$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft File: IsfsPNntTFDolKEbzXDQMQzV-Fk.mft (raw, json) Hash identifier: eOeVoRSvA+Ueoo/sXJ7kMQOlZj5m4Py9FXJ74uaXuNw= Subject key identifier: 19:E8:57:42:5C:27:D8:D7:04:76:C2:52:08:01:E7:EC:4A:0B:A1:3E Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft Manifest number: 0116 Signing time: Tue 02 Jun 2026 17:33:07 +0000 Manifest this update: Tue 02 Jun 2026 17:33:07 +0000 Manifest next update: Tue 09 Jun 2026 17:33:07 +0000 Files and hashes: 1: IsfsPNntTFDolKEbzXDQMQzV-Fk.crl (hash: i1Qwvp43+Yfvx/zomRvaKMENEldTC+yDmtSePMo3aNk=) 2: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (hash: akLA24IwRVeRV87VrcCP9mJOdJA7ntWRSTCaXT2ZWc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Validity Not Before: Jun 2 17:33:07 2026 GMT Not After : Jun 9 17:33:07 2026 GMT Subject: CN=6a1f13d3-a24a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:42:37:fe:cc:bc:a6:63:96:e9:95:31:0e:d3: d8:1b:a9:61:50:6c:d5:9c:bf:37:ce:b5:5d:70:27: d1:5d:42:c7:b8:c7:2a:6e:4e:ef:4e:73:e7:03:71: cc:0f:7e:17:3b:80:1d:24:63:89:4f:29:de:a2:86: ec:8f:7a:97:8e:12:6e:9a:fa:20:fa:fa:c2:e7:af: c3:2f:cd:d6:c2:e5:a6:43:5a:7a:bc:b5:59:80:b6: c6:29:3b:41:fd:2c:2d:4c:d3:28:5d:84:4a:d4:2d: 0a:e5:14:4c:2f:c4:e7:01:1a:27:b8:6c:9b:d5:ba: 82:a0:08:f6:56:73:9e:33:ec:3e:9d:73:5b:2b:1e: 38:33:db:26:06:ec:03:4f:53:58:e6:8f:8c:2c:e7: 4d:e0:28:ef:c1:b9:9d:7f:76:79:e4:f0:7f:4e:5d: e3:b7:f7:78:2f:2b:fd:0d:e7:5c:aa:53:92:93:81: a0:03:47:29:25:ba:01:f4:dc:07:20:9e:be:ab:fd: 2a:4e:98:00:f9:a4:fe:c1:ff:e0:34:4f:3f:d4:f9: 46:4e:a2:95:98:59:8e:73:7c:ac:21:8f:7d:46:88: 06:42:8d:34:06:4d:ce:6d:45:f2:83:2e:f7:f4:5b: 89:f7:10:42:6e:28:88:73:07:ae:58:20:e1:ad:b7: 2a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E8:57:42:5C:27:D8:D7:04:76:C2:52:08:01:E7:EC:4A:0B:A1:3E X509v3 Authority Key Identifier: keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ba:b5:84:6a:0a:c3:bb:f0:e0:4f:5c:67:cf:fd:8c:aa:73: bb:ee:fb:97:8f:ad:bc:92:a3:cb:6b:59:ed:a1:ed:fa:aa:01: c1:c7:1b:2e:12:ea:3c:ef:43:bb:3a:7a:74:20:b9:2a:85:b8: 9e:2e:d2:61:de:60:38:d7:e0:2e:e9:51:b1:d0:77:d7:07:b4: b5:89:41:65:ad:fd:f8:8e:c1:e2:3a:82:fa:17:a0:e3:19:cb: 92:f5:83:48:10:2f:c4:ab:dd:47:9d:9a:87:bf:b3:4a:a7:5b: e7:e8:bc:10:67:15:11:12:c4:71:60:a0:6c:6e:0b:45:d0:f2: eb:44:31:fe:0f:01:56:e7:99:d1:88:16:9c:4d:de:42:63:07: 4b:19:ec:f5:b9:5b:7a:30:87:cb:64:10:fd:4e:d0:c6:ac:68: 1b:f4:99:64:b9:c3:70:b8:8f:bb:09:2f:ad:e3:c9:db:f3:72: 80:e1:58:ec:17:71:23:b8:a0:cc:bd:64:aa:b6:e1:89:de:93: f0:8d:3e:97:4e:77:b9:c7:3e:56:f9:19:6b:4e:37:91:34:f3: 99:ce:74:aa:00:76:56:a5:67:93:29:6c:da:f7:56:d6:b7:e2: c9:dc:72:9a:e3:bd:ba:9c:7d:c3:6a:40:46:c4:d1:67:cd:ab: fd:57:47:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx MENENUY4NTkwHhcNMjYwNjAyMTczMzA3WhcNMjYwNjA5MTczMzA3WjAYMRYwFAYD VQQDEw02YTFmMTNkMy1hMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEI3/sy8pmOW6ZUxDtPYG6lhUGzVnL83zrVdcCfRXULHuMcqbk7vTnPnA3HM D34XO4AdJGOJTyneoobsj3qXjhJumvog+vrC56/DL83WwuWmQ1p6vLVZgLbGKTtB /SwtTNMoXYRK1C0K5RRML8TnARonuGyb1bqCoAj2VnOeM+w+nXNbKx44M9smBuwD T1NY5o+MLOdN4Cjvwbmdf3Z55PB/Tl3jt/d4Lyv9DedcqlOSk4GgA0cpJboB9NwH IJ6+q/0qTpgA+aT+wf/gNE8/1PlGTqKVmFmOc3ysIY99RogGQo00Bk3ObUXygy73 9FuJ9xBCbiiIcweuWCDhrbcqcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBnoV0Jc J9jXBHbCUggB5+xKC6E+MB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS9DOTQ0N0ZGMEJFRjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRG RG9sS0VielhEUU1RelYtRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKbq1hGoKw7vw4E9cZ8/9jKpzu+77l4+tvJKjy2tZ7aHt+qoBwccbLhLqPO9D uzp6dCC5KoW4ni7SYd5gONfgLulRsdB31we0tYlBZa39+I7B4jqC+heg4xnLkvWD SBAvxKvdR52ah7+zSqdb5+i8EGcVERLEcWCgbG4LRdDy60Qx/g8BVueZ0YgWnE3e QmMHSxns9blbejCHy2QQ/U7QxqxoG/SZZLnDcLiPuwkvrePJ2/NygOFY7BdxI7ig zL1kqrbhid6T8I0+l053ucc+VvkZa043kTTzmc50qgB2VqVnkyls2vdW1rfiydxy muO9upx9w2pARsTRZ82r/VdHYQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:34:15 2026 by rpki-client