$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: OEjosxzR6eZWJ+gMbRtqT8ymHNHklnUkXF9qVbYeKpw= Subject key identifier: 6E:70:34:05:28:3B:B2:9B:C4:24:F5:94:A3:6F:E3:19:E0:C5:D1:88 Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: A9 Signing time: Mon 01 Jun 2026 08:01:24 +0000 Manifest this update: Mon 01 Jun 2026 08:01:23 +0000 Manifest next update: Mon 08 Jun 2026 08:01:23 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: VNRuFD5KodB81fUrFVGFvexNRrl6V1kkUXcAY5zrG4k=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: 1+gWdAZ37YIBU2iFVY3fHe/eCmXpEhHdoc6OKpG9wTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 08:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Jun 1 08:01:23 2026 GMT Not After : Jun 8 08:01:23 2026 GMT Subject: CN=6a1d3c54-58c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:eb:29:28:94:34:e7:cb:80:ea:be:06:ce:26: f2:28:81:94:fc:58:d6:c2:5b:0f:06:e0:22:4c:6e: b8:d1:f4:1b:36:d3:27:b7:07:59:01:04:3f:c3:01: 6b:ca:f4:61:8e:e0:ed:ea:5c:ce:40:3f:de:f9:fd: 3d:8c:ac:de:78:b4:d0:6b:38:9e:28:e3:dc:94:90: be:96:f3:b7:b3:ec:48:4f:2b:47:7b:76:91:5a:4b: 16:9b:63:48:00:e7:3a:ff:e9:bc:0c:6c:df:af:2d: 53:51:e8:ed:60:0c:22:24:a6:e4:45:3d:b8:8c:5d: a3:61:2b:f6:ab:82:25:d7:52:08:49:fd:36:23:84: 96:bf:80:14:c4:82:63:e3:88:1b:3a:76:7c:77:ef: f3:5d:76:52:3d:7a:7b:bd:82:e4:60:7c:c1:b2:20: 13:57:05:e3:c8:71:a4:97:06:84:9c:4a:9d:5c:6f: 95:97:ae:fb:be:a8:d2:41:69:a0:8e:d9:31:01:9b: e6:8d:43:e6:27:74:26:86:b8:de:96:39:59:00:ff: d3:32:c0:f0:f3:48:8b:99:2a:04:7c:3c:5f:d2:ca: 1f:6a:b5:48:c8:56:f8:dc:1c:d0:a3:59:59:a6:cc: 95:a0:e2:a0:a0:d4:7d:f3:7a:33:78:80:eb:a9:ef: e7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:70:34:05:28:3B:B2:9B:C4:24:F5:94:A3:6F:E3:19:E0:C5:D1:88 X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ab:b2:8d:2a:6b:2f:e2:d8:05:e2:af:b4:89:20:d6:4d:6d: 70:6e:51:c8:39:0a:48:4c:25:55:70:57:34:6a:e7:05:1e:9b: 9c:26:79:39:27:c1:00:8f:4a:ef:9b:1e:b3:c5:8e:f6:9d:39: 0d:c2:1c:5c:9e:33:1b:a4:36:9e:7f:77:76:7b:33:dd:4a:9b: 11:f7:36:c0:28:98:5e:19:a6:3f:94:9f:e8:71:e6:e9:a6:8c: 21:3f:39:9f:3e:0f:46:33:3b:9e:20:1f:ba:51:0c:eb:9f:e7: 0e:7c:0e:b5:45:e6:0c:20:cd:ca:79:60:2e:73:d5:a8:ea:e2: 9a:9c:de:21:37:26:39:8c:fd:82:e8:63:22:cc:e1:19:fb:ba: b2:90:4c:c2:03:31:e6:ca:af:aa:0c:24:3c:18:45:21:7c:ec: 5f:c5:ba:74:64:52:f0:aa:49:e6:05:92:6b:ab:86:b0:d9:32: 04:7f:dc:29:4d:1d:50:05:18:cd:5f:d4:9e:6d:ad:64:ca:38: d0:c2:73:e8:3b:b0:d7:e2:95:fa:e2:c1:e5:f4:0a:66:65:01: 77:f4:95:06:75:9d:ae:0b:fc:6f:e6:f1:a6:bc:b1:3f:93:56: 3a:35:09:27:75:47:8a:8d:c4:bb:67:8a:3b:b6:70:48:03:f7: 1d:cc:84:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQzRjIxMTAvBgNVBAUTKDU1Nzg5QTM0MTZFN0VGNTE1Q0UwOEYwNUEzNkYxREVE ODM0NDRDMDkwHhcNMjYwNjAxMDgwMTIzWhcNMjYwNjA4MDgwMTIzWjAYMRYwFAYD VQQDEw02YTFkM2M1NC01OGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+spKJQ058uA6r4GzibyKIGU/FjWwlsPBuAiTG640fQbNtMntwdZAQQ/wwFr yvRhjuDt6lzOQD/e+f09jKzeeLTQazieKOPclJC+lvO3s+xITytHe3aRWksWm2NI AOc6/+m8DGzfry1TUejtYAwiJKbkRT24jF2jYSv2q4Il11IISf02I4SWv4AUxIJj 44gbOnZ8d+/zXXZSPXp7vYLkYHzBsiATVwXjyHGklwaEnEqdXG+Vl677vqjSQWmg jtkxAZvmjUPmJ3QmhrjeljlZAP/TMsDw80iLmSoEfDxf0sofarVIyFb43BzQo1lZ psyVoOKgoNR983ozeIDrqe/nlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG5wNAUo O7KbxCT1lKNv4xngxdGIMB8GA1UdIwQYMBaAFFV4mjQW5+9RXOCPBaNvHe2DREwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDNGMi80MTgwNTA5NDYw QzAxMUYwQUZCNDU3MkJDNEY5QUUwMi9WWGlhTkJibjcxRmM0SThGbzI4ZDdZTkVU QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDNGMi80MTgwNTA5NDYwQzAxMUYwQUZCNDU3MkJDNEY5QUUwMi9WWGlhTkJibjcx RmM0SThGbzI4ZDdZTkVUQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANauyjSprL+LYBeKvtIkg1k1tcG5RyDkKSEwlVXBXNGrnBR6bnCZ5OSfBAI9K 75ses8WO9p05DcIcXJ4zG6Q2nn93dnsz3UqbEfc2wCiYXhmmP5Sf6HHm6aaMIT85 nz4PRjM7niAfulEM65/nDnwOtUXmDCDNynlgLnPVqOrimpzeITcmOYz9guhjIszh Gfu6spBMwgMx5sqvqgwkPBhFIXzsX8W6dGRS8KpJ5gWSa6uGsNkyBH/cKU0dUAUY zV/Unm2tZMo40MJz6Duw1+KV+uLB5fQKZmUBd/SVBnWdrgv8b+bxpryxP5NWOjUJ J3VHio3Eu2eKO7ZwSAP3HcyEHA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:25:51 2026 by rpki-client