$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: g3Vvyp9yBOiXouSbr0nhSLJnszUaFjtCKUfYOmQAra8= Subject key identifier: 8C:75:75:CA:46:1C:3F:94:7D:36:66:C0:44:E5:EF:C5:06:F6:F4:4D Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 04F4 Signing time: Wed 20 May 2026 23:51:04 +0000 Manifest this update: Wed 20 May 2026 23:51:04 +0000 Manifest next update: Wed 27 May 2026 23:51:04 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: inuUQgCG8FLpECdtrmeQ6u3ImmDMYxicxVQTc1w4Sbg=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: May 20 23:51:04 2026 GMT Not After : May 27 23:51:04 2026 GMT Subject: CN=6a0e48e8-a953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5f:91:37:0e:b5:db:01:62:a5:f6:c7:7b:0c: 9b:67:5b:db:31:0a:77:7e:fb:68:82:e3:9d:2f:38: 6c:5d:53:4a:3a:32:bf:98:3d:94:a7:74:3e:dc:f2: 12:a9:f8:51:b6:4d:7b:7a:43:1a:2f:df:95:c6:16: f9:92:8c:93:00:98:62:a8:b4:94:f8:52:2e:1d:79: 96:42:f1:49:a1:e6:0d:7b:e9:99:15:6d:0b:a6:8c: 64:44:77:c6:0e:81:87:00:3b:9f:24:b4:2b:39:bc: c6:84:79:df:0b:6c:0c:c7:aa:ee:02:7d:63:e3:f3: 92:c7:2f:13:20:83:3d:17:bd:15:31:e0:b0:42:fc: 84:56:c5:d1:ca:8b:c5:42:94:a3:f5:a5:04:e6:20: 9c:6e:61:d8:07:50:bd:51:7e:9f:f5:f0:1e:96:31: ea:5d:74:46:11:e7:c8:80:88:a0:96:78:84:59:1f: 6c:b3:e3:10:f4:3e:57:36:06:25:ed:09:1f:85:5e: 99:5a:9b:85:b3:0b:89:02:f3:d4:f8:c4:81:58:97: 88:a7:db:b1:6b:94:08:b9:c3:b7:e5:84:55:8b:ce: 06:a6:d4:bf:c6:58:12:3b:94:5e:d7:42:d4:25:13: 70:b5:6d:2a:83:83:ed:72:a7:8b:7a:94:38:64:4f: b3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:75:75:CA:46:1C:3F:94:7D:36:66:C0:44:E5:EF:C5:06:F6:F4:4D X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f5:0b:c9:d8:d3:78:c2:74:da:05:37:23:1e:77:e8:bf:ef: 86:0b:c1:b5:d8:15:47:9d:97:37:40:dc:3b:05:c7:24:7e:f2: 9a:04:c6:41:48:2f:6e:f7:9a:88:2c:6b:8b:e6:7f:3f:1f:d5: df:fe:94:86:ac:4e:60:a5:38:84:ce:c2:99:9b:34:a9:f8:ae: 56:89:38:bc:a9:ba:cf:05:07:0b:b3:5f:d6:1b:d1:a2:98:82: ab:98:7b:cd:29:8e:11:99:9f:73:7f:61:b0:08:77:7a:68:4c: f3:e0:e5:f7:d3:58:58:7e:96:58:93:5b:e5:c6:56:74:54:5f: 1d:7c:30:a7:26:e1:7d:50:86:f0:d0:2a:e1:31:3c:a0:aa:15: 2a:5c:92:ba:0a:c6:eb:50:38:c7:53:f3:73:49:f6:58:15:50: f6:6c:e6:bd:7c:7c:3e:2c:7c:16:6a:3e:8d:b3:13:e1:63:a3: 94:4f:ac:05:9c:f9:65:60:54:9f:b8:c2:9a:1e:8e:45:e4:6d: 8a:59:06:f8:0a:8b:88:fd:42:77:eb:49:96:ee:fd:e2:af:04: 3c:6c:e8:99:d2:bd:aa:5e:14:c4:1f:8e:82:68:b0:f2:27:14: 21:ca:3e:09:22:02:aa:d1:d1:8c:a5:b9:a2:9a:0e:4a:5a:c8: 68:ae:65:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjYwNTIwMjM1MTA0WhcNMjYwNTI3MjM1MTA0WjAYMRYwFAYD VQQDEw02YTBlNDhlOC1hOTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF+RNw612wFipfbHewybZ1vbMQp3fvtoguOdLzhsXVNKOjK/mD2Up3Q+3PIS qfhRtk17ekMaL9+Vxhb5koyTAJhiqLSU+FIuHXmWQvFJoeYNe+mZFW0LpoxkRHfG DoGHADufJLQrObzGhHnfC2wMx6ruAn1j4/OSxy8TIIM9F70VMeCwQvyEVsXRyovF QpSj9aUE5iCcbmHYB1C9UX6f9fAeljHqXXRGEefIgIiglniEWR9ss+MQ9D5XNgYl 7QkfhV6ZWpuFswuJAvPU+MSBWJeIp9uxa5QIucO35YRVi84GptS/xlgSO5Re10LU JRNwtW0qg4PtcqeLepQ4ZE+zDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIx1dcpG HD+UfTZmwETl78UG9vRNMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMPULydjTeMJ02gU3Ix536L/vhgvBtdgVR52XN0DcOwXHJH7ymgTGQUgvbvea iCxri+Z/Px/V3/6UhqxOYKU4hM7CmZs0qfiuVok4vKm6zwUHC7Nf1hvRopiCq5h7 zSmOEZmfc39hsAh3emhM8+Dl99NYWH6WWJNb5cZWdFRfHXwwpybhfVCG8NAq4TE8 oKoVKlySugrG61A4x1Pzc0n2WBVQ9mzmvXx8Pix8Fmo+jbMT4WOjlE+sBZz5ZWBU n7jCmh6OReRtilkG+AqLiP1Cd+tJlu794q8EPGzomdK9ql4UxB+Ogmiw8icUIco+ CSICqtHRjKW5opoOSlrIaK5lgQ== -----END CERTIFICATE-----Generated at Thu May 21 09:36:55 2026 by rpki-client