$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: pYOWxoUBkIs7ANPC90imsCbf88H03VmuUsKDRGrS6zA= Subject key identifier: 54:DD:C2:9C:63:5B:67:E8:81:30:46:40:E7:ED:48:53:BC:FD:52:78 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0E3E Signing time: Tue 02 Jun 2026 17:51:30 +0000 Manifest this update: Tue 02 Jun 2026 17:51:29 +0000 Manifest next update: Tue 09 Jun 2026 17:51:29 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: 1W6aK9CS6ox1wu/uBtZNdoA32NTL+2lyzWQN9ZoOfTQ=) 2: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: V7vJC1rGtCuOdSFWDJjdd3JhuVIPp/Zsx063dJpSpzo=) 3: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: R/iJ4c5PH31y7CSM0LznhAJ3uqMaJ3657UNaVBCq6Pk=) 4: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: GS10eEt1MCcAl1eDM0DD66Q/CuCpMh/GfO+nM5nY1Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 17:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3719 (0xe87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Jun 2 17:51:29 2026 GMT Not After : Jun 9 17:51:29 2026 GMT Subject: CN=6a1f1821-5fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:21:b8:7f:33:e3:a3:cd:26:34:33:d1:af:09: 37:e6:d3:01:29:81:71:8f:0a:25:88:dd:c3:10:b3: c3:27:7d:72:75:4c:51:70:5b:e3:9e:ae:2f:b8:59: a0:2d:de:8a:7d:53:b2:00:57:d8:84:b9:f6:b9:58: 3c:47:df:9b:8d:42:6e:63:11:8e:62:06:14:38:3e: 54:02:59:10:d6:1f:9b:90:1d:0f:bd:49:dd:6f:53: 74:a2:c3:fd:e0:2a:5d:9c:f9:50:39:cc:93:9f:63: 00:8d:53:79:77:60:48:9f:f5:b2:8c:ab:28:49:ca: 8c:40:cd:f8:69:c4:1f:37:e0:98:2a:a7:fc:2f:6c: 24:29:6f:0a:30:1f:fd:ec:7a:b3:5b:f1:ac:69:89: 73:42:01:8e:c3:4a:6f:f7:71:92:de:57:2d:ed:57: fc:44:5a:4f:39:f3:de:20:ae:46:75:f9:f6:c1:4b: 5f:a4:81:45:7f:f6:fe:c9:15:96:50:1d:86:f7:b2: 0e:01:6b:ed:43:c3:85:6b:1b:19:9b:52:1a:6a:10: 10:3f:93:89:e2:15:f4:a3:aa:47:8f:99:85:57:fb: ea:69:6e:e0:ea:7c:84:09:02:18:1e:a2:05:93:ce: f6:45:88:e5:dd:5a:97:6c:88:4e:02:c6:a4:ea:9e: 48:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DD:C2:9C:63:5B:67:E8:81:30:46:40:E7:ED:48:53:BC:FD:52:78 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ca:73:77:a8:0f:f1:a5:4e:c2:24:a2:fc:af:af:b3:8a:c8: 44:be:b3:fa:26:c6:dc:b4:7c:3a:b3:24:c3:49:a1:fa:12:11: 32:13:a8:60:98:b6:38:31:45:d4:bb:e9:9a:45:89:80:6a:80: 6c:e6:45:c8:c4:b9:59:06:53:2b:83:e0:38:3a:a0:e0:0a:ba: 8b:f4:a7:31:33:f1:1b:ae:71:45:84:2f:70:ae:bd:3b:f2:20: db:99:33:52:9a:29:56:6b:0e:a2:0a:cf:62:20:f9:42:a0:46: 16:f3:d6:d9:b1:32:3b:9a:cc:7a:1c:1d:e8:1d:9e:c9:44:be: 8c:c4:1a:b6:a0:fb:29:99:0c:32:2d:5e:0b:95:01:7f:44:11: 47:d2:32:df:4c:16:e1:68:d5:5d:ea:e0:1c:d0:4c:b6:ea:e0: 2b:6c:d8:4c:2a:7f:94:d3:0f:05:e3:36:0f:56:64:10:34:dc: 79:cd:31:28:59:ad:ae:0f:9f:1c:c3:0e:db:22:93:af:6c:a4: 33:fd:9e:56:27:6e:3d:80:20:ba:6e:c7:f1:9d:df:c8:1b:8d: f3:25:76:7e:44:d1:6f:ff:d4:74:c8:9e:80:4b:3e:39:36:55: b3:ee:37:75:32:4d:89:fb:81:bf:e0:d1:84:48:72:a3:5d:7d: 67:59:b5:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwNjAyMTc1MTI5WhcNMjYwNjA5MTc1MTI5WjAYMRYwFAYD VQQDEw02YTFmMTgyMS01ZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCG4fzPjo80mNDPRrwk35tMBKYFxjwoliN3DELPDJ31ydUxRcFvjnq4vuFmg Ld6KfVOyAFfYhLn2uVg8R9+bjUJuYxGOYgYUOD5UAlkQ1h+bkB0PvUndb1N0osP9 4CpdnPlQOcyTn2MAjVN5d2BIn/WyjKsoScqMQM34acQfN+CYKqf8L2wkKW8KMB/9 7HqzW/GsaYlzQgGOw0pv93GS3lct7Vf8RFpPOfPeIK5Gdfn2wUtfpIFFf/b+yRWW UB2G97IOAWvtQ8OFaxsZm1IaahAQP5OJ4hX0o6pHj5mFV/vqaW7g6nyECQIYHqIF k872RYjl3VqXbIhOAsak6p5INQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFTdwpxj W2fogTBGQOftSFO8/VJ4MB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAispzd6gP8aVOwiSi/K+vs4rIRL6z+ibG3LR8OrMkw0mh+hIRMhOoYJi2ODFF 1LvpmkWJgGqAbOZFyMS5WQZTK4PgODqg4Aq6i/SnMTPxG65xRYQvcK69O/Ig25kz UpopVmsOogrPYiD5QqBGFvPW2bEyO5rMehwd6B2eyUS+jMQatqD7KZkMMi1eC5UB f0QRR9Iy30wW4WjVXergHNBMturgK2zYTCp/lNMPBeM2D1ZkEDTcec0xKFmtrg+f HMMO2yKTr2ykM/2eViduPYAgum7H8Z3fyBuN8yV2fkTRb//UdMiegEs+OTZVs+43 dTJNifuBv+DRhEhyo119Z1m1sQ== -----END CERTIFICATE-----Generated at Thu Jun 4 12:25:16 2026 by rpki-client