$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: tbmJ4ZEm1vWdjr7bvdUWfqr5M4sTz+wvlVYOvTmos7Q= Subject key identifier: FE:A3:02:7F:75:1D:C4:11:EC:91:17:A0:A2:D7:C9:0F:4D:9A:1D:42 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 364D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 35BF Signing time: Sat 20 Jun 2026 14:16:24 +0000 Manifest this update: Sat 20 Jun 2026 14:16:24 +0000 Manifest next update: Sat 27 Jun 2026 14:16:24 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: eGyuD+8YHybt3jN6Lf8GNAdrtukWI6ipOSmf0LTJY1Q=) 2: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: US7l9IRW6KnysaR3hgfIHQKP61jxpaRsUq+BQajlvlE=) 3: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: Zl7CL1hILK98z1K1OQnmQBFBX3AF5k+q1EWP8nnTBiE=) 4: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: 0TLVORl6wSPXD4zN0o2eNo/c7mH0Sa6LVUUSVrU3gGs=) 5: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: oS/2Yr0f0AX3IY6Qw0kprzC/haS0V2Vl/e9gsEC9t0o=) 6: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: y6ZiKIpbO8nVe1RhgWjLdE8kQETpbK+AjZQf/Ewa3Fk=) 7: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: 13OCzHbeP84SVts3fLFM8ezvX9wYG+xk9oztS8IQ/oo=) 8: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: 46CC9LcyzFfBkRedCj8zONrcqyJIMjuxJScGt32qKqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 14:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13901 (0x364d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Jun 20 14:16:24 2026 GMT Not After : Jun 27 14:16:24 2026 GMT Subject: CN=6a36a0b8-431d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b6:5b:ed:5f:c7:14:1c:2d:db:32:eb:0a:24: de:35:2c:c9:a6:53:1b:64:41:6b:75:f1:e0:d8:ff: 38:e2:66:01:6e:f8:2f:8d:af:2f:43:ed:e8:9b:16: ca:08:15:9d:6a:27:dc:68:ff:2d:a8:4b:d1:12:35: 65:a9:74:4f:77:16:ae:41:30:eb:a8:0b:3d:ca:fc: f6:36:36:fd:92:ca:c4:a2:ae:28:97:60:e3:56:b4: ba:18:eb:6e:4a:03:c1:35:ed:b0:14:bd:b4:fe:ba: 3a:2f:4f:03:c1:db:d3:3f:21:88:ff:8c:3d:4c:9a: 5d:99:03:db:80:47:24:ed:55:30:91:8d:c6:76:ed: 29:19:bd:79:1a:ca:c6:85:73:e1:1d:58:ca:a0:d7: da:c6:cb:88:28:f4:53:46:03:bd:a6:62:4a:51:2f: de:90:a9:4d:56:b3:b0:92:d9:5d:48:f3:84:30:3d: 57:dc:1c:5d:5e:c5:98:e5:37:af:53:d9:68:2f:4b: e9:52:e0:5f:ee:51:b5:8f:a0:cf:c2:28:ce:2a:1a: 22:ba:48:ba:26:f0:74:d6:d9:a4:ae:e0:ba:33:57: 30:3f:59:91:8f:83:7a:aa:68:c3:d8:47:71:21:91: fa:5c:e4:be:3b:d9:0e:46:60:5e:f7:ad:8d:f7:6f: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A3:02:7F:75:1D:C4:11:EC:91:17:A0:A2:D7:C9:0F:4D:9A:1D:42 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:f0:3e:40:cd:18:fa:7a:0a:e2:c9:0f:4c:04:c7:19:39:99: 76:cc:f5:3c:45:b0:9f:08:8a:3e:5a:1b:fa:0c:4b:50:36:39: d1:58:dc:84:df:37:fd:bc:4b:2c:13:ec:5d:f3:4f:54:34:cb: 4e:a5:04:2a:48:66:9e:4c:f9:38:6e:9f:6a:16:42:c6:ee:7d: 4e:08:8d:27:77:38:22:de:de:ee:e9:1b:65:dd:47:a7:94:b4: 01:fd:95:69:3e:b2:7d:20:fa:34:0f:68:66:83:aa:bd:57:a0: 1a:4d:f4:ac:26:fa:42:55:76:6b:b6:40:ef:8a:d0:cd:d1:76: de:d4:35:16:e2:f4:cc:dc:b4:68:cf:7d:94:71:cf:75:4a:f4: f9:7b:d4:fe:54:88:c9:19:c9:4e:81:49:45:50:eb:0f:fd:65: 33:c9:fa:ea:3a:96:6d:1f:f7:0a:91:b7:15:a9:6c:62:46:9c: f7:51:f7:b3:95:6a:f8:29:c4:c6:18:6d:b8:5a:8f:7d:10:3c: 5e:e2:27:46:f2:d1:8c:ca:e6:11:3b:36:f1:c5:17:53:32:22: 35:4a:4c:76:f0:01:0c:b4:d2:df:66:71:11:5e:de:1d:9b:c7: bd:78:db:90:6d:d2:48:e2:9e:ef:89:cb:9f:d7:dc:09:ed:0b: e4:31:ba:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwNjIwMTQxNjI0WhcNMjYwNjI3MTQxNjI0WjAYMRYwFAYD VQQDEw02YTM2YTBiOC00MzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrZb7V/HFBwt2zLrCiTeNSzJplMbZEFrdfHg2P844mYBbvgvja8vQ+3omxbK CBWdaifcaP8tqEvREjVlqXRPdxauQTDrqAs9yvz2Njb9ksrEoq4ol2DjVrS6GOtu SgPBNe2wFL20/ro6L08DwdvTPyGI/4w9TJpdmQPbgEck7VUwkY3Gdu0pGb15GsrG hXPhHVjKoNfaxsuIKPRTRgO9pmJKUS/ekKlNVrOwktldSPOEMD1X3BxdXsWY5Tev U9loL0vpUuBf7lG1j6DPwijOKhoiuki6JvB01tmkruC6M1cwP1mRj4N6qmjD2Edx IZH6XOS+O9kORmBe962N929RDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP6jAn91 HcQR7JEXoKLXyQ9Nmh1CMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArvA+QM0Y+noK4skPTATHGTmZdsz1PEWwnwiKPlob+gxLUDY50VjchN83/bxL LBPsXfNPVDTLTqUEKkhmnkz5OG6fahZCxu59TgiNJ3c4It7e7ukbZd1Hp5S0Af2V aT6yfSD6NA9oZoOqvVegGk30rCb6QlV2a7ZA74rQzdF23tQ1FuL0zNy0aM99lHHP dUr0+XvU/lSIyRnJToFJRVDrD/1lM8n66jqWbR/3CpG3FalsYkac91H3s5Vq+CnE xhhtuFqPfRA8XuInRvLRjMrmETs28cUXUzIiNUpMdvABDLTS32ZxEV7eHZvHvXjb kG3SSOKe74nLn9fcCe0L5DG6gQ== -----END CERTIFICATE-----Generated at Sun Jun 21 17:03:38 2026 by rpki-client