$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: PXM+mGkWcy5TYLGAV1B3QiBCnKY0cynTY1OpUQ2a7vs= Subject key identifier: 0E:CA:8B:C8:D0:E1:AD:DB:32:D3:8E:36:B1:AB:29:26:7B:45:21:B5 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 0267 Signing time: Mon 01 Jun 2026 03:04:20 +0000 Manifest this update: Mon 01 Jun 2026 03:04:19 +0000 Manifest next update: Mon 08 Jun 2026 03:04:19 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: 1nqz+IzV2OZvEhpHGPGc1AI/vXygJGK5gT0QGiS0zqk=) 2: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: eUh3+0eNlTLz/GijzP1F9VFF/VuE/2wjuZ3Eqz98/Ac=) 3: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: xl+ZGGMMsQzXdRoVvAevwVbibKiAjAP36zHm8LVE2Zw=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: rqdiCtjrx/nRHSFBDJET2Hy4bfU3/bkdX125W59d+co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jun 1 03:04:19 2026 GMT Not After : Jun 8 03:04:19 2026 GMT Subject: CN=6a1cf6b4-9551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b8:c2:86:e8:4a:af:25:6d:21:00:ca:4f:50: 10:88:5b:a6:43:a6:1e:af:46:4c:6e:9e:dd:84:f9: cc:f6:15:0e:a6:3c:a8:53:5a:02:11:ef:15:ca:c4: 4f:5b:b9:65:73:f2:e6:cf:04:a8:3f:f6:79:35:94: 13:57:7d:bd:a3:7c:e6:a7:32:1c:10:d6:e3:0b:95: ed:2e:b8:00:31:83:89:06:34:c7:41:1d:95:3e:a9: 96:7d:f0:a2:df:a0:59:f5:53:06:b2:cd:ea:2b:3c: c5:81:cb:09:29:23:d7:ce:d6:ca:20:0f:88:20:af: c4:27:63:32:55:5f:8f:e8:49:6c:df:f7:c9:25:88: 97:9d:8e:d1:89:a6:ad:80:d8:f7:ae:f2:6e:f4:a2: e6:9b:d9:c8:86:ba:49:4f:b7:a5:d8:04:5e:71:e7: 3d:a4:4b:23:48:27:7d:13:0e:3e:6a:fc:81:22:45: b7:04:98:40:79:3a:81:76:c6:e8:b9:f2:68:fa:d6: 0a:d0:f3:db:98:9d:41:9e:f7:9c:ad:c3:0f:ae:44: 03:30:11:f9:7f:4c:48:32:f8:8f:44:28:12:e8:12: 21:95:cd:df:b2:36:64:24:a7:8a:57:4b:4e:8c:b6: 27:b2:91:39:48:cc:01:36:c8:b2:81:e1:05:04:a8: e4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CA:8B:C8:D0:E1:AD:DB:32:D3:8E:36:B1:AB:29:26:7B:45:21:B5 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a6:b0:d7:fd:91:cb:eb:ca:9b:35:63:01:ea:e0:ae:66:2c: 2d:ce:f7:1b:7f:05:ee:db:a9:19:18:76:34:49:49:dc:9b:15: b8:2d:dc:fd:b0:16:71:94:ab:1d:0f:9a:30:87:48:02:76:46: ce:b8:81:c7:0d:9b:0f:30:c0:67:09:f5:9c:59:1a:f3:40:7a: c5:46:3e:e7:67:7b:e2:36:0d:f1:57:39:fd:aa:8b:53:84:64: 47:9d:75:e8:d3:23:2a:75:11:1a:b8:5a:3a:74:d9:a9:fa:52: 06:08:fa:fa:c6:ad:df:02:0d:93:a7:d6:20:a1:14:d6:96:1c: 1a:3c:f8:65:2a:58:47:89:6e:93:16:c1:95:a6:4d:e7:1f:2d: 6d:6e:ba:99:d4:fe:67:f0:94:ce:6c:66:94:93:84:60:c3:1d: cb:fb:5a:33:7b:33:57:d9:98:c2:96:62:47:60:0c:6a:8a:51: 0b:2b:5b:5a:68:0f:78:e5:e7:ef:3c:d5:f5:48:fa:0a:41:d4: 00:da:8c:12:cb:45:5b:e7:28:00:b8:24:ca:cd:39:2d:0c:27: 1b:b6:ad:75:dc:a1:99:40:2a:6a:18:77:33:fd:a8:7d:3c:cd: 42:8d:05:b5:7e:29:56:14:91:55:b9:0a:da:e9:ad:24:f9:62: 24:16:d8:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjYwNjAxMDMwNDE5WhcNMjYwNjA4MDMwNDE5WjAYMRYwFAYD VQQDEw02YTFjZjZiNC05NTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLjChuhKryVtIQDKT1AQiFumQ6Yer0ZMbp7dhPnM9hUOpjyoU1oCEe8VysRP W7llc/LmzwSoP/Z5NZQTV329o3zmpzIcENbjC5XtLrgAMYOJBjTHQR2VPqmWffCi 36BZ9VMGss3qKzzFgcsJKSPXztbKIA+IIK/EJ2MyVV+P6Els3/fJJYiXnY7Riaat gNj3rvJu9KLmm9nIhrpJT7el2ARecec9pEsjSCd9Ew4+avyBIkW3BJhAeTqBdsbo ufJo+tYK0PPbmJ1BnvecrcMPrkQDMBH5f0xIMviPRCgS6BIhlc3fsjZkJKeKV0tO jLYnspE5SMwBNsiygeEFBKjkXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7Ki8jQ 4a3bMtOONrGrKSZ7RSG1MB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM6aw1/2Ry+vKmzVjAergrmYsLc73G38F7tupGRh2NElJ3JsVuC3c/bAWcZSr HQ+aMIdIAnZGzriBxw2bDzDAZwn1nFka80B6xUY+52d74jYN8Vc5/aqLU4RkR511 6NMjKnURGrhaOnTZqfpSBgj6+sat3wINk6fWIKEU1pYcGjz4ZSpYR4lukxbBlaZN 5x8tbW66mdT+Z/CUzmxmlJOEYMMdy/taM3szV9mYwpZiR2AMaopRCytbWmgPeOXn 7zzV9Uj6CkHUANqMEstFW+coALgkys05LQwnG7atddyhmUAqahh3M/2ofTzNQo0F tX4pVhSRVbkK2umtJPliJBbY+g== -----END CERTIFICATE-----Generated at Tue Jun 2 22:01:45 2026 by rpki-client