$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft File: kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft (raw, json) Hash identifier: xn5u1QxGnDlp+e62ULxz/AVzoP/CNSSO0d0Rxs3IVio= Subject key identifier: 8F:F2:22:40:0D:20:67:38:88:45:1A:D6:52:04:E5:56:FE:25:0D:20 Authority key identifier: 91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 Certificate issuer: /CN=A91D8157/serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft Manifest number: 42 Signing time: Fri 05 Jun 2026 09:01:14 +0000 Manifest this update: Fri 05 Jun 2026 09:01:14 +0000 Manifest next update: Fri 12 Jun 2026 09:01:14 +0000 Files and hashes: 1: kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl (hash: QzKxvkKLsLpCKgA6rg1z44WJGLeVfuWCOfCBgWfHo1o=) 2: C45CF470520711F1A16AA95CA0833773.roa (hash: qdFoJbJ8TOgCfnHbBMSQzEvTn3hFb8Cr3CpnOL28tCM=) 3: D386B66251D411F185203A1790833773.roa (hash: x9YNhs52Js+F/nkP6R0eX91Umj1eirlfbF7q2WvjGA8=) 4: C2373EAC1D6011F1BE4C1B34263D8C67.roa (hash: 07klE73+JTtSptr8Nr9s1wMcP6sL8OycY1vW+oKqJmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 09:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8157, serialNumber=91DA3A17637CD292CEA4670DD13A72D86EAA2D91 Validity Not Before: Jun 5 09:01:14 2026 GMT Not After : Jun 12 09:01:14 2026 GMT Subject: CN=6a22905a-7a2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:cd:3e:a9:a4:88:5a:15:6b:b2:90:56:94: 70:9d:ec:b9:72:33:c7:6e:4d:24:9c:eb:4a:39:13: ba:50:56:cb:f4:90:a8:5e:2b:99:27:60:8a:e1:ec: b2:8b:01:f0:e6:8b:20:8e:16:9d:74:d4:de:8b:0b: 18:9d:c7:c6:8c:50:b5:a8:89:0d:6a:37:fd:3d:e4: b2:f0:e1:8a:b5:51:9a:9a:3f:5a:76:03:41:46:cd: 8e:b1:58:51:6b:bd:1c:17:f1:ad:89:51:c3:94:1b: f4:a7:81:df:30:93:52:3d:07:33:96:c5:b2:e7:5c: 24:37:44:fc:ec:40:a1:93:06:50:1d:1e:86:f1:fe: 76:3a:9c:db:5d:f9:85:5d:b8:ca:2d:7a:4d:5a:67: 76:70:98:0a:ae:0d:bf:01:0e:9d:08:41:89:1a:ea: f3:9e:1a:fa:ee:80:1c:ef:5a:8f:e0:f3:88:a4:00: 14:a0:2d:ed:10:7b:a5:50:84:8f:e4:13:4d:f4:63: 87:40:fe:5e:85:20:30:e0:a4:b2:50:69:e2:0c:f1: c9:be:d9:cf:6c:9e:1b:33:7d:3a:7d:8d:71:5a:df: 51:7a:3c:be:2b:0d:0d:e7:67:2b:e7:c2:14:05:68: f7:b4:7b:33:d4:00:b0:1c:9c:0d:9c:40:92:f1:85: fa:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F2:22:40:0D:20:67:38:88:45:1A:D6:52:04:E5:56:FE:25:0D:20 X509v3 Authority Key Identifier: keyid:91:DA:3A:17:63:7C:D2:92:CE:A4:67:0D:D1:3A:72:D8:6E:AA:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kdo6F2N80pLOpGcN0Tpy2G6qLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8157/250838AE114211F19D37628F213D8C67/kdo6F2N80pLOpGcN0Tpy2G6qLZE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:64:19:cb:24:25:30:c6:87:e7:f4:1b:aa:35:37:b3:da:cd: 