$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: GVmwS6uL9pf12BUuugPu36gYW8WvDJNJQbRUtNsppH4= Subject key identifier: 50:5C:6E:FB:43:F5:F0:21:C0:1E:F4:D0:D3:51:CE:DF:84:55:28:1D Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 092A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 090A Signing time: Fri 12 Jun 2026 20:20:30 +0000 Manifest this update: Fri 12 Jun 2026 20:20:30 +0000 Manifest next update: Fri 19 Jun 2026 20:20:30 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: N7wy5dJmPFf5Tbkm8XGGu4t+05iYJphZNFJ6qvpgZk8=) 2: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Vl3ljhabWGTlG6GqBHRNZlqYXeuSFP4BoWLikf0UCmo=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: 30DNpUpUJwy2It5xAnDm6pl6G00ZZjWgrPOcvF+5H9w=) 4: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: gl38JCfINuQj5r+ArpGOl2htLCM9Mgwqo9xw/lh130Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2346 (0x92a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Jun 12 20:20:30 2026 GMT Not After : Jun 19 20:20:30 2026 GMT Subject: CN=6a2c6a0e-acbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:15:ed:76:7c:5c:97:a2:6e:c4:eb:1a:63:fb: 93:c0:43:af:d6:78:39:c3:b1:34:26:d0:a6:fe:08: ae:ba:4e:c1:35:d4:3a:5a:e9:11:46:03:62:94:c3: ee:1a:fa:ed:f2:32:83:86:8c:62:4d:56:85:d4:0d: 79:11:4a:5f:12:80:7b:ab:69:38:ec:96:e6:e4:15: 30:f8:0b:3a:ce:8f:58:87:b5:d0:91:d3:4b:4d:bc: 14:0e:78:f6:5d:3c:b5:7f:94:46:31:af:a5:f5:86: 37:d3:7c:e7:aa:df:fc:b7:5c:0a:26:18:8a:00:2b: 9e:e4:ec:6c:91:9f:f4:25:b8:b4:a1:45:b1:19:22: 77:42:be:53:1e:f6:4f:e6:aa:b0:db:93:bc:91:7a: 9a:6e:9e:52:21:c8:71:3b:36:30:15:a2:61:f5:0a: 8a:11:b3:b1:60:23:96:89:95:89:c8:56:4e:b0:2a: a3:59:58:e0:ed:14:5c:f9:60:a0:8b:3d:3c:51:23: ce:bb:9e:c9:43:3f:a8:2e:87:8d:18:d0:9c:c9:f1: d8:18:8c:d1:1c:41:ce:9a:bd:17:c8:b9:c1:b7:87: f3:0b:55:ec:71:91:4f:a6:43:c8:63:d4:29:07:1a: 3a:48:25:5e:3e:da:e3:a9:12:6b:58:d5:59:f9:e5: 74:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5C:6E:FB:43:F5:F0:21:C0:1E:F4:D0:D3:51:CE:DF:84:55:28:1D X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:40:61:f1:5a:42:be:57:12:54:b5:6b:a4:70:5f:bb:c9:5d: a2:a8:14:76:50:8d:19:f0:f9:b4:27:bd:e1:a5:93:ce:2c:bb: db:68:be:57:a1:23:a5:49:aa:12:0b:e4:90:0f:e9:fa:20:e4: ac:ca:98:2b:fa:ec:8d:a4:52:ac:6d:51:82:c2:a5:39:36:8d: 2a:00:d6:d2:2d:a5:b7:55:d3:d0:17:ec:5c:40:bf:b6:6c:ab: 62:a4:17:42:ed:5d:3e:7d:ed:ef:bd:05:0d:e0:28:9b:86:90: 55:78:89:a8:43:07:29:f6:1f:7d:2b:8b:44:4c:e5:74:f4:50: 83:4f:6e:40:e3:c9:21:42:42:5e:29:96:22:65:55:f3:04:c6: 1e:fc:5a:a7:8c:6d:dc:0e:1b:cb:89:95:2d:12:19:ed:38:82: e1:64:52:45:9e:98:f2:93:14:5f:47:94:63:3a:a8:49:b0:75: aa:93:de:5f:14:8f:d0:07:b5:c5:dc:3b:94:9a:32:03:b5:2c: 2e:b9:49:89:c1:e0:84:53:35:48:85:fe:16:5e:3f:62:4a:4a: 30:e1:a0:36:6e:0a:02:be:c1:d8:e2:25:06:4f:62:3f:c9:3d: e8:92:81:24:f6:a6:d6:e2:04:b9:b4:44:0c:c6:ec:58:8c:8f: a7:b8:bd:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwNjEyMjAyMDMwWhcNMjYwNjE5MjAyMDMwWjAYMRYwFAYD VQQDEw02YTJjNmEwZS1hY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxXtdnxcl6JuxOsaY/uTwEOv1ng5w7E0JtCm/giuuk7BNdQ6WukRRgNilMPu Gvrt8jKDhoxiTVaF1A15EUpfEoB7q2k47Jbm5BUw+As6zo9Yh7XQkdNLTbwUDnj2 XTy1f5RGMa+l9YY303znqt/8t1wKJhiKACue5OxskZ/0Jbi0oUWxGSJ3Qr5THvZP 5qqw25O8kXqabp5SIchxOzYwFaJh9QqKEbOxYCOWiZWJyFZOsCqjWVjg7RRc+WCg iz08USPOu57JQz+oLoeNGNCcyfHYGIzRHEHOmr0XyLnBt4fzC1XscZFPpkPIY9Qp Bxo6SCVePtrjqRJrWNVZ+eV0RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFBcbvtD 9fAhwB700NNRzt+EVSgdMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQkBh8VpCvlcSVLVrpHBfu8ldoqgUdlCNGfD5tCe94aWTziy722i+V6EjpUmq EgvkkA/p+iDkrMqYK/rsjaRSrG1RgsKlOTaNKgDW0i2lt1XT0BfsXEC/tmyrYqQX Qu1dPn3t770FDeAom4aQVXiJqEMHKfYffSuLREzldPRQg09uQOPJIUJCXimWImVV 8wTGHvxap4xt3A4by4mVLRIZ7TiC4WRSRZ6Y8pMUX0eUYzqoSbB1qpPeXxSP0Ae1 xdw7lJoyA7UsLrlJicHghFM1SIX+Fl4/YkpKMOGgNm4KAr7B2OIlBk9iP8k96JKB JPam1uIEubREDMbsWIyPp7i9XQ== -----END CERTIFICATE-----Generated at Sat Jun 13 17:10:08 2026 by rpki-client