$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: 4xb6eKqm7sd5r4CyhsEFx+1UxSXhg2l1sjWrm8lVqfU= Subject key identifier: D3:CD:32:CD:F3:F6:DA:18:59:41:91:C6:9B:73:B1:E3:DA:B4:4A:93 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 138F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 1376 Signing time: Thu 04 Jun 2026 16:58:30 +0000 Manifest this update: Thu 04 Jun 2026 16:58:30 +0000 Manifest next update: Thu 11 Jun 2026 16:58:30 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: Tufy2laMdW7kh2f9YzexArFJLjQYKqHyLWzxg7u4dQc=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: Y5k6Nh1K8NNS0hPh5WTEjL7DqnEuLThuhCaWRqICeaE=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: k+p0xtu7l+Ym0EwSnutl9VlQ16P8ym/648o14VPC7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 16:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5007 (0x138f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Jun 4 16:58:30 2026 GMT Not After : Jun 11 16:58:30 2026 GMT Subject: CN=6a21aeb6-aad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2f:ac:e1:9e:55:9a:ae:11:fa:bb:c0:86:b0: 44:2e:77:42:14:cc:91:86:20:31:ff:9b:86:ed:8b: 83:32:87:3d:c7:fc:0a:83:17:f7:b4:b7:4d:b7:1e: a8:c1:18:2f:3e:3e:9c:f1:c8:1f:30:3a:c4:0e:bb: 70:8a:be:79:18:c7:02:c0:a8:60:b3:cc:c1:6d:43: 2b:07:a5:9c:52:e2:06:2d:24:27:48:97:0e:33:e7: ab:2b:ff:06:c9:d1:93:3d:d3:bf:dc:dc:ca:77:14: 41:15:b4:82:fc:80:89:6c:61:0d:72:2f:4e:79:80: 59:7e:c8:87:14:7b:7d:c9:95:39:40:8b:b5:0d:e0: bc:8f:e8:9b:04:2d:0a:aa:65:f8:30:23:15:64:f2: 23:bc:79:cb:e1:fe:82:da:a9:7b:f3:51:8c:c3:38: f6:75:c6:d6:7a:06:a1:2e:17:17:5a:f2:ad:59:44: d9:cc:e9:2d:43:f5:f0:ee:46:fe:28:37:6e:21:a7: 15:15:85:c3:63:50:3b:27:ac:69:eb:12:7f:64:96: 76:c5:89:50:8b:9a:ea:ee:49:93:8e:7d:97:d0:48: 7b:cc:dc:71:b3:2d:cc:56:a5:d6:50:24:b2:dd:8c: 4b:6e:3f:70:75:92:37:cf:79:8f:c5:94:74:f9:25: cb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CD:32:CD:F3:F6:DA:18:59:41:91:C6:9B:73:B1:E3:DA:B4:4A:93 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:b2:b2:17:c0:47:f7:3b:15:d4:c2:08:3b:4e:02:e9:d7:13: f7:39:7c:a0:55:96:c5:5e:59:d0:aa:3a:4f:38:41:72:a5:2b: 15:2e:33:13:fd:4e:e1:f9:28:b2:6d:87:29:28:18:cf:7f:9e: c3:a0:f2:fc:e9:1b:63:92:60:91:33:0c:aa:ac:82:d8:94:98: cb:30:f6:d6:b7:60:75:f3:95:b9:40:32:0c:e7:45:b7:45:16: 35:67:21:9b:9d:0d:8a:b3:55:6b:3f:11:82:84:eb:16:d6:fc: b1:03:de:f6:29:bd:1b:61:0c:f4:f5:33:96:a0:84:31:89:62: 48:00:3b:7e:a8:72:88:70:d4:ee:da:ec:29:63:f8:4c:94:48: 6b:49:b5:06:9d:37:71:cb:98:ff:b0:75:bf:59:c8:d8:7d:b4: 4b:91:d4:d7:1c:70:6d:37:1a:ed:02:56:9d:ee:f6:63:f8:a7: f9:9a:d4:0d:0a:95:20:14:18:0b:09:c6:98:b3:66:06:32:30: f2:f4:e8:9e:d1:a3:6e:80:d2:37:63:99:4d:47:7e:ed:ac:10: 5f:e6:aa:e1:65:cd:03:0d:c4:dd:2b:df:2a:e3:f0:3f:49:c9: e4:61:5a:d1:2f:df:ca:c2:cb:88:c2:68:01:8b:39:6e:8b:8f: 3a:87:06:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjYwNjA0MTY1ODMwWhcNMjYwNjExMTY1ODMwWjAYMRYwFAYD VQQDEw02YTIxYWViNi1hYWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC+s4Z5Vmq4R+rvAhrBELndCFMyRhiAx/5uG7YuDMoc9x/wKgxf3tLdNtx6o wRgvPj6c8cgfMDrEDrtwir55GMcCwKhgs8zBbUMrB6WcUuIGLSQnSJcOM+erK/8G ydGTPdO/3NzKdxRBFbSC/ICJbGENci9OeYBZfsiHFHt9yZU5QIu1DeC8j+ibBC0K qmX4MCMVZPIjvHnL4f6C2ql781GMwzj2dcbWegahLhcXWvKtWUTZzOktQ/Xw7kb+ KDduIacVFYXDY1A7J6xp6xJ/ZJZ2xYlQi5rq7kmTjn2X0Eh7zNxxsy3MVqXWUCSy 3YxLbj9wdZI3z3mPxZR0+SXLewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNPNMs3z 9toYWUGRxptzsePatEqTMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZLKyF8BH9zsV1MIIO04C6dcT9zl8oFWWxV5Z0Ko6TzhBcqUrFS4zE/1O4fko sm2HKSgYz3+ew6Dy/OkbY5JgkTMMqqyC2JSYyzD21rdgdfOVuUAyDOdFt0UWNWch m50NirNVaz8RgoTrFtb8sQPe9im9G2EM9PUzlqCEMYliSAA7fqhyiHDU7trsKWP4 TJRIa0m1Bp03ccuY/7B1v1nI2H20S5HU1xxwbTca7QJWne72Y/in+ZrUDQqVIBQY CwnGmLNmBjIw8vTontGjboDSN2OZTUd+7awQX+aq4WXNAw3E3SvfKuPwP0nJ5GFa 0S/fysLLiMJoAYs5bouPOocGfw== -----END CERTIFICATE-----Generated at Sat Jun 6 18:05:41 2026 by rpki-client