$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: bfbGoRcm4Ww6Nl9XK9Fr5NX6MwDAXZcktM6aV0FLUqg= Subject key identifier: 80:A9:1F:4F:50:27:BD:E9:2B:B9:00:1A:AB:90:1A:40:18:4E:22:A8 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0BD5 Signing time: Tue 02 Jun 2026 18:57:57 +0000 Manifest this update: Tue 02 Jun 2026 18:57:56 +0000 Manifest next update: Tue 09 Jun 2026 18:57:56 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: PSIgkziO3MBHfwjmvY+4lflTDgh3CDe6LFRZQWtMVZo=) 2: 74CA44AA049F11F087661234C4F9AE02.roa (hash: wKdTkyyXqkqw4zY6Mort6rY+08KcEGgpc9UUyZvX1D8=) 3: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: 52FStysb8y6SSS0DgpkYNnuMyVWPrRkIBtAubJdaP50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 18:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Jun 2 18:57:56 2026 GMT Not After : Jun 9 18:57:56 2026 GMT Subject: CN=6a1f27b5-d9d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:27:d7:88:bd:e4:d6:79:a4:99:f8:41:b7:97: d0:4c:88:3c:94:d1:b5:76:eb:ad:41:a7:88:47:f7: 99:b3:74:56:81:77:5d:2a:b5:52:38:bb:2b:23:bf: 3c:2b:d2:74:71:90:e1:6b:0c:9f:93:16:dc:28:28: 39:fa:4e:26:cd:43:5a:2c:51:95:d9:b2:db:33:db: 05:4b:ea:6f:59:5e:eb:28:a7:76:59:1c:7e:17:b2: 09:51:ab:86:21:04:24:06:90:44:5d:90:d0:91:2d: d9:18:ec:03:96:57:5f:dc:85:82:c0:8f:6a:92:20: cb:b4:d4:c7:e6:73:ad:51:c8:07:ae:6b:c3:5d:43: 96:d0:77:91:9f:c0:8e:99:6d:ed:c0:ab:d4:6b:96: 6b:d2:9c:50:ec:01:75:30:6f:d5:79:c3:6d:72:fa: 4f:91:4a:40:fb:cf:77:59:3f:93:44:2a:3d:a6:37: 6a:10:f8:86:99:f0:05:80:ff:09:24:37:1b:93:03: 33:5e:a7:9d:7e:44:3a:69:ce:2c:2d:4d:38:13:3c: 49:f3:48:6e:60:59:b2:af:bd:43:ae:df:1a:08:1f: 03:ed:dc:f4:6c:0c:91:64:2b:c8:6d:79:bc:f6:0d: 29:65:d2:47:6d:45:7a:a5:44:19:3d:91:32:6b:b8: 9b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A9:1F:4F:50:27:BD:E9:2B:B9:00:1A:AB:90:1A:40:18:4E:22:A8 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:11:be:3b:64:27:05:dd:bd:df:fb:ec:85:80:b0:fc:88:1b: 82:9a:fa:37:de:f4:c1:fb:a2:7b:56:4a:77:78:42:0a:3f:84: ca:45:d4:4f:99:b0:71:68:f0:ce:63:e9:2f:6a:8e:9a:66:7b: 8a:f4:37:8b:53:8c:b0:9f:05:5f:b4:50:7a:2c:4a:f4:f6:63: 7c:63:82:da:dc:e2:b1:55:48:00:f1:b7:e4:33:2f:9e:e8:25: 44:35:b1:4f:7c:b3:f9:06:2c:cc:84:3b:df:32:74:ea:32:3d: db:d3:01:ea:3b:47:24:b8:29:53:28:86:f2:c2:a8:c1:9c:17: 1d:b5:c3:ec:48:dd:d0:38:00:af:b6:37:23:d4:38:a8:3a:5a: e4:23:2f:3b:f2:3b:49:98:df:c6:97:65:51:06:94:ee:03:0b: cb:9d:94:1c:64:6e:e7:e1:8d:ec:49:df:cf:c1:11:51:19:d9: 2b:ff:c3:12:ce:3c:eb:80:25:52:a8:37:2a:be:b4:ba:5c:c8: 37:d5:5e:34:f3:5f:82:41:b8:f0:ea:b9:24:b1:5f:9a:a1:cb: b8:ae:49:1b:13:5f:f1:85:e5:ca:3e:f9:08:83:55:3b:c3:85: 5b:3b:3b:eb:c4:00:a2:02:b4:b5:c3:36:b2:d1:b5:e0:8e:27: 6e:2d:fc:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjYwNjAyMTg1NzU2WhcNMjYwNjA5MTg1NzU2WjAYMRYwFAYD VQQDEw02YTFmMjdiNS1kOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CfXiL3k1nmkmfhBt5fQTIg8lNG1duutQaeIR/eZs3RWgXddKrVSOLsrI788 K9J0cZDhawyfkxbcKCg5+k4mzUNaLFGV2bLbM9sFS+pvWV7rKKd2WRx+F7IJUauG IQQkBpBEXZDQkS3ZGOwDlldf3IWCwI9qkiDLtNTH5nOtUcgHrmvDXUOW0HeRn8CO mW3twKvUa5Zr0pxQ7AF1MG/VecNtcvpPkUpA+893WT+TRCo9pjdqEPiGmfAFgP8J JDcbkwMzXqedfkQ6ac4sLU04EzxJ80huYFmyr71Drt8aCB8D7dz0bAyRZCvIbXm8 9g0pZdJHbUV6pUQZPZEya7ibXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFICpH09Q J73pK7kAGquQGkAYTiKoMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfRG+O2QnBd293/vshYCw/Igbgpr6N970wfuie1ZKd3hCCj+EykXUT5mwcWjw zmPpL2qOmmZ7ivQ3i1OMsJ8FX7RQeixK9PZjfGOC2tzisVVIAPG35DMvnuglRDWx T3yz+QYszIQ73zJ06jI929MB6jtHJLgpUyiG8sKowZwXHbXD7Ejd0DgAr7Y3I9Q4 qDpa5CMvO/I7SZjfxpdlUQaU7gMLy52UHGRu5+GN7Enfz8ERURnZK//DEs4864Al Uqg3Kr60ulzIN9VeNPNfgkG48Oq5JLFfmqHLuK5JGxNf8YXlyj75CINVO8OFWzs7 68QAogK0tcM2stG14I4nbi38YQ== -----END CERTIFICATE-----Generated at Thu Jun 4 04:19:23 2026 by rpki-client