$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: clSF8h3YCLe5OJ9v05vUUxDfP72RGEhqOGHJXyF/ItA= Subject key identifier: 55:97:4C:22:34:61:90:1C:D2:59:BB:D5:94:8E:8D:0A:FB:B9:93:93 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 0231 Signing time: Mon 01 Jun 2026 03:21:56 +0000 Manifest this update: Mon 01 Jun 2026 03:21:55 +0000 Manifest next update: Mon 08 Jun 2026 03:21:55 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: w6fwjhhsAykynzUtaRjORPJf13SaWc+9hq/iBj0U4uM=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: BQffJWUhC3MFwSjvVuhP9nq/ZEQ/mBQ35OQP2zYEaDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Jun 1 03:21:55 2026 GMT Not After : Jun 8 03:21:55 2026 GMT Subject: CN=6a1cfad4-ae8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d3:41:6c:d6:a7:c9:47:26:7e:17:de:31:17: 60:d0:27:3c:67:55:11:f0:b7:ab:3b:87:7f:bb:ad: 9f:0f:42:7e:de:d2:72:d1:96:76:4c:ba:96:8c:1f: b6:47:78:66:5b:a8:de:a1:e1:22:7c:b2:d1:43:14: 97:39:8d:6e:6d:06:71:89:a2:84:5d:32:f9:c9:49: 79:03:a3:96:0a:20:5d:3e:96:5a:bc:02:7c:2d:41: 72:ea:1e:25:24:b4:c1:61:6b:eb:54:27:29:c4:43: 72:4b:52:2c:4b:4e:a3:44:49:df:75:4f:28:ac:55: f9:8f:e6:50:bf:b8:22:c2:99:d3:92:da:2f:c7:a6: 27:53:f4:af:07:ff:cf:78:8a:ed:bc:59:d8:b1:83: 55:bc:42:3b:12:bb:3f:6e:79:de:84:0b:7a:ef:46: f3:3e:c5:04:ef:94:17:80:26:25:17:0a:be:0f:26: 78:8b:f8:12:58:fe:a1:ea:2d:f7:49:5b:54:2d:a0: f5:73:73:85:aa:81:c7:28:7c:4c:16:77:fc:2f:bb: c3:67:a4:2a:2a:2b:28:62:59:c0:9d:c1:be:4c:9a: 7d:ec:81:1a:bd:11:1a:23:73:dc:7a:6e:68:8a:c5: da:94:29:b5:30:5e:32:6a:17:2a:7f:a6:a9:c3:e0: e1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:97:4C:22:34:61:90:1C:D2:59:BB:D5:94:8E:8D:0A:FB:B9:93:93 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6a:19:31:0b:8c:b3:0d:a3:5f:7e:4a:9c:f4:f1:9b:d9:2f: 04:ec:a7:4f:02:e2:3f:28:a0:b9:f0:e5:d5:ed:8e:35:33:bb: b0:a9:5f:b1:8e:90:15:ff:d7:0b:ac:0a:e2:15:32:a1:17:1a: a1:92:d1:f5:e1:8a:f2:05:6d:b7:59:26:71:fd:11:3d:30:76: 73:94:b1:d8:7f:41:0f:30:b3:73:00:f6:72:b6:6d:65:80:12: 15:48:0c:51:b7:c8:a9:b7:f3:bb:59:d8:8b:81:9c:32:b6:6d: 45:f4:45:2f:54:3c:9b:2d:ee:07:a6:13:98:28:c7:a5:74:2b: 18:b0:ea:e3:96:fe:f5:ec:56:50:d6:63:08:ac:d0:16:3a:53: 8c:86:3b:43:89:31:6d:4b:aa:de:3e:45:34:03:78:31:c9:b9: be:ce:6e:0f:1d:ca:75:4a:70:eb:65:ab:35:07:bf:a6:64:03: d2:52:95:5b:46:5d:34:59:e2:2d:5c:3d:0c:c1:4d:30:ee:14: 3d:eb:e7:76:61:6e:e0:45:94:10:28:fb:b7:53:04:92:e9:40: c9:ce:86:ea:90:c4:64:1a:17:9e:b5:5f:ff:f9:12:e1:4f:2c: 6a:7f:32:61:0d:fb:dd:33:c8:fc:50:32:ea:1a:1e:96:8e:49: 01:23:57:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjYwNjAxMDMyMTU1WhcNMjYwNjA4MDMyMTU1WjAYMRYwFAYD VQQDEw02YTFjZmFkNC1hZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNNBbNanyUcmfhfeMRdg0Cc8Z1UR8LerO4d/u62fD0J+3tJy0ZZ2TLqWjB+2 R3hmW6jeoeEifLLRQxSXOY1ubQZxiaKEXTL5yUl5A6OWCiBdPpZavAJ8LUFy6h4l JLTBYWvrVCcpxENyS1IsS06jREnfdU8orFX5j+ZQv7giwpnTktovx6YnU/SvB//P eIrtvFnYsYNVvEI7Ers/bnnehAt670bzPsUE75QXgCYlFwq+DyZ4i/gSWP6h6i33 SVtULaD1c3OFqoHHKHxMFnf8L7vDZ6QqKisoYlnAncG+TJp97IEavREaI3Pcem5o isXalCm1MF4yahcqf6apw+DhRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFWXTCI0 YZAc0lm71ZSOjQr7uZOTMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOmoZMQuMsw2jX35KnPTxm9kvBOynTwLiPyigufDl1e2ONTO7sKlfsY6QFf/X C6wK4hUyoRcaoZLR9eGK8gVtt1kmcf0RPTB2c5Sx2H9BDzCzcwD2crZtZYASFUgM UbfIqbfzu1nYi4GcMrZtRfRFL1Q8my3uB6YTmCjHpXQrGLDq45b+9exWUNZjCKzQ FjpTjIY7Q4kxbUuq3j5FNAN4Mcm5vs5uDx3KdUpw62WrNQe/pmQD0lKVW0ZdNFni LVw9DMFNMO4UPevndmFu4EWUECj7t1MEkulAyc6G6pDEZBoXnrVf//kS4U8san8y YQ373TPI/FAy6hoelo5JASNXBQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:26:09 2026 by rpki-client