$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: biEt9thA3WlmYF28fLwVPPe4F5v64rsz3dDdlEuHAec= Subject key identifier: BD:C4:34:30:FD:21:9C:06:4E:D0:B3:5B:CA:FB:F2:86:26:93:25:C1 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1DAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D8E Signing time: Fri 12 Jun 2026 16:05:17 +0000 Manifest this update: Fri 12 Jun 2026 16:05:16 +0000 Manifest next update: Fri 19 Jun 2026 16:05:16 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: evXcDP0JsHPaQGyyTjQjC2X7zDz/G8d/ntKcfqPAa1w=) 2: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: 8mj54azzqhjHXfOWyNFC53u9e3MBttuOm97GXb6TaYE=) 3: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: SMMdB5FfbHvQ8XxRMRHHqZDp8nFnCc1tqnhGm5C6OOg=) 4: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: uLWtAzm0T2XZ8XrHmk3i4Qv1rCDDVOMUdZgDRK+R9AY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7596 (0x1dac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Jun 12 16:05:16 2026 GMT Not After : Jun 19 16:05:16 2026 GMT Subject: CN=6a2c2e3d-79b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:95:6a:a0:b5:c2:53:b0:10:9f:a0:4d:ed: f4:c8:cb:65:5a:60:34:96:2f:d5:1c:06:eb:4c:c0: 71:7d:6b:8f:56:bd:93:82:5b:ba:f4:4a:d9:b2:b7: d7:5c:1a:2a:7a:42:5a:16:d0:fa:04:3d:06:9b:c6: a1:b1:7f:ed:07:cb:06:05:f6:8a:88:ab:4c:59:44: ca:7b:9a:e2:77:0c:f2:0f:e2:fd:3f:5b:f4:22:e6: 9a:b2:33:8a:f8:a8:7c:cd:43:21:57:65:93:e4:5f: 25:f3:53:69:d2:8f:99:7e:05:c0:78:1a:6c:a8:86: 2e:b9:2e:0c:27:32:a8:6f:3b:a8:e8:ed:1e:77:6b: 7f:44:36:ac:64:aa:f4:4c:fb:3d:11:bb:f7:fa:79: db:22:31:d6:51:48:78:c8:f2:5c:9b:3f:e9:8d:2e: 7e:91:ae:79:10:b3:05:ba:3e:27:d6:94:a8:4a:a8: d4:35:1c:46:37:23:85:dd:6f:b1:de:4a:e0:89:22: 03:41:41:9d:43:b0:b2:a4:46:16:c0:96:fa:f0:30: 5b:b2:8e:a6:b2:c8:44:45:05:02:ce:87:5f:d2:73: 9d:87:93:8f:cc:53:4f:f8:4f:29:d2:da:d3:a3:53: 1d:a5:8d:bc:ef:b7:68:bc:2a:a2:51:1a:f9:8d:67: c2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C4:34:30:FD:21:9C:06:4E:D0:B3:5B:CA:FB:F2:86:26:93:25:C1 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:16:20:eb:ad:b5:c9:ee:76:67:e3:05:ce:20:25:1a:01:d0: 6f:14:26:3e:2b:c5:38:35:b1:9a:58:26:49:b8:f5:58:24:08: 23:c1:15:0a:d1:77:bb:f5:7f:f7:c4:a3:d1:75:47:3b:00:b4: b7:27:76:ea:cb:03:45:1f:bb:0f:9a:74:43:5e:ea:32:0a:7e: 83:0c:8b:51:26:24:0a:a3:4b:b6:c4:de:50:a0:a2:b5:51:30: 6d:9b:35:bd:26:02:77:f6:31:67:e7:dc:25:7c:90:63:f6:8d: 0f:69:6d:fd:a7:1b:25:41:73:e5:29:c4:eb:30:ba:d8:51:a9: 7e:98:f5:79:d4:c3:63:ae:ee:00:69:64:82:eb:a6:93:c9:d9: 6c:33:bc:54:22:50:2d:46:18:71:c7:00:61:44:5b:ae:ac:12: 91:97:2b:5d:c6:22:11:7c:4d:50:79:e5:08:66:fe:cd:50:51: 1a:b8:a8:e8:fb:ff:ad:d0:fa:f1:7b:f8:b4:39:b3:0a:7f:56: c1:84:d7:49:28:59:8f:72:15:66:d3:35:9b:ca:1b:f9:80:8d: e7:6f:8e:ce:65:10:8c:54:b4:e9:a2:b2:2e:7a:43:d2:43:be: e7:0a:7e:8f:7c:d4:39:c0:90:09:f9:3e:02:c9:ed:ae:8d:b9: e3:3a:5c:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjYwNjEyMTYwNTE2WhcNMjYwNjE5MTYwNTE2WjAYMRYwFAYD VQQDEw02YTJjMmUzZC03OWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7GVaqC1wlOwEJ+gTe30yMtlWmA0li/VHAbrTMBxfWuPVr2Tglu69ErZsrfX XBoqekJaFtD6BD0Gm8ahsX/tB8sGBfaKiKtMWUTKe5ridwzyD+L9P1v0IuaasjOK +Kh8zUMhV2WT5F8l81Np0o+ZfgXAeBpsqIYuuS4MJzKobzuo6O0ed2t/RDasZKr0 TPs9Ebv3+nnbIjHWUUh4yPJcmz/pjS5+ka55ELMFuj4n1pSoSqjUNRxGNyOF3W+x 3krgiSIDQUGdQ7CypEYWwJb68DBbso6msshERQUCzodf0nOdh5OPzFNP+E8p0trT o1MdpY2877dovCqiURr5jWfCUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL3ENDD9 IZwGTtCzW8r78oYmkyXBMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANxYg6621ye52Z+MFziAlGgHQbxQmPivFODWxmlgmSbj1WCQII8EVCtF3u/V/ 98Sj0XVHOwC0tyd26ssDRR+7D5p0Q17qMgp+gwyLUSYkCqNLtsTeUKCitVEwbZs1 vSYCd/YxZ+fcJXyQY/aND2lt/acbJUFz5SnE6zC62FGpfpj1edTDY67uAGlkguum k8nZbDO8VCJQLUYYcccAYURbrqwSkZcrXcYiEXxNUHnlCGb+zVBRGrio6Pv/rdD6 8Xv4tDmzCn9WwYTXSShZj3IVZtM1m8ob+YCN52+OzmUQjFS06aKyLnpD0kO+5wp+ j3zUOcCQCfk+Asntro254zpcDA== -----END CERTIFICATE-----Generated at Sun Jun 14 04:08:56 2026 by rpki-client