$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft File: ixqAZb6Iqmwbo_7bVOCH59KttN4.mft (raw, json) Hash identifier: aDA6OsQx54/ZdK20buUCxsFO63vLvK+mAVqyZC7x0x8= Subject key identifier: 19:2B:5A:C8:BD:0A:78:A2:15:7C:1B:E2:BE:AD:D0:B9:A7:AD:9B:12 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft Manifest number: 01AA Signing time: Mon 01 Jun 2026 04:52:10 +0000 Manifest this update: Mon 01 Jun 2026 04:52:10 +0000 Manifest next update: Mon 08 Jun 2026 04:52:10 +0000 Files and hashes: 1: ixqAZb6Iqmwbo_7bVOCH59KttN4.crl (hash: lqizdF2WybvPJTUOIF7h+diiiP8AWCE2YGldCBtvIZQ=) 2: 4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa (hash: m02khT/jg2hbvP72RR7nK1qweNEQkqkW4mCPiNuzwrw=) 3: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (hash: KXSh6prRPhPWK5BnqXhTsFwQImo2BvM4I7HOo4Rrn/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Jun 1 04:52:10 2026 GMT Not After : Jun 8 04:52:10 2026 GMT Subject: CN=6a1d0ffa-b8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c6:55:3a:7f:8f:1a:ea:23:ae:6f:77:4f:ac: 41:a0:7c:a0:86:d7:d5:e9:88:d3:32:99:96:11:7b: 9d:1d:15:df:31:1c:dc:3f:4b:60:c5:8a:be:bb:ae: 33:10:9c:2e:37:d2:90:b9:cc:c6:94:1e:b9:1b:f1: 37:b3:70:bb:ee:cb:d3:d1:80:0c:c7:f4:d1:32:f8: f0:a7:66:1b:d8:14:da:a7:56:31:cf:cf:98:d3:d2: a0:d2:34:03:66:91:d0:ad:17:0c:b2:c2:13:03:40: e3:73:66:0e:11:e6:a8:61:cc:50:b1:64:54:ce:f0: 07:f9:a8:fc:46:73:55:80:22:16:b0:9f:8c:08:91: 5f:12:94:18:7f:6d:a5:7c:88:c3:30:1b:b9:fb:91: 6d:5b:3e:7a:55:c9:a8:ae:f0:67:9a:a3:ce:8a:aa: 8f:92:5f:f3:e7:e9:c8:a7:ef:73:ad:ad:d0:16:9b: a7:db:5f:87:30:e7:d2:7d:03:12:ba:86:14:6e:51: f9:6e:8a:6c:95:8a:53:52:b0:08:39:0a:51:d3:96: dc:86:bd:ae:75:93:2e:1c:2a:50:a2:51:64:c3:62: c3:1e:3b:ce:3b:07:2a:7a:7c:c4:f2:c2:90:80:3e: fe:d4:71:ea:63:4d:d2:2a:0c:8b:b5:49:d8:4e:2e: e4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:2B:5A:C8:BD:0A:78:A2:15:7C:1B:E2:BE:AD:D0:B9:A7:AD:9B:12 X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:8a:15:bb:d4:e7:9e:57:77:57:01:22:92:a9:cd:1b:7c:3b: 54:84:47:d2:b4:b4:cc:b6:4f:dd:10:d2:90:5f:9b:a0:0b:cc: c3:dc:3e:b5:d1:74:62:af:13:f8:27:9f:dd:f2:13:48:30:95: df:14:9c:0e:f5:99:c1:74:8b:6f:98:10:9a:57:dd:a4:57:47: a7:9f:6b:d2:3b:32:a0:8a:be:06:38:56:33:5f:61:de:95:83: b1:ef:46:b1:4e:ab:01:a7:9c:c3:42:8f:eb:97:54:0b:71:21: ed:6b:2a:fc:56:7a:c3:a3:bf:eb:0e:b7:ea:eb:62:55:8c:f9: 40:dd:05:c7:7f:37:b0:12:0c:4e:b5:9d:0e:e5:ba:86:cb:db: 16:ca:f9:13:f6:b4:44:35:92:f0:3f:ba:b4:18:2a:10:9f:ce: ef:93:9b:32:14:05:af:08:77:d1:06:f6:af:b4:b5:36:6e:1c: b8:66:61:df:f0:a1:bb:a6:be:3d:f0:bb:2c:b1:9d:4d:d5:8f: 4a:31:33:d8:65:c4:f5:7c:8e:f7:f3:e5:b1:34:cd:64:a0:75: 86:3f:42:9b:13:0f:46:5d:59:dc:0e:77:2a:4c:d5:94:bc:47: 1e:8e:4c:c2:b0:e7:29:75:6d:55:40:10:54:fb:e7:ef:d5:86: 3e:c6:ef:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjYwNjAxMDQ1MjEwWhcNMjYwNjA4MDQ1MjEwWjAYMRYwFAYD VQQDEw02YTFkMGZmYS1iOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAksZVOn+PGuojrm93T6xBoHyghtfV6YjTMpmWEXudHRXfMRzcP0tgxYq+u64z EJwuN9KQuczGlB65G/E3s3C77svT0YAMx/TRMvjwp2Yb2BTap1Yxz8+Y09Kg0jQD ZpHQrRcMssITA0Djc2YOEeaoYcxQsWRUzvAH+aj8RnNVgCIWsJ+MCJFfEpQYf22l fIjDMBu5+5FtWz56VcmorvBnmqPOiqqPkl/z5+nIp+9zra3QFpun21+HMOfSfQMS uoYUblH5bopslYpTUrAIOQpR05bchr2udZMuHCpQolFkw2LDHjvOOwcqenzE8sKQ gD7+1HHqY03SKgyLtUnYTi7kzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkrWsi9 CniiFXwb4r6t0LmnrZsSMB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzA2OC9ENzdCOUQ2NkQ1QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFt d2JvXzdiVk9DSDU5S3R0TjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC4oVu9Tnnld3VwEikqnNG3w7VIRH0rS0zLZP3RDSkF+boAvMw9w+tdF0Yq8T +Cef3fITSDCV3xScDvWZwXSLb5gQmlfdpFdHp59r0jsyoIq+BjhWM19h3pWDse9G sU6rAaecw0KP65dUC3Eh7Wsq/FZ6w6O/6w636utiVYz5QN0Fx383sBIMTrWdDuW6 hsvbFsr5E/a0RDWS8D+6tBgqEJ/O75ObMhQFrwh30Qb2r7S1Nm4cuGZh3/Chu6a+ PfC7LLGdTdWPSjEz2GXE9XyO9/PlsTTNZKB1hj9CmxMPRl1Z3A53KkzVlLxHHo5M wrDnKXVtVUAQVPvn79WGPsbv0g== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:46 2026 by rpki-client