$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft File: 1Ycen8b73n3HG36JXIoEw9ACHYU.mft (raw, json) Hash identifier: lbCD6Y7AsIXbk0mtPWcA3VqGayf4EIuKkBmJrbbSAEc= Subject key identifier: 9A:44:AA:99:9B:A0:D9:7E:3C:EC:A3:D9:6C:21:48:A3:DB:02:A4:62 Authority key identifier: D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 Certificate issuer: /CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft Manifest number: 0217 Signing time: Tue 23 Jun 2026 03:06:51 +0000 Manifest this update: Tue 23 Jun 2026 03:06:50 +0000 Manifest next update: Tue 30 Jun 2026 03:06:50 +0000 Files and hashes: 1: 1Ycen8b73n3HG36JXIoEw9ACHYU.crl (hash: TnSYexOnZDdeDP4YNmKHSh8DYmXjy1EgHVWwOzE2a3w=) 2: A355C1A8B6D511F089793D6DC4F9AE02.roa (hash: h0j3mf/tfCqfATi6s2p0ZWyH9rfUorcBAbjHkKVPs1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 03:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A49, serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Validity Not Before: Jun 23 03:06:50 2026 GMT Not After : Jun 30 03:06:50 2026 GMT Subject: CN=6a39f84b-361b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:2d:d1:2f:b5:b7:a2:66:61:f6:3c:ff:4d:58: 91:97:b4:15:2f:68:b6:82:49:c4:c6:9d:b4:e6:62: 3d:d8:f1:46:a2:02:78:7b:bc:94:bb:7c:71:94:02: 78:3b:30:5a:15:70:1e:6d:9e:15:9d:ac:0a:8f:bd: 2a:26:0f:66:37:6f:4f:2d:28:cc:9c:69:a3:83:db: eb:e2:10:ad:d3:84:7f:0e:e4:ea:a1:ca:58:27:49: f2:7b:62:3a:d9:04:7a:1e:84:35:3f:37:3e:1f:71: cd:4c:e2:d0:19:03:2f:51:60:3d:a3:e4:b9:1c:34: ad:ec:b3:2c:49:9f:1a:55:d2:d3:26:29:0d:ff:b8: e6:28:54:1b:2c:8e:28:98:b9:7e:ba:54:56:ef:c2: ae:74:83:18:da:fd:27:5c:59:41:e3:7f:2e:1c:9d: 82:ed:f8:50:eb:63:25:66:5c:bd:26:c6:ec:93:ea: 83:0a:5f:3e:99:75:ce:8c:8e:7a:73:4d:e7:2c:57: 17:5f:5e:cb:33:b9:47:a1:5d:62:81:4c:5d:8e:cd: bb:94:c4:30:1e:1e:bf:fb:c1:25:6f:f7:30:6e:03: a3:36:55:00:26:9f:5d:1e:49:37:ee:f0:f5:0f:1c: 4d:10:72:7f:f5:87:b7:cf:27:a6:af:c9:8f:d6:86: fb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:44:AA:99:9B:A0:D9:7E:3C:EC:A3:D9:6C:21:48:A3:DB:02:A4:62 X509v3 Authority Key Identifier: keyid:D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:81:07:2b:a8:f8:a7:4e:be:0d:96:92:08:10:1f:dd:60:b4: 71:c0:3c:1f:fc:d5:92:ab:78:05:19:a2:02:0c:45:80:08:cd: 9f:9c:ef:6f:6e:8b:2b:ba:42:75:e2:7d:a4:75:cd:6b:ef:3e: 75:50:35:cf:5e:9d:66:9c:e4:c9:c8:a2:9f:1c:6c:22:f8:c8: cc:91:bc:51:ea:43:99:23:c6:c2:54:62:45:0e:61:32:38:45: 45:fe:58:38:35:f2:d3:d1:3d:f4:b8:d8:77:6b:f5:36:51:a2: ac:46:76:5c:1e:28:23:58:a1:e7:e9:3d:cf:53:88:af:e3:2f: 76:ab:d3:22:a9:b7:14:0b:47:06:99:a6:8c:3e:cd:db:ca:c9: 62:f2:42:dc:a2:0a:9b:f0:8a:ad:a9:81:6e:25:c3:39:b3:ef: eb:43:71:aa:ae:a9:e5:7c:c5:86:ef:25:ae:3c:9c:f2:91:e2: d7:b6:5f:ad:d0:ed:9c:44:82:ab:66:84:d1:ce:74:a5:6e:ee: 9d:8c:70:a3:c6:57:87:1f:dd:28:c2:69:97:73:3e:90:1e:68: a5:d8:47:5d:08:7c:cc:3f:b1:a4:ef:20:e6:24:06:da:86:e1: 5a:82:e8:5c:d8:af:5c:a8:8f:f8:83:b1:d4:f6:cb:04:79:28: 9f:88:31:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDkxMTAvBgNVBAUTKEQ1ODcxRTlGQzZGQkRFN0RDNzFCN0U4OTVDOEEwNEMz RDAwMjFEODUwHhcNMjYwNjIzMDMwNjUwWhcNMjYwNjMwMDMwNjUwWjAYMRYwFAYD VQQDEw02YTM5Zjg0Yi0zNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+i3RL7W3omZh9jz/TViRl7QVL2i2gknExp205mI92PFGogJ4e7yUu3xxlAJ4 OzBaFXAebZ4VnawKj70qJg9mN29PLSjMnGmjg9vr4hCt04R/DuTqocpYJ0nye2I6 2QR6HoQ1Pzc+H3HNTOLQGQMvUWA9o+S5HDSt7LMsSZ8aVdLTJikN/7jmKFQbLI4o mLl+ulRW78KudIMY2v0nXFlB438uHJ2C7fhQ62MlZly9Jsbsk+qDCl8+mXXOjI56 c03nLFcXX17LM7lHoV1igUxdjs27lMQwHh6/+8Elb/cwbgOjNlUAJp9dHkk37vD1 DxxNEHJ/9Ye3zyemr8mP1ob7BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJpEqpmb oNl+POyj2WwhSKPbAqRiMB8GA1UdIwQYMBaAFNWHHp/G+959xxt+iVyKBMPQAh2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0OS80N0QwNDQ2NDQ3 QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNuM0hHMzZKWElvRXc5QUNI WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFZY2VuOGI3M24zSEczNkpYSW9FdzlBQ0hZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEE0OS80N0QwNDQ2NDQ3QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNu M0hHMzZKWElvRXc5QUNIWVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ4EHK6j4p06+DZaSCBAf3WC0ccA8H/zVkqt4BRmiAgxFgAjNn5zvb26LK7pC deJ9pHXNa+8+dVA1z16dZpzkyciinxxsIvjIzJG8UepDmSPGwlRiRQ5hMjhFRf5Y ODXy09E99LjYd2v1NlGirEZ2XB4oI1ih5+k9z1OIr+MvdqvTIqm3FAtHBpmmjD7N 28rJYvJC3KIKm/CKramBbiXDObPv60Nxqq6p5XzFhu8lrjyc8pHi17ZfrdDtnESC q2aE0c50pW7unYxwo8ZXhx/dKMJpl3M+kB5opdhHXQh8zD+xpO8g5iQG2obhWoLo XNivXKiP+IOx1PbLBHkon4gxtQ== -----END CERTIFICATE-----Generated at Wed Jun 24 11:26:18 2026 by rpki-client