$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: wOujFDXI6Bp1Yh8i/p+hi0PpJKAfDt3gcX4D4h1e5dQ= Subject key identifier: 17:91:B8:D4:1D:9F:8A:C4:A4:D1:C9:1E:6D:87:33:03:13:01:8D:BC Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1378 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 135F Signing time: Mon 20 Apr 2026 16:56:06 +0000 Manifest this update: Mon 20 Apr 2026 16:56:06 +0000 Manifest next update: Mon 27 Apr 2026 16:56:06 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: Ia4tLmFw6J2Vsy6HCzcFQIbbwsoAr5CuystKx26AbJQ=) 2: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: k+p0xtu7l+Ym0EwSnutl9VlQ16P8ym/648o14VPC7t8=) 3: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: Y5k6Nh1K8NNS0hPh5WTEjL7DqnEuLThuhCaWRqICeaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4984 (0x1378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Apr 20 16:56:06 2026 GMT Not After : Apr 27 16:56:06 2026 GMT Subject: CN=69e65aa6-ac6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5d:e1:33:35:6d:76:af:ec:7f:c3:64:14:23: 5b:84:ce:cd:77:2d:6d:43:80:1e:0c:8d:25:8d:14: 69:93:92:42:49:3f:34:65:73:eb:44:f5:32:f6:5c: 24:94:41:38:87:d6:4a:26:0e:c4:a5:17:ae:d4:c0: f7:bb:f2:d4:1b:c2:4f:30:27:0a:d2:a4:f2:dd:90: 3b:0a:2f:39:3f:6b:d1:ac:71:09:35:56:0b:00:0f: c0:b9:29:1d:bb:be:12:ea:30:e7:db:a7:44:29:d7: 20:06:04:fc:d1:13:a8:64:67:d3:07:ba:5c:c5:e5: 51:13:0c:d5:75:db:a1:15:90:d7:68:f4:da:d6:2b: 81:91:28:f3:7e:fd:0f:94:fa:40:e1:fc:32:49:da: 1d:70:33:2f:51:4e:5d:8b:79:51:44:3e:ba:10:26: e4:f0:5c:29:8a:ab:b7:f1:08:56:87:10:63:5c:26: c5:cf:73:5d:e3:fc:8a:7f:85:41:d7:12:68:74:41: c1:75:73:db:0b:48:61:3d:fe:07:cb:ec:19:cd:e1: 9b:45:12:49:6a:96:e3:ba:77:28:c7:83:f4:01:27: 82:d7:b8:4b:33:d1:5e:f6:6f:6e:84:0b:09:b2:f9: c2:b7:96:54:86:87:b5:52:65:9e:42:ed:1c:87:49: 7b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:91:B8:D4:1D:9F:8A:C4:A4:D1:C9:1E:6D:87:33:03:13:01:8D:BC X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:87:d3:ab:a4:f3:0d:c0:3a:27:af:1f:f1:63:67:cf:79:8d: 72:d1:b8:8f:34:94:e0:f8:8b:f9:14:d4:76:f5:c7:05:9f:37: f6:9b:bd:14:b9:e4:9f:88:08:64:bd:43:a2:84:01:c4:76:e9: 3e:81:5b:49:d0:f6:3d:71:2b:06:ad:cd:d7:04:33:aa:83:d2: ae:64:95:7c:13:29:d7:92:9a:05:b1:98:54:2c:4e:f4:83:0f: 9e:c0:9d:ee:6e:3e:09:02:fc:50:ca:0f:ac:74:53:71:dd:c6: 78:54:47:06:85:02:bd:5a:5b:f3:8f:86:4c:26:be:e0:2a:22: dd:bb:d3:7e:2e:36:c1:b3:ff:87:67:08:ae:25:af:15:32:ee: 28:59:bf:b0:57:7e:93:10:8b:1c:dc:26:41:f2:73:2c:01:61: 0c:bf:bf:23:15:a6:80:10:41:b9:56:b4:e4:a9:a1:62:b8:39: e5:b9:25:1f:dd:99:57:05:26:70:d6:98:9e:de:47:a6:50:15: 03:cb:ad:ca:96:09:7c:ae:97:2d:52:e2:22:02:22:9b:52:a6: 10:b7:e4:3b:39:81:45:23:c8:4d:9c:18:da:ed:c0:a3:c5:45: 61:c7:e2:8c:1b:47:e5:be:24:8f:5b:ac:70:8e:6a:25:d2:cd: 05:a8:40:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjYwNDIwMTY1NjA2WhcNMjYwNDI3MTY1NjA2WjAYMRYwFAYD VQQDEw02OWU2NWFhNi1hYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq13hMzVtdq/sf8NkFCNbhM7Ndy1tQ4AeDI0ljRRpk5JCST80ZXPrRPUy9lwk lEE4h9ZKJg7EpReu1MD3u/LUG8JPMCcK0qTy3ZA7Ci85P2vRrHEJNVYLAA/AuSkd u74S6jDn26dEKdcgBgT80ROoZGfTB7pcxeVREwzVdduhFZDXaPTa1iuBkSjzfv0P lPpA4fwySdodcDMvUU5di3lRRD66ECbk8Fwpiqu38QhWhxBjXCbFz3Nd4/yKf4VB 1xJodEHBdXPbC0hhPf4Hy+wZzeGbRRJJapbjuncox4P0ASeC17hLM9Fe9m9uhAsJ svnCt5ZUhoe1UmWeQu0ch0l7kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBeRuNQd n4rEpNHJHm2HMwMTAY28MB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJofTq6TzDcA6J68f8WNnz3mNctG4jzSU4PiL+RTUdvXHBZ839pu9FLnkn4gI ZL1DooQBxHbpPoFbSdD2PXErBq3N1wQzqoPSrmSVfBMp15KaBbGYVCxO9IMPnsCd 7m4+CQL8UMoPrHRTcd3GeFRHBoUCvVpb84+GTCa+4Coi3bvTfi42wbP/h2cIriWv FTLuKFm/sFd+kxCLHNwmQfJzLAFhDL+/IxWmgBBBuVa05KmhYrg55bklH92ZVwUm cNaYnt5HplAVA8utypYJfK6XLVLiIgIim1KmELfkOzmBRSPITZwY2u3Ao8VFYcfi jBtH5b4kj1uscI5qJdLNBahATA== -----END CERTIFICATE-----Generated at Wed Apr 22 06:01:37 2026 by rpki-client