$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: xx+gppWrqPYR1IVykOOTRxCkdp/YUs2YS1pCe3XPzaI= Subject key identifier: 95:04:51:CB:63:AB:B2:E2:BE:FA:DC:9B:A7:9A:DA:31:F7:71:E8:CC Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 02AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 02A1 Signing time: Thu 21 May 2026 01:39:03 +0000 Manifest this update: Thu 21 May 2026 01:39:02 +0000 Manifest next update: Thu 28 May 2026 01:39:02 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: IU7viQsdVeXzaxzFsv47nqjUdUrMnkWHqcU2ZxJSO/c=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: Ot9ybUKOEhuNzPb2fA0AHKITpD0tgf/ehRwyWkuwPQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: May 21 01:39:02 2026 GMT Not After : May 28 01:39:02 2026 GMT Subject: CN=6a0e6236-21b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4b:1a:3e:e2:8b:71:c3:91:c8:e2:00:87:94: 9d:22:7d:c0:67:97:fb:24:63:18:4e:ea:ed:b1:c0: 4a:47:e8:cd:43:6c:7f:6a:d1:3b:80:a5:95:85:4b: bd:ae:f0:d8:7b:27:76:ae:87:47:33:9f:dd:27:86: 0a:9a:04:d8:99:cc:ce:cb:36:f2:66:80:47:20:b5: b2:7a:af:6d:23:67:04:f8:d0:b4:08:dd:64:1e:97: 36:1a:62:2e:20:9e:ae:7a:2b:4b:9e:54:3c:79:f0: 58:c2:20:41:2c:4b:16:80:e9:fd:03:37:fe:5a:1c: 06:08:72:12:6c:f1:d8:1e:ca:37:91:07:57:c9:49: 6c:52:d7:4e:d5:bf:c1:27:bb:de:62:84:7b:18:eb: 54:b0:75:6c:cd:ce:73:7d:50:b2:2e:e5:0f:d0:f3: ad:58:1b:f5:6d:27:00:75:95:ff:a7:e9:b2:a7:0b: 11:90:10:1a:91:01:57:47:4b:8e:91:a2:a9:a9:4c: 5f:e3:60:d3:7b:eb:18:95:51:f2:c2:26:90:39:ec: 9f:8e:ca:62:43:df:e1:8b:df:cc:39:fb:c7:82:6c: 96:0c:8f:d5:cb:44:69:4c:30:2b:d4:30:8a:02:31: 9a:81:16:1a:b9:ea:23:64:bf:3e:fd:30:b4:86:d4: 1d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:04:51:CB:63:AB:B2:E2:BE:FA:DC:9B:A7:9A:DA:31:F7:71:E8:CC X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:88:90:48:46:33:29:80:0e:c8:75:5d:b1:42:1f:4c:b0:e1: ef:50:60:09:f3:08:b3:22:9d:55:04:64:89:f4:33:3a:27:5b: 39:c9:b3:c6:76:ce:c7:dd:58:57:91:9b:51:51:9a:fa:d8:51: 13:80:d8:e0:47:09:42:3c:c6:7c:fb:b1:28:d3:3e:5b:b0:3d: ef:75:d2:72:80:8d:8b:8b:fe:1f:6d:5c:dc:54:e0:aa:93:31: 31:2b:0d:02:15:64:ec:71:bc:8d:c8:2b:1f:18:3e:8a:fe:95: 81:f3:28:de:9d:d0:a4:71:44:d0:7b:64:8c:18:9d:57:20:31: a9:ab:c8:0e:29:2d:dc:e3:b7:22:1c:e0:2c:fc:06:a2:fc:db: 7d:4c:da:0d:13:ee:12:b8:3e:b7:a2:3d:c0:1a:12:9d:19:be: b9:ee:f3:29:11:55:a2:68:cc:04:cb:27:16:0e:96:84:47:22: 82:e6:c0:35:eb:d7:db:79:f8:8c:df:a5:d5:e6:56:58:c9:14: ca:55:8b:c3:72:28:1f:e3:7a:fd:3c:a5:3b:76:9f:4b:83:d1: 5c:93:50:bd:a8:53:80:71:1d:71:25:65:3a:a7:09:ed:4d:44: 24:cb:38:5b:c2:73:d8:0d:5a:7c:c6:3c:f7:e5:34:c3:83:bd: 6a:be:91:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjYwNTIxMDEzOTAyWhcNMjYwNTI4MDEzOTAyWjAYMRYwFAYD VQQDEw02YTBlNjIzNi0yMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvksaPuKLccORyOIAh5SdIn3AZ5f7JGMYTurtscBKR+jNQ2x/atE7gKWVhUu9 rvDYeyd2rodHM5/dJ4YKmgTYmczOyzbyZoBHILWyeq9tI2cE+NC0CN1kHpc2GmIu IJ6ueitLnlQ8efBYwiBBLEsWgOn9Azf+WhwGCHISbPHYHso3kQdXyUlsUtdO1b/B J7veYoR7GOtUsHVszc5zfVCyLuUP0POtWBv1bScAdZX/p+mypwsRkBAakQFXR0uO kaKpqUxf42DTe+sYlVHywiaQOeyfjspiQ9/hi9/MOfvHgmyWDI/Vy0RpTDAr1DCK AjGagRYaueojZL8+/TC0htQdpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUEUctj q7Livvrcm6ea2jH3cejMMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeIiQSEYzKYAOyHVdsUIfTLDh71BgCfMIsyKdVQRkifQzOidbOcmzxnbOx91Y V5GbUVGa+thRE4DY4EcJQjzGfPuxKNM+W7A973XScoCNi4v+H21c3FTgqpMxMSsN AhVk7HG8jcgrHxg+iv6VgfMo3p3QpHFE0HtkjBidVyAxqavIDikt3OO3IhzgLPwG ovzbfUzaDRPuErg+t6I9wBoSnRm+ue7zKRFVomjMBMsnFg6WhEcigubANevX23n4 jN+l1eZWWMkUylWLw3IoH+N6/TylO3afS4PRXJNQvahTgHEdcSVlOqcJ7U1EJMs4 W8Jz2A1afMY89+U0w4O9ar6Ryg== -----END CERTIFICATE-----Generated at Thu May 21 10:15:06 2026 by rpki-client