$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft File: 9JfRcWknbUPFhSFcGYMxwzwiWnU.mft (raw, json) Hash identifier: 52XD00qPBb1P0xL0SA6majIrscvvgbRwXc7MfO561/0= Subject key identifier: D2:BC:E9:E1:84:A7:C9:21:0E:C2:36:E7:67:5B:82:C8:76:BE:C7:3A Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 02C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft Manifest number: 02A5 Signing time: Mon 01 Jun 2026 02:22:50 +0000 Manifest this update: Mon 01 Jun 2026 02:22:49 +0000 Manifest next update: Mon 08 Jun 2026 02:22:49 +0000 Files and hashes: 1: 9JfRcWknbUPFhSFcGYMxwzwiWnU.crl (hash: mWHqPxVvCXvQslB8Q72TlhQmNZecTxS5dbfmy2078P0=) 2: AC8A59D689D311EE81F03018C4F9AE02.roa (hash: JVxMI3BBydPHJQteEqMVI2GOfo7MKjizmO2le+yttg4=) 3: C82A0778680811EE88B5527CC4F9AE02.roa (hash: aGkSuS0d5kC8SSbfjCl/wREw36WuVh33R9qpSzjLESg=) 4: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (hash: hMb2hcSIJToNCOk3fqaJJZYV+N/CGmHdt8jBqc5Ar/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 02:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 710 (0x2c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24, serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: Jun 1 02:22:49 2026 GMT Not After : Jun 8 02:22:49 2026 GMT Subject: CN=6a1cecf9-3118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1e:17:48:25:da:9f:bc:1a:e9:6a:93:bd:c8: c1:a2:c4:47:ef:cf:fd:15:0c:d9:a6:56:0a:70:a6: c5:bd:58:6a:2e:9f:1e:a3:f6:33:40:1f:b6:4e:38: af:d8:a6:d6:4b:c1:f7:b0:bc:76:23:9f:b6:08:f0: 1e:3d:00:6b:c2:c7:3f:3d:aa:21:1c:f5:3b:f4:d8: b2:a9:b2:0a:6b:9d:c2:d6:53:34:90:90:58:ff:da: dd:e3:3f:16:a9:c8:4f:05:5f:c1:76:30:90:5a:fb: 9b:4d:3f:c6:20:aa:1b:24:0d:d2:c6:26:56:ca:bc: 0d:5a:f3:42:74:b9:ab:bb:49:8e:a6:17:65:ab:d9: 4f:d6:08:2c:1a:bb:eb:01:6a:b9:f4:69:47:cb:b8: 7c:fb:62:b6:f2:f6:b1:4d:b3:34:d5:b6:2e:12:e8: de:d4:7a:f8:bc:47:7e:6f:77:fb:aa:58:2e:ac:f3: e3:10:bb:e4:c6:c2:d1:48:04:b1:d1:44:2a:7b:44: 14:9e:d7:2c:63:dc:c1:d9:bf:7c:e2:0b:11:9d:60: 12:a4:f4:f5:55:0f:6c:3f:59:0e:4d:dd:28:c4:a5: 7b:89:a3:02:f3:a2:ab:27:f8:e4:20:a6:ef:5c:83: 07:9f:85:6d:d6:cb:63:06:23:93:a1:c9:4a:06:b1: fc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BC:E9:E1:84:A7:C9:21:0E:C2:36:E7:67:5B:82:C8:76:BE:C7:3A X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:85:af:74:2a:53:10:17:2e:f0:af:b4:85:9a:6a:f2:ab:ea: 5e:58:db:39:dd:a5:b8:11:88:f3:0c:bc:32:56:f5:c6:14:16: 2b:c3:e3:6d:42:28:e0:73:ee:7f:6c:e9:87:df:e4:5f:0e:f7: 7c:d9:3d:5e:73:a5:5c:83:50:57:a2:40:2f:4f:fa:28:e7:90: 3e:7a:54:bb:0b:86:e7:a3:10:13:4a:90:95:83:c0:4b:f4:09: 17:1b:f6:b6:97:ae:5f:f4:c2:b2:c5:71:b5:96:ed:22:77:07: 18:a8:28:f6:3a:ae:09:af:9d:fd:7a:48:bf:30:f4:fc:93:ac: 42:d7:2a:9f:a1:c1:24:3f:5c:26:12:4c:3a:04:97:6c:08:b1: 3c:fa:30:9f:84:11:ce:06:0a:b4:17:1d:d1:63:fd:e5:c0:a7: ca:27:04:15:51:04:62:07:6b:4c:35:2d:21:fb:a3:82:37:72: 7b:0a:6d:9c:1d:c2:eb:2c:de:88:4e:c1:35:c8:cf:d2:ed:54: d8:58:fa:58:91:54:46:1c:85:70:42:3e:5c:7c:1a:ba:86:7f: 65:31:36:64:cf:74:30:78:a3:b9:b7:0e:d5:72:16:b7:e0:47: f2:6f:f9:1f:a6:98:bc:ac:fd:93:f7:18:32:12:3a:9e:b9:e7: 9b:87:3f:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjYwNjAxMDIyMjQ5WhcNMjYwNjA4MDIyMjQ5WjAYMRYwFAYD VQQDEw02YTFjZWNmOS0zMTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB4XSCXan7wa6WqTvcjBosRH78/9FQzZplYKcKbFvVhqLp8eo/YzQB+2Tjiv 2KbWS8H3sLx2I5+2CPAePQBrwsc/PaohHPU79NiyqbIKa53C1lM0kJBY/9rd4z8W qchPBV/BdjCQWvubTT/GIKobJA3SxiZWyrwNWvNCdLmru0mOphdlq9lP1ggsGrvr AWq59GlHy7h8+2K28vaxTbM01bYuEuje1Hr4vEd+b3f7qlgurPPjELvkxsLRSASx 0UQqe0QUntcsY9zB2b984gsRnWASpPT1VQ9sP1kOTd0oxKV7iaMC86KrJ/jkIKbv XIMHn4Vt1stjBiOToclKBrH8nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNK86eGE p8khDsI252dbgsh2vsc6MB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0MyNC8xNkM2MTMxNjZBRkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJV UEZoU0ZjR1lNeHd6d2lXblUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT4WvdCpTEBcu8K+0hZpq8qvqXljbOd2luBGI8wy8Mlb1xhQWK8PjbUIo4HPu f2zph9/kXw73fNk9XnOlXINQV6JAL0/6KOeQPnpUuwuG56MQE0qQlYPAS/QJFxv2 tpeuX/TCssVxtZbtIncHGKgo9jquCa+d/XpIvzD0/JOsQtcqn6HBJD9cJhJMOgSX bAixPPown4QRzgYKtBcd0WP95cCnyicEFVEEYgdrTDUtIfujgjdyewptnB3C6yze iE7BNcjP0u1U2Fj6WJFURhyFcEI+XHwauoZ/ZTE2ZM90MHijubcO1XIWt+BH8m/5 H6aYvKz9k/cYMhI6nrnnm4c/OA== -----END CERTIFICATE-----Generated at Thu Jun 4 12:04:55 2026 by rpki-client