$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: 6H4enWVsh/IXqC/oQYZkfAUJ+q4i22O6YMJTsHoKN/M= Subject key identifier: 54:3C:5B:C8:AC:30:74:A3:DC:F9:DA:F5:AB:08:3E:A5:1D:C0:58:12 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 0855 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 084C Signing time: Tue 02 Jun 2026 20:54:35 +0000 Manifest this update: Tue 02 Jun 2026 20:54:35 +0000 Manifest next update: Tue 09 Jun 2026 20:54:35 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: PEAH6QAqTL/GGlGwp1LDRt/BDcLSz/ktgfjkKlQBTzg=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: 1FYTa+b4b7Loa31EgzeXR7TOb6YS6HpedmRkzfbLWn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 20:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Jun 2 20:54:35 2026 GMT Not After : Jun 9 20:54:35 2026 GMT Subject: CN=6a1f430b-3ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b8:12:06:9b:38:ce:9b:62:42:0d:4e:c6:4d: a2:67:ce:3c:e0:a4:e4:25:5a:c9:27:28:59:93:1e: 4e:17:0c:49:c1:af:64:50:d8:20:c4:90:80:74:8c: d0:c7:ab:c1:1e:da:72:f2:78:3a:6d:44:06:82:70: a7:b6:99:11:2b:f2:cb:53:e1:29:0e:cd:1d:79:c5: 33:2b:e1:61:73:98:e4:37:a8:2b:f3:f7:84:05:60: 61:93:5f:9e:fa:d9:04:c2:68:44:42:54:55:8d:a7: 55:5c:ec:85:7c:b0:87:72:df:df:33:99:f2:5e:06: 34:a8:26:59:bb:bd:7d:7c:fb:9d:8d:ea:a4:68:8d: 41:39:a4:06:23:a2:70:7d:38:03:f1:4a:d3:99:f3: 45:5a:cc:4b:3d:cb:45:da:3d:c2:e5:18:48:06:a0: 79:ff:ce:5b:82:8c:5a:7e:36:d6:95:07:d9:7f:42: c6:29:e4:af:75:a9:7c:9b:35:61:14:53:af:ef:3e: 2f:1c:09:ae:19:76:ef:6a:c0:01:ec:11:22:13:a0: c1:93:79:1d:ae:88:58:35:fa:f3:eb:d6:36:14:7f: a4:8e:17:8d:81:7b:91:e4:3c:fe:d6:99:f4:3a:d1: 25:29:cd:70:01:8d:f0:df:52:4d:af:41:a3:5a:87: 0c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3C:5B:C8:AC:30:74:A3:DC:F9:DA:F5:AB:08:3E:A5:1D:C0:58:12 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:9e:df:66:d7:a1:8a:53:ac:fb:db:5e:8e:94:21:eb:26:f4: ce:7d:7a:2d:46:4e:b5:88:37:53:ac:2d:23:68:d1:6d:84:42: 69:bd:cc:e7:ad:38:65:51:96:4a:a2:22:83:53:d5:16:87:6a: 9d:86:c8:5c:ff:e1:64:e9:53:ee:a4:28:ad:c1:9e:d6:26:23: 31:4e:46:b6:c2:d0:35:32:00:0e:b5:4c:bc:77:18:c2:e0:0e: 41:81:ae:bc:7d:01:8d:7c:b4:eb:5c:93:f0:e6:aa:da:f3:5e: f4:33:52:2b:f5:4f:ba:73:dc:c2:c2:4c:9b:ff:e2:77:d5:6e: 94:82:29:42:34:94:9d:ec:4b:a9:bf:93:7e:88:0f:ce:a1:cb: 1c:54:d6:d4:c3:ed:38:61:2a:c2:25:c2:9b:ff:70:80:08:51: a0:93:99:73:74:59:f8:17:a3:73:37:d2:9e:c0:bb:cf:7a:5e: 91:ce:3d:9f:5d:de:84:a7:9d:93:19:2c:0b:ad:e9:73:7b:f1: 38:e1:98:08:84:4e:fe:71:bf:d6:8f:b2:4d:d4:9c:50:0c:27: a5:2e:e5:53:c5:81:52:ee:03:d1:aa:2c:c3:53:79:89:68:7d: cc:d8:03:9d:bb:c7:50:99:68:38:76:ee:14:83:90:32:5e:0d: dc:27:1b:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjYwNjAyMjA1NDM1WhcNMjYwNjA5MjA1NDM1WjAYMRYwFAYD VQQDEw02YTFmNDMwYi0zY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rgSBps4zptiQg1Oxk2iZ8484KTkJVrJJyhZkx5OFwxJwa9kUNggxJCAdIzQ x6vBHtpy8ng6bUQGgnCntpkRK/LLU+EpDs0decUzK+Fhc5jkN6gr8/eEBWBhk1+e +tkEwmhEQlRVjadVXOyFfLCHct/fM5nyXgY0qCZZu719fPudjeqkaI1BOaQGI6Jw fTgD8UrTmfNFWsxLPctF2j3C5RhIBqB5/85bgoxafjbWlQfZf0LGKeSvdal8mzVh FFOv7z4vHAmuGXbvasAB7BEiE6DBk3kdrohYNfrz69Y2FH+kjheNgXuR5Dz+1pn0 OtElKc1wAY3w31JNr0GjWocMcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFQ8W8is MHSj3Pna9asIPqUdwFgSMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAip7fZtehilOs+9tejpQh6yb0zn16LUZOtYg3U6wtI2jRbYRCab3M5604ZVGW SqIig1PVFodqnYbIXP/hZOlT7qQorcGe1iYjMU5GtsLQNTIADrVMvHcYwuAOQYGu vH0BjXy061yT8Oaq2vNe9DNSK/VPunPcwsJMm//id9VulIIpQjSUnexLqb+TfogP zqHLHFTW1MPtOGEqwiXCm/9wgAhRoJOZc3RZ+BejczfSnsC7z3pekc49n13ehKed kxksC63pc3vxOOGYCIRO/nG/1o+yTdScUAwnpS7lU8WBUu4D0aosw1N5iWh9zNgD nbvHUJloOHbuFIOQMl4N3CcbKg== -----END CERTIFICATE-----Generated at Thu Jun 4 13:05:31 2026 by rpki-client