$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: /fMRTzX/dVHa18Ackj/NTDWDC2CszW2OCMZV9ZU9MLM= Subject key identifier: 2E:9E:D1:87:CE:DB:A2:B5:22:23:E7:AF:1D:F8:FA:BC:E1:DA:52:0F Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 1085 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 1041 Signing time: Tue 02 Jun 2026 17:25:01 +0000 Manifest this update: Tue 02 Jun 2026 17:25:01 +0000 Manifest next update: Tue 09 Jun 2026 17:25:01 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: gdGsn8c6xXB6uqzLAeNJ2a73VXrPRFXnZuQeB9DyId8=) 2: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: MMtbNQJMN6S4OIeEKXKOY3PxiKyZUm2osdIwKT/I6/8=) 3: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: Sm/OBak1L/GxeMDIT65Qr8dDGwL4HkNDx/zYxoxP+Z8=) 4: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: uBTNO8LacSzwG2NHzzxDXw4qYGxUCRj8Y9JqVZrsvk4=) 5: B3876B1821C911EB991D562EC4F9AE02.roa (hash: MalwjoN5cuoqPXC8qDmvp2vBk51alqMZE2wuotImz1Q=) 6: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: 8pSbOUGcxd9kIRUOKnyb177dIko/tnYgGhNgiXbljP4=) 7: B490CD0621C911EB991D562EC4F9AE02.roa (hash: HAKJGo3+54uKtPG7Z+H+eKIrSnUl+M/R2bQu2unHATw=) 8: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: Ep5ULjpLJ97bV5VifiZFQEn0w2yErIZH+uUxSWGKvrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 17:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4229 (0x1085) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Jun 2 17:25:01 2026 GMT Not After : Jun 9 17:25:01 2026 GMT Subject: CN=6a1f11ed-2547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:73:40:eb:b6:e3:90:76:82:55:20:34:01:27: b4:90:0f:e9:9c:85:a3:e8:c7:40:22:f2:f4:a8:50: 5a:eb:cc:3f:9d:f7:00:f3:41:9b:75:63:1a:91:28: 88:78:13:52:d2:be:c8:a6:d9:b3:ba:e4:aa:b8:60: 15:88:f4:27:9b:8a:a8:49:f3:92:dd:c5:75:58:42: 78:80:eb:a4:e7:a4:3f:94:36:80:4f:53:43:dc:b8: 22:06:37:32:7e:b8:ec:31:c3:03:21:cf:33:bc:73: 41:2e:58:fd:5f:04:31:b3:b5:d9:73:b6:2f:87:c6: 77:21:aa:2a:7e:a1:16:6c:68:e6:4e:d2:b6:a7:05: 4a:7f:29:db:d4:b2:fc:7f:28:3d:33:39:04:91:85: 89:38:ce:4c:79:b4:4b:36:54:48:01:76:e4:58:e1: 6d:20:63:eb:f9:83:78:e8:6a:78:15:aa:17:1b:2a: 3c:13:75:50:91:db:26:09:51:eb:7c:ec:d6:8e:89: 8a:90:0b:52:c4:d5:17:0a:d7:bf:f1:d8:c5:71:92: bb:0c:9b:d2:0e:39:3a:97:e4:97:1b:95:46:f5:1e: 57:39:37:49:c6:95:6c:3b:a6:a3:13:75:c1:1f:b4: 77:e8:3f:fa:24:6d:c7:d9:40:c5:9d:59:23:c8:4e: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9E:D1:87:CE:DB:A2:B5:22:23:E7:AF:1D:F8:FA:BC:E1:DA:52:0F X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:b7:de:35:23:3f:f8:82:ee:25:97:50:67:3c:c0:b2:df:37: 7c:68:08:51:c4:c1:33:a8:eb:74:b3:e4:68:ff:60:d0:ca:9a: b6:a5:30:5f:98:31:c9:6b:90:f0:01:fb:fa:6d:34:e5:be:08: 2b:01:9a:d4:0e:14:70:44:12:c7:c3:29:4e:1a:f9:4b:7a:63: b7:be:75:e6:f0:a5:7e:b4:d3:67:07:f0:a1:a0:1f:bd:30:ef: 04:0e:42:0e:e5:39:2f:6e:30:25:e7:d7:4e:10:83:64:41:c6: 10:d6:12:32:20:26:9c:6c:c3:cb:6e:b6:92:40:34:9f:ad:fe: 0b:63:c3:f7:99:b5:c8:78:d5:87:4d:49:17:44:ad:11:46:ef: d5:60:07:b2:68:89:9e:53:2c:ca:ef:6f:2c:aa:75:54:f6:40: ab:57:39:9b:eb:0c:24:fe:52:89:fe:a3:a3:2c:56:7f:80:9b: 09:89:a9:bf:8c:fe:d7:23:eb:bb:0d:a0:61:79:1e:25:7e:2d: 84:3b:88:41:52:3f:33:1e:4a:f0:72:84:ce:8e:38:68:2d:86: e6:b7:7b:7b:fc:87:52:d4:5d:90:61:14:06:f1:e9:2c:21:9f: 30:6d:ad:8b:d1:02:1e:7f:b0:1b:2d:8e:08:b8:55:48:34:ab: 13:ce:bf:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjYwNjAyMTcyNTAxWhcNMjYwNjA5MTcyNTAxWjAYMRYwFAYD VQQDEw02YTFmMTFlZC0yNTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23NA67bjkHaCVSA0ASe0kA/pnIWj6MdAIvL0qFBa68w/nfcA80GbdWMakSiI eBNS0r7IptmzuuSquGAViPQnm4qoSfOS3cV1WEJ4gOuk56Q/lDaAT1ND3LgiBjcy frjsMcMDIc8zvHNBLlj9XwQxs7XZc7Yvh8Z3IaoqfqEWbGjmTtK2pwVKfynb1LL8 fyg9MzkEkYWJOM5MebRLNlRIAXbkWOFtIGPr+YN46Gp4FaoXGyo8E3VQkdsmCVHr fOzWjomKkAtSxNUXCte/8djFcZK7DJvSDjk6l+SXG5VG9R5XOTdJxpVsO6ajE3XB H7R36D/6JG3H2UDFnVkjyE5tLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC6e0YfO 26K1IiPnrx34+rzh2lIPMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYLfeNSM/+ILuJZdQZzzAst83fGgIUcTBM6jrdLPkaP9g0MqatqUwX5gxyWuQ 8AH7+m005b4IKwGa1A4UcEQSx8MpThr5S3pjt7515vClfrTTZwfwoaAfvTDvBA5C DuU5L24wJefXThCDZEHGENYSMiAmnGzDy262kkA0n63+C2PD95m1yHjVh01JF0St EUbv1WAHsmiJnlMsyu9vLKp1VPZAq1c5m+sMJP5Sif6joyxWf4CbCYmpv4z+1yPr uw2gYXkeJX4thDuIQVI/Mx5K8HKEzo44aC2G5rd7e/yHUtRdkGEUBvHpLCGfMG2t i9ECHn+wGy2OCLhVSDSrE86/kg== -----END CERTIFICATE-----Generated at Thu Jun 4 13:19:06 2026 by rpki-client