$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: kOrYJ/eIeCWMpj9OTxaJlEpYwnm/EwSMI/+IfWJmGhU= Subject key identifier: BE:55:D8:CC:62:30:00:44:F3:D2:5B:08:BF:EB:22:88:BE:C0:EC:74 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: 012C Signing time: Mon 01 Jun 2026 06:26:04 +0000 Manifest this update: Mon 01 Jun 2026 06:26:04 +0000 Manifest next update: Mon 08 Jun 2026 06:26:04 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: ML4pIsuc04dQIIJuqKhGTM/Z/3hwp6kDkx8/1zKFtwQ=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: aIh23/3y8xgm3k9QGKPnGbqB42NXH2OLUXREX9l30Z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Jun 1 06:26:04 2026 GMT Not After : Jun 8 06:26:04 2026 GMT Subject: CN=6a1d25fc-1739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:32:cb:64:05:36:f7:d3:4e:48:40:4c:57: b9:cb:1d:0b:dd:9c:46:da:29:e4:65:a3:c7:85:b3: 4e:cc:30:a2:7b:7d:00:f3:ee:3b:e2:3f:d9:10:b3: 02:f6:38:5e:fa:52:08:c2:b1:47:bd:b7:09:9d:db: 95:e0:e4:4e:fb:e2:d2:b8:73:5a:e1:14:0b:53:81: 35:a6:77:04:d0:40:9a:dd:ea:04:25:41:46:b0:bc: 19:75:30:25:e7:ca:1a:16:c6:ba:86:fb:22:6c:2d: e9:c4:08:3e:8d:9b:86:c7:a3:23:8e:21:43:ab:95: da:cf:f5:62:0c:45:82:bd:8f:af:ef:4c:7b:d9:88: 96:72:a7:e0:27:52:86:83:42:7b:fe:68:42:11:ee: 40:77:8c:df:97:3b:d3:f3:06:43:12:7e:7f:0e:56: 36:48:fb:a9:5a:54:a3:15:9f:ff:a0:63:d5:86:b6: fe:de:c4:40:d7:60:42:d8:df:6d:db:1e:57:2b:43: ea:15:94:4f:24:4e:32:64:d2:b4:e5:ca:bd:da:03: f6:a8:2b:10:fb:c9:cf:45:e4:4d:b4:fe:b6:75:f4: eb:0c:70:25:f0:c0:ff:20:4c:1b:eb:1f:b6:15:b4: 2f:96:43:ad:37:6f:79:4d:0b:84:55:00:0c:b6:d3: a0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:55:D8:CC:62:30:00:44:F3:D2:5B:08:BF:EB:22:88:BE:C0:EC:74 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:37:65:d8:56:a9:60:9d:f3:a5:c1:32:b8:6e:9f:7a:0a:16: 47:ad:49:b3:e4:d3:91:cf:c9:e7:96:0a:3f:4d:72:71:5f:5f: 58:97:4d:13:30:ab:b7:8b:52:fa:2c:1a:f2:9c:d1:c7:a7:eb: 4c:5a:6d:55:1b:32:08:c9:d5:0e:f7:90:a3:92:e4:be:76:3a: 06:2e:e2:c6:1e:9c:20:f5:f1:fd:e0:9a:26:64:a6:ab:28:ee: 4f:2f:a1:96:61:c3:09:7e:ea:fe:38:2d:8a:95:34:d7:fb:df: 7c:91:d4:6a:4e:a8:13:ee:81:6c:40:33:06:b4:7c:2f:84:65: b6:bc:d3:4b:c1:92:f7:67:02:a2:40:3f:a5:c5:4e:34:f3:cb: 76:08:f8:69:fc:bd:a6:b5:94:d3:d8:ee:e2:36:b5:4c:a9:33: 71:74:17:ba:4a:17:d5:ac:d1:b3:a8:9b:d7:af:4d:ab:01:af: 12:b4:d8:b6:e5:43:5b:47:39:27:cc:2a:d9:7e:61:aa:ff:d8: f2:cc:ba:83:d9:cf:a4:f9:39:1d:82:c6:37:21:83:c4:1c:45: 0c:de:20:e0:b9:fb:27:4d:7b:e3:dd:8c:d7:25:10:2c:48:3d: 70:d1:78:30:e5:1b:ca:fa:53:ad:04:91:0e:b7:8f:4c:78:77: 86:f1:e0:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjYwNjAxMDYyNjA0WhcNMjYwNjA4MDYyNjA0WjAYMRYwFAYD VQQDEw02YTFkMjVmYy0xNzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4Iyy2QFNvfTTkhATFe5yx0L3ZxG2inkZaPHhbNOzDCie30A8+474j/ZELMC 9jhe+lIIwrFHvbcJnduV4ORO++LSuHNa4RQLU4E1pncE0ECa3eoEJUFGsLwZdTAl 58oaFsa6hvsibC3pxAg+jZuGx6MjjiFDq5Xaz/ViDEWCvY+v70x72YiWcqfgJ1KG g0J7/mhCEe5Ad4zflzvT8wZDEn5/DlY2SPupWlSjFZ//oGPVhrb+3sRA12BC2N9t 2x5XK0PqFZRPJE4yZNK05cq92gP2qCsQ+8nPReRNtP62dfTrDHAl8MD/IEwb6x+2 FbQvlkOtN295TQuEVQAMttOgoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL5V2Mxi MABE89JbCL/rIoi+wOx0MB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACTdl2FapYJ3zpcEyuG6fegoWR61Js+TTkc/J55YKP01ycV9fWJdNEzCrt4tS +iwa8pzRx6frTFptVRsyCMnVDveQo5LkvnY6Bi7ixh6cIPXx/eCaJmSmqyjuTy+h lmHDCX7q/jgtipU01/vffJHUak6oE+6BbEAzBrR8L4RltrzTS8GS92cCokA/pcVO NPPLdgj4afy9prWU09ju4ja1TKkzcXQXukoX1azRs6ib169NqwGvErTYtuVDW0c5 J8wq2X5hqv/Y8sy6g9nPpPk5HYLGNyGDxBxFDN4g4Ln7J017492M1yUQLEg9cNF4 MOUbyvpTrQSRDrePTHh3hvHgmQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:47 2026 by rpki-client