyNzAwWjAYMRYwFAYD VQQDEw02YTI5YmE4NC04NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva5q/IT22HsGPJ8o9MhnFEyxiLmYSXJW0UzjF3Hy2sNZZk2kV8oH3SZ6zZZp 5zg9e18YoUdUboQbCJjGz+yz6n3qv8Uc5s42RQi0p2VSVLujOMjQ4fI2rbu/mnH6 rOfcebna3SB1gxg7xUyI1Z1DfhoNfzFtTThjTG3y1X3AGZXuBgXAYJHgzQir44Rl R6Rej+GHz5mrh4mZ65O4uLTxC1Ts8L/NqtkDeOaiySvziQ5Q0s1xeR2Uldwlvb/s uPiaTKDC63wEJ5+uYsYE6yxZV0kHfP/mwKseAE5I3caLTwvEkOWjlsFXJsDhO3As 25vKRYgnayL2lnqoP4AaN07ROwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB8xanWz k5B6N0kihbpFdxXL3apUMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABVraWTCakIaTIZL7f808V/REivwue8DaesorE+vAtTfUWk8h647h5N+TH+b8 iKQt0p3wiFd4YUyINNahefiOhMYPXSEmQIR4nwE8b6HhlBePUxxYKNkdBxdovlYt lynCzx8BzRLEy6uZNM+0JoE0x3ThRfYu7hgVrB3lD2nDB3fSOxkZ9jSB3dDy/ok1 kIvL69SHB18Hv0UYlpg+lLiLX0JpxQa2cgiSof7aurAWA5JQ9su6cH0DmThcO1bA 3cAcxW5LMYgnjJ6eVQZBzm470rEN+FdOi+H3hJWsDY3yqNcVNptVlLB0qhxr5whY 03qH0In5QEuXy7BG06sgA0gHBg== -----END CERTIFICATE-----Generated at Thu Jun 11 17:53:19 2026 by rpki-client