$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: CxBiQIs9Qg2q0y1UfKACqAZ70YcRxS5p/HSjj7nsHZc= Subject key identifier: 42:6E:94:D9:86:F4:02:57:0D:DD:D9:10:EA:A2:D4:B5:67:DD:C3:E7 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0AD2 Signing time: Fri 12 Jun 2026 19:27:19 +0000 Manifest this update: Fri 12 Jun 2026 19:27:18 +0000 Manifest next update: Fri 19 Jun 2026 19:27:18 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: wzaAAG92iuDMFp0wrzFTMNnI7Z55mw9+lKtuvQHMowg=) 2: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) 3: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) 4: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Jun 12 19:27:18 2026 GMT Not After : Jun 19 19:27:18 2026 GMT Subject: CN=6a2c5d97-0d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:88:3b:69:b4:7d:c3:45:9d:3b:7c:30:76:2a: 5a:0f:33:56:f6:41:c9:e0:50:f8:34:e9:64:c0:ce: 0f:0c:cd:ae:8d:7c:92:0a:f5:10:c2:de:96:95:f4: 31:1b:d1:57:c2:e9:d6:ad:e6:87:83:c5:9e:69:51: e7:f5:0d:bf:17:c6:7a:bf:ea:63:49:d4:63:77:05: e3:2e:4e:1e:20:cd:be:57:95:a4:10:e6:78:f6:6f: f2:d0:5b:56:34:a0:d0:a0:88:48:63:9e:fc:53:0f: ae:c2:d5:f0:88:47:e7:5c:99:da:1f:c4:1b:35:1e: 2c:75:9f:3f:47:7d:4b:3c:6c:93:40:99:fe:57:0e: ec:ba:7a:13:47:1c:38:04:7b:a8:86:b0:db:59:13: 24:19:6c:82:b1:bf:12:3f:bc:4c:5c:b7:75:62:db: 7b:c7:f8:9a:0e:29:2a:e0:15:0c:34:5f:bd:0e:0d: ab:5f:02:d4:d8:18:7d:89:ad:84:07:06:fc:d8:91: f4:82:c8:b5:4b:80:c1:32:0e:0e:18:cf:e5:9e:29: b7:ef:36:6e:08:f0:a5:2c:d6:6d:aa:50:d5:b9:d2: 5b:14:da:62:e7:fa:b7:ff:6c:6d:81:02:30:2b:29: 4b:9a:f5:53:53:da:50:34:6d:93:5f:30:11:0b:09: ae:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6E:94:D9:86:F4:02:57:0D:DD:D9:10:EA:A2:D4:B5:67:DD:C3:E7 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0e:a9:95:8d:ec:0e:a5:68:d4:81:3e:1f:6a:31:bc:69:1d: 5c:bb:2f:f4:1f:64:fa:d0:5c:cd:3f:6d:27:99:d9:02:0f:35: 37:8e:1f:57:5b:2c:a8:9c:84:c1:5c:d1:60:ff:48:70:f3:dd: 1d:b4:c8:71:e1:9e:91:7a:be:aa:5e:83:ee:cb:ba:b5:9c:10: e0:21:61:e2:02:6c:dc:82:5e:98:01:5f:e0:30:cf:b5:21:db: 87:f7:d1:c6:3e:89:f9:cb:00:20:3b:1f:a7:54:26:94:cf:45: 52:df:d1:d7:00:d2:f2:a4:ee:2c:dd:c6:ed:e5:ee:69:d9:24: 70:a9:ab:1d:7f:b4:e8:8c:15:31:37:73:37:fb:dc:2f:1e:16: 8c:3a:72:6b:3f:b5:a5:13:9e:45:39:97:ce:5b:16:05:b2:92: 1d:44:72:79:41:25:c4:51:dd:23:06:e7:89:a7:71:48:a6:0c: 82:cb:ac:0c:e9:7d:6c:30:7f:4a:5e:e1:78:f1:40:7b:f6:4f: b1:f8:01:fc:d2:34:da:ae:b9:59:97:74:5a:fa:38:fe:3c:31: 23:95:cf:8a:ae:f6:9d:41:20:9e:a0:ac:2c:0f:e1:92:38:ea: 13:94:81:50:f9:16:00:02:40:69:46:b2:1d:44:e7:4a:68:75: b9:b1:e7:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwNjEyMTkyNzE4WhcNMjYwNjE5MTkyNzE4WjAYMRYwFAYD VQQDEw02YTJjNWQ5Ny0wZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIg7abR9w0WdO3wwdipaDzNW9kHJ4FD4NOlkwM4PDM2ujXySCvUQwt6WlfQx G9FXwunWreaHg8WeaVHn9Q2/F8Z6v+pjSdRjdwXjLk4eIM2+V5WkEOZ49m/y0FtW NKDQoIhIY578Uw+uwtXwiEfnXJnaH8QbNR4sdZ8/R31LPGyTQJn+Vw7sunoTRxw4 BHuohrDbWRMkGWyCsb8SP7xMXLd1Ytt7x/iaDikq4BUMNF+9Dg2rXwLU2Bh9ia2E Bwb82JH0gsi1S4DBMg4OGM/lnim37zZuCPClLNZtqlDVudJbFNpi5/q3/2xtgQIw KylLmvVTU9pQNG2TXzARCwmuwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEJulNmG 9AJXDd3ZEOqi1LVn3cPnMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABw6plY3sDqVo1IE+H2oxvGkdXLsv9B9k+tBczT9tJ5nZAg81N44fV1ssqJyE wVzRYP9IcPPdHbTIceGekXq+ql6D7su6tZwQ4CFh4gJs3IJemAFf4DDPtSHbh/fR xj6J+csAIDsfp1QmlM9FUt/R1wDS8qTuLN3G7eXuadkkcKmrHX+06IwVMTdzN/vc Lx4WjDpyaz+1pROeRTmXzlsWBbKSHURyeUElxFHdIwbniadxSKYMgsusDOl9bDB/ Sl7hePFAe/ZPsfgB/NI02q65WZd0Wvo4/jwxI5XPiq72nUEgnqCsLA/hkjjqE5SB UPkWAAJAaUayHUTnSmh1ubHnpw== -----END CERTIFICATE-----Generated at Sat Jun 13 09:55:12 2026 by rpki-client