$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: q3/5MxaniKhb5umac5RSy8o2duvd5E3fX7fzuR3YwwQ= Subject key identifier: 89:06:85:6C:A2:8A:B2:D9:AD:2F:A7:E1:DA:40:29:97:35:CF:DD:9D Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 07A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 077E Signing time: Sun 31 May 2026 21:52:28 +0000 Manifest this update: Sun 31 May 2026 21:52:27 +0000 Manifest next update: Sun 07 Jun 2026 21:52:27 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: sjA+rEuOnGKDCgTDKmBqcSrOaROUaUSDPVioLQj7cQE=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: QZpGdBeLR/9QiZlZAdnU1Y45E5G+uOVVhczPqvB6SAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 21:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: May 31 21:52:27 2026 GMT Not After : Jun 7 21:52:27 2026 GMT Subject: CN=6a1cad9b-d80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fa:68:cc:14:d0:cc:4a:15:b6:00:38:64:c6: 2e:09:3d:a4:f0:11:35:2f:07:cb:aa:bf:aa:9b:c8: a4:ca:d8:9e:a9:62:6e:3a:0a:f9:a5:b7:ed:c4:1e: 05:86:49:9b:b2:8d:4e:5e:8b:73:13:e7:ab:8e:1c: 2d:83:1d:d0:4e:16:cc:a8:20:19:d5:ef:24:01:d5: 9b:86:26:56:78:49:bc:2b:41:a5:06:a9:1d:ee:98: 60:41:a7:d3:5c:4c:d0:6c:e9:92:92:86:e6:89:84: 0b:96:7a:c6:c1:87:10:d6:12:c4:84:e0:1f:8f:56: 30:6e:2c:cb:ae:95:ef:9f:26:4a:bb:54:12:e5:a5: ea:96:6d:67:5c:7b:44:01:0b:26:ea:5f:27:15:6c: ea:75:a9:10:ba:a5:0b:7d:e6:34:6f:32:d6:20:d8: 5c:ce:b5:ac:0a:03:e1:91:dc:ff:d6:7c:c6:57:8f: e3:20:3c:53:51:5d:02:c0:72:4d:34:b5:e3:83:16: bf:3c:b9:f8:4d:79:dc:62:99:be:3b:23:4a:b1:3d: 24:7c:16:25:89:11:0f:c8:15:51:e3:8a:ea:09:cc: 0c:18:fa:6e:98:61:19:62:75:2d:4e:9a:a9:9f:35: 6f:ef:ed:03:9d:30:91:17:f1:04:bc:59:c9:0e:d2: fc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:06:85:6C:A2:8A:B2:D9:AD:2F:A7:E1:DA:40:29:97:35:CF:DD:9D X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:6e:d8:09:ee:6c:78:d0:8d:82:aa:2f:2c:38:bf:54:be:0a: 38:77:59:dd:7b:48:39:c3:2b:e8:5e:73:7e:f1:68:9e:45:a8: 9b:b5:5e:e1:be:2e:71:01:33:55:0b:1c:e8:9c:d3:78:ed:26: 18:8b:bd:c8:86:21:ab:d0:6b:c6:51:50:9a:4f:64:46:7f:f9: 3e:d1:11:a6:98:d8:02:ed:0a:48:d7:f2:7f:d8:9b:60:9e:9c: 49:47:c8:14:8e:04:8f:23:78:a5:67:d6:c1:64:de:12:82:ac: 80:63:19:1d:a1:17:30:a2:99:ea:2a:f3:f3:e0:a2:85:f6:0b: 05:aa:22:f4:cd:d9:3c:e7:b7:34:43:93:35:b8:0f:95:93:c4: f8:1a:c7:01:64:9d:85:be:d7:ae:1a:4e:6d:aa:18:8d:cf:61: c5:42:77:89:f6:86:81:52:cd:03:fc:fa:4a:ec:26:32:b9:49: ff:48:e1:7e:f6:bc:24:f5:2a:06:83:46:91:45:dc:3a:84:50: 3b:a5:03:16:8f:99:56:d5:13:9e:42:ce:1b:34:31:67:b0:dc: ec:ed:de:39:04:ba:82:b5:35:f5:08:b2:c3:b6:aa:45:79:04: 0d:9d:15:3a:49:e0:c4:0f:10:35:8d:0f:80:84:69:b3:7d:87: ba:16:6c:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjYwNTMxMjE1MjI3WhcNMjYwNjA3MjE1MjI3WjAYMRYwFAYD VQQDEw02YTFjYWQ5Yi1kODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvpozBTQzEoVtgA4ZMYuCT2k8BE1LwfLqr+qm8ikytieqWJuOgr5pbftxB4F hkmbso1OXotzE+erjhwtgx3QThbMqCAZ1e8kAdWbhiZWeEm8K0GlBqkd7phgQafT XEzQbOmSkobmiYQLlnrGwYcQ1hLEhOAfj1YwbizLrpXvnyZKu1QS5aXqlm1nXHtE AQsm6l8nFWzqdakQuqULfeY0bzLWINhczrWsCgPhkdz/1nzGV4/jIDxTUV0CwHJN NLXjgxa/PLn4TXncYpm+OyNKsT0kfBYliREPyBVR44rqCcwMGPpumGEZYnUtTpqp nzVv7+0DnTCRF/EEvFnJDtL8wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIkGhWyi irLZrS+n4dpAKZc1z92dMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALm7YCe5seNCNgqovLDi/VL4KOHdZ3XtIOcMr6F5zfvFonkWom7Ve4b4ucQEz VQsc6JzTeO0mGIu9yIYhq9BrxlFQmk9kRn/5PtERppjYAu0KSNfyf9ibYJ6cSUfI FI4EjyN4pWfWwWTeEoKsgGMZHaEXMKKZ6irz8+CihfYLBaoi9M3ZPOe3NEOTNbgP lZPE+BrHAWSdhb7XrhpObaoYjc9hxUJ3ifaGgVLNA/z6SuwmMrlJ/0jhfva8JPUq BoNGkUXcOoRQO6UDFo+ZVtUTnkLOGzQxZ7Dc7O3eOQS6grU19Qiyw7aqRXkEDZ0V OkngxA8QNY0PgIRps32HuhZsMw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:44 2026 by rpki-client