$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: TPLE34VgwKqsbhudaF/jQGSvoz30N4o3lTO4lUJ8fns= Subject key identifier: 73:6C:C1:07:79:3A:96:EC:75:3B:EE:62:03:E5:6A:A1:61:40:BB:30 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 14A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 147C Signing time: Tue 02 Jun 2026 15:26:48 +0000 Manifest this update: Tue 02 Jun 2026 15:26:47 +0000 Manifest next update: Tue 09 Jun 2026 15:26:47 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: vH+c/XC7Y+qjbv4Qd9tRqcyxLhMEyyUwqbIAjH5i0iM=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: Ahq8pAmeUbi/UnTEDIDcD1i65MG+Vf7huahab+3HR9s=) 3: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: w2NWjfabvdQFP3C4IwPEM+fGnRuZMPns4zEDrwbMyxc=) 4: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5282 (0x14a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Jun 2 15:26:47 2026 GMT Not After : Jun 9 15:26:47 2026 GMT Subject: CN=6a1ef638-a7d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:60:9a:03:a0:5a:31:65:42:f2:88:a4:5e:7d: 05:a7:98:e0:c6:5c:b8:ed:c0:e4:99:49:e7:48:1f: 39:24:f3:3f:40:d4:b6:6a:f2:bc:90:72:bd:e3:20: 0d:7b:d9:4f:f6:6a:3b:4a:06:69:0d:49:33:f8:54: a4:e2:f1:60:1a:a4:32:10:ca:81:5c:22:92:fb:84: 1d:67:42:b8:55:00:f5:1d:63:b9:4b:dc:24:d3:2b: 6a:dd:74:fb:7a:91:04:7d:2b:47:d0:06:e3:34:47: 0e:56:4f:3f:c6:1c:1b:a0:0e:31:94:59:1d:6b:8d: e5:89:8a:8d:69:d4:43:31:08:d7:f6:e2:02:ef:a6: cd:8f:01:18:bc:e2:29:02:8e:db:1c:63:ce:01:3f: dd:21:60:4d:b8:50:1e:99:94:7d:53:48:92:fa:7e: 1a:17:81:f1:ea:32:68:ae:4b:da:49:ea:9c:2e:c9: 9b:03:69:5f:af:f9:6f:bd:bf:48:64:85:40:d3:8e: 42:d9:24:f4:57:e5:cd:ce:31:a1:82:d7:17:4f:00: 96:76:cd:e0:10:d6:a0:14:8b:84:5e:f6:8b:62:d5: f9:90:f3:cb:eb:21:da:1b:fb:cf:26:04:57:74:34: 39:8d:64:c8:b5:64:4f:d7:47:25:e6:80:95:51:79: 3d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6C:C1:07:79:3A:96:EC:75:3B:EE:62:03:E5:6A:A1:61:40:BB:30 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:84:25:f4:8c:b9:5c:23:fe:36:9f:5d:82:d4:f3:38:e4:2d: 4e:d7:f7:91:46:b9:c1:fa:36:9c:68:5e:97:bc:a5:25:c2:01: ef:3a:f1:16:1b:35:ff:10:64:e1:31:3e:8e:4e:3c:6a:25:e0: a5:bd:4d:1a:3d:fb:d7:7c:59:62:50:f9:10:0e:4e:79:5d:de: 1f:90:a9:e3:53:9f:5b:7c:f1:11:05:cf:6c:d7:8b:13:19:2b: 29:c7:d8:76:74:45:fa:ac:98:a0:7c:2a:07:ae:a3:4b:b3:d4: 38:69:84:3f:c6:68:a9:28:0e:7d:2d:d0:61:7e:4a:37:0e:c5: a6:e3:6f:d9:12:d8:d4:d7:b7:f2:8e:7f:7d:75:de:f4:63:9a: c1:67:67:c9:78:d0:6d:ff:ff:2f:87:34:e7:5f:dd:98:c9:06: 70:c4:eb:cd:d5:5b:65:bb:aa:e1:78:7c:54:59:b4:11:5b:ac: ad:24:bc:bf:33:e1:7f:03:e3:a6:a7:93:80:b1:f0:75:15:6e: 7e:aa:5d:2f:7e:97:95:1d:2e:2b:9c:29:b9:9c:f1:38:cd:ad: 56:ef:59:51:5c:16:21:c4:94:94:fc:65:a6:23:5c:57:97:25: 74:d6:2e:2f:d3:90:e8:98:69:c7:21:f2:79:a8:ff:64:51:53: ac:fa:92:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjYwNjAyMTUyNjQ3WhcNMjYwNjA5MTUyNjQ3WjAYMRYwFAYD VQQDEw02YTFlZjYzOC1hN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2CaA6BaMWVC8oikXn0Fp5jgxly47cDkmUnnSB85JPM/QNS2avK8kHK94yAN e9lP9mo7SgZpDUkz+FSk4vFgGqQyEMqBXCKS+4QdZ0K4VQD1HWO5S9wk0ytq3XT7 epEEfStH0AbjNEcOVk8/xhwboA4xlFkda43liYqNadRDMQjX9uIC76bNjwEYvOIp Ao7bHGPOAT/dIWBNuFAemZR9U0iS+n4aF4Hx6jJorkvaSeqcLsmbA2lfr/lvvb9I ZIVA045C2ST0V+XNzjGhgtcXTwCWds3gENagFIuEXvaLYtX5kPPL6yHaG/vPJgRX dDQ5jWTItWRP10cl5oCVUXk9ZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHNswQd5 OpbsdTvuYgPlaqFhQLswMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARIQl9Iy5XCP+Np9dgtTzOOQtTtf3kUa5wfo2nGhel7ylJcIB7zrxFhs1/xBk 4TE+jk48aiXgpb1NGj3713xZYlD5EA5OeV3eH5Cp41OfW3zxEQXPbNeLExkrKcfY dnRF+qyYoHwqB66jS7PUOGmEP8ZoqSgOfS3QYX5KNw7FpuNv2RLY1Ne38o5/fXXe 9GOawWdnyXjQbf//L4c051/dmMkGcMTrzdVbZbuq4Xh8VFm0EVusrSS8vzPhfwPj pqeTgLHwdRVufqpdL36XlR0uK5wpuZzxOM2tVu9ZUVwWIcSUlPxlpiNcV5cldNYu L9OQ6JhpxyHyeaj/ZFFTrPqS0Q== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:31 2026 by rpki-client