$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: S7P/a6k+3sgXcn6K1xv0m2MnpT6vCO74PdZqr7RMZxQ= Subject key identifier: 42:52:3A:A6:AA:D8:5C:CA:E5:CD:BF:11:D9:EF:69:01:7E:19:45:7F Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 0146 Signing time: Mon 01 Jun 2026 06:04:16 +0000 Manifest this update: Mon 01 Jun 2026 06:04:15 +0000 Manifest next update: Mon 08 Jun 2026 06:04:15 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: HGaFIezd4NTESESylhohi2eLa/N9j71USVV+gZzXq68=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: /pgTpJCeELO0vx7ey0ylXFhJZdDNJrts1Zcttp5czrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Jun 1 06:04:15 2026 GMT Not After : Jun 8 06:04:15 2026 GMT Subject: CN=6a1d20e0-ef2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:eb:d0:cc:7c:2f:be:51:c2:77:01:c7:d8:f6: 11:1d:5b:91:35:0c:55:0b:2b:70:35:f3:dd:a7:8f: a1:4a:61:01:f1:d1:39:0a:06:d0:6d:39:4e:b1:54: fd:38:3e:4b:6e:f8:82:82:46:44:b2:08:b7:b4:2d: 26:48:d2:9c:17:6f:2e:10:d0:c5:06:04:9c:bf:da: da:32:5e:4d:38:d3:2e:58:cc:0e:6d:c2:d3:0b:97: 72:dd:c6:77:85:62:14:a9:ac:72:88:dc:ec:a3:e4: 9c:0b:08:82:48:a3:f7:e6:66:3f:df:c4:99:6e:93: 9d:a6:56:03:45:d4:f3:f9:f9:92:f4:9b:64:cc:dd: 83:a1:a5:4c:6e:51:ee:ac:f6:71:45:90:2c:f2:cd: 2b:60:3b:16:8d:5d:c5:74:bb:1e:bc:cd:cf:89:64: 59:89:54:87:f8:8f:18:9a:42:01:05:05:63:ea:97: a2:69:dd:2a:71:76:8c:02:f9:ff:d6:36:03:f4:8e: f7:ca:d6:24:06:02:0e:05:ce:79:33:a6:63:75:ba: d6:d0:ce:09:ca:97:3a:2c:0e:a3:4a:46:97:f5:a0: a0:f8:97:12:ce:9d:7e:26:55:23:86:6f:13:b2:9e: bc:53:8b:c5:8e:36:e6:2f:65:b1:c8:c5:02:a1:fe: 39:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:52:3A:A6:AA:D8:5C:CA:E5:CD:BF:11:D9:EF:69:01:7E:19:45:7F X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e8:65:54:8c:6d:11:e2:45:df:2c:34:be:b8:46:4e:2c:ca: 1b:f2:82:7e:42:ff:06:0d:bc:db:44:ec:4b:27:8c:3c:dd:bb: 51:5a:14:89:e1:b7:c3:d3:f2:f9:0d:ba:11:6a:1a:2c:28:3f: 19:b6:54:71:d7:67:a9:13:de:f9:c9:f3:66:76:a3:39:04:4a: 89:92:dc:bf:a2:b5:dd:49:4f:43:34:6a:b7:e0:8a:94:b0:99: 2b:ca:e3:2d:d1:ba:29:a4:be:12:be:5a:dd:72:cd:2d:4c:a7: 33:6e:1d:a2:70:a1:0f:86:cb:b4:49:97:d6:a1:84:27:0d:00: ab:bb:b5:bb:6f:56:8a:d9:f8:77:33:b2:34:af:5e:d2:5e:e5: 11:80:a8:08:9f:f4:61:46:de:ec:0c:26:2d:26:be:64:a7:02: f6:60:32:8b:cc:77:b9:11:7a:7b:73:58:99:8c:8b:c1:bd:88: 04:ca:4d:91:f2:d0:64:cd:7d:d2:42:ec:cc:0b:a2:13:92:49: a0:7d:74:07:26:e2:e1:11:b5:fd:73:da:ba:55:dc:c2:53:56: b0:b8:ed:64:9e:f8:b1:e9:9d:33:ed:52:c2:32:75:f0:e9:d7: 71:90:cd:7f:7e:dd:b1:bf:15:91:0a:fc:54:1a:a1:b2:ad:1c: 44:b4:9c:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjYwNjAxMDYwNDE1WhcNMjYwNjA4MDYwNDE1WjAYMRYwFAYD VQQDEw02YTFkMjBlMC1lZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsevQzHwvvlHCdwHH2PYRHVuRNQxVCytwNfPdp4+hSmEB8dE5CgbQbTlOsVT9 OD5LbviCgkZEsgi3tC0mSNKcF28uENDFBgScv9raMl5NONMuWMwObcLTC5dy3cZ3 hWIUqaxyiNzso+ScCwiCSKP35mY/38SZbpOdplYDRdTz+fmS9JtkzN2DoaVMblHu rPZxRZAs8s0rYDsWjV3FdLsevM3PiWRZiVSH+I8YmkIBBQVj6peiad0qcXaMAvn/ 1jYD9I73ytYkBgIOBc55M6ZjdbrW0M4Jypc6LA6jSkaX9aCg+JcSzp1+JlUjhm8T sp68U4vFjjbmL2WxyMUCof45mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEJSOqaq 2FzK5c2/EdnvaQF+GUV/MB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEuhlVIxtEeJF3yw0vrhGTizKG/KCfkL/Bg2820TsSyeMPN27UVoUieG3w9Py +Q26EWoaLCg/GbZUcddnqRPe+cnzZnajOQRKiZLcv6K13UlPQzRqt+CKlLCZK8rj LdG6KaS+Er5a3XLNLUynM24donChD4bLtEmX1qGEJw0Aq7u1u29Witn4dzOyNK9e 0l7lEYCoCJ/0YUbe7AwmLSa+ZKcC9mAyi8x3uRF6e3NYmYyLwb2IBMpNkfLQZM19 0kLszAuiE5JJoH10Bybi4RG1/XPaulXcwlNWsLjtZJ74semdM+1SwjJ18OnXcZDN f37dsb8VkQr8VBqhsq0cRLSc5w== -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:59 2026 by rpki-client