9a:75:24:28:aa:f9:ef:00:e5:45:92:19:7c:0d:67:93:48:93: 20:7e:c5:63:58:6c:4d:cf:38:7a:d0:f3:61:db:32:b9:0d:33: 72:6b:a7:e4:6c:4d:58:ab:9e:a5:3f:57:36:e8:ca:46:7b:af: 3e:37:63:8e:05:dc:f8:19:90:66:ad:cb:44:ce:8e:5a:9d:fb: 7d:1a:4c:6e:7d:d8:59:0f:ca:71:28:5f:dc:9c:a5:7b:80:b0: 1d:a2:45:f1:3f:5b:8f:97:42:98:58:9e:bc:d7:68:9b:67:d7: 71:d9:3d:38:a8:17:7e:8b:e9:6d:6e:24:94:73:37:2c:06:97: 1d:04:f6:a5:fc:39:de:1a:9e:3d:10:0d:25:64:b4:dc:3d:8f: 45:c8:d9:cc:20:7f:2c:54:76:68:10:e2:70:4d:2d:a3:8f:98: ba:4a:b5:96:5f:73:ba:05:00:fd:3f:3c:d2:33:45:b3:b7:7c: 2a:7f:38:02:a6:e9:e1:fd:8c:9f:52:b6:34:b5:df:b8:ac:3c: 5f:d8:f3:0e:b4:3e:04:87:6b:a3:af:fa:e1:4b:f2:72:36:62: e5:ce:a5:80:99:0a:2d:c1:75:09:b3:ee:68:fb:33:a8:9e:de: 38:01:cb:9b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE1NzExMC8GA1UEBRMoOTFEQTNBMTc2MzdDRDI5MkNFQTQ2NzBERDEzQTcyRDg2 RUFBMkQ5MTAeFw0yNjA2MDUwOTAxMTRaFw0yNjA2MTIwOTAxMTRaMBgxFjAUBgNV BAMTDTZhMjI5MDVhLTdhMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqis0+qaSIWhVrspBWlHCd7LlyM8duTSSc60o5E7pQVsv0kKheK5knYIrh7LKL AfDmiyCOFp101N6LCxidx8aMULWoiQ1qN/095LLw4Yq1UZqaP1p2A0FGzY6xWFFr vRwX8a2JUcOUG/Sngd8wk1I9BzOWxbLnXCQ3RPzsQKGTBlAdHobx/nY6nNtd+YVd uMotek1aZ3ZwmAquDb8BDp0IQYka6vOeGvrugBzvWo/g84ikABSgLe0Qe6VQhI/k E030Y4dA/l6FIDDgpLJQaeIM8cm+2c9snhszfTp9jXFa31F6PL4rDQ3nZyvnwhQF aPe0ezPUALAcnA2cQJLxhfozAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUj/IiQA0g ZziIRRrWUgTlVv4lDSAwHwYDVR0jBBgwFoAUkdo6F2N80pLOpGcN0Tpy2G6qLZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTU3LzI1MDgzOEFFMTE0 MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBMT3BHY04wVHB5Mkc2cUxa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2RvNkYyTjgwcExPcEdjTjBUcHkyRzZxTFpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTU3LzI1MDgzOEFFMTE0MjExRjE5RDM3NjI4RjIxM0Q4QzY3L2tkbzZGMk44MHBM T3BHY04wVHB5Mkc2cUxaRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAFZBnLJCUwxofn9BuqNTez2s2adSQoqvnvAOVFkhl8DWeTSJMgfsVjWGxNzzh6 0PNh2zK5DTNya6fkbE1Yq56lP1c26MpGe68+N2OOBdz4GZBmrctEzo5anft9Gkxu fdhZD8pxKF/cnKV7gLAdokXxP1uPl0KYWJ6812ibZ9dx2T04qBd+i+ltbiSUczcs BpcdBPal/DneGp49EA0lZLTcPY9FyNnMIH8sVHZoEOJwTS2jj5i6SrWWX3O6BQD9 PzzSM0Wzt3wqfzgCpunh/YyfUrY0td+4rDxf2PMOtD4Eh2ujr/rhS/JyNmLlzqWA mQotwXUJs+5o+zOont44Acub -----END CERTIFICATE-----Generated at Sat Jun 6 10:50:58 2026 by rpki-client