$ rpki-client -vvf rpki.apnic.net/member_repository/A9191BBE/B7B98FAC529911F18991193D90833773/IKFf0591NMenolMf7YtaFwipP1I.mft File: IKFf0591NMenolMf7YtaFwipP1I.mft (raw, json) Hash identifier: Ztn+UZ2L30d3BDnb5e8gigk+fuZeZOarM9CheK5Rfd0= Subject key identifier: 3D:B6:48:F6:48:AE:28:03:31:CC:91:84:74:75:B6:FB:31:C5:BC:8D Authority key identifier: 20:A1:5F:D3:9F:75:34:C7:A7:A2:53:1F:ED:8B:5A:17:08:A9:3F:52 Certificate issuer: /CN=A9191BBE/serialNumber=20A15FD39F7534C7A7A2531FED8B5A1708A93F52 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IKFf0591NMenolMf7YtaFwipP1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191BBE/B7B98FAC529911F18991193D90833773/IKFf0591NMenolMf7YtaFwipP1I.mft Manifest number: 05 Signing time: Tue 19 May 2026 09:08:02 +0000 Manifest this update: Tue 19 May 2026 09:08:01 +0000 Manifest next update: Tue 26 May 2026 09:08:01 +0000 Files and hashes: 1: IKFf0591NMenolMf7YtaFwipP1I.crl (hash: NVMkQ+ItHXuNo8ZRG4/ihFubzIlyGIKlgvPXTpeaJW4=) 2: 01A09AD4529A11F1B2F4C97190833773.roa (hash: LeQAKpSHZPhzl/yDoMV2G62pZQxQb0sxO6TIaMOgO10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191BBE/B7B98FAC529911F18991193D90833773/IKFf0591NMenolMf7YtaFwipP1I.crl rsync://rpki.apnic.net/member_repository/A9191BBE/B7B98FAC529911F18991193D90833773/IKFf0591NMenolMf7YtaFwipP1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IKFf0591NMenolMf7YtaFwipP1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 09:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191BBE, serialNumber=20A15FD39F7534C7A7A2531FED8B5A1708A93F52 Validity Not Before: May 19 09:08:01 2026 GMT Not After : May 26 09:08:01 2026 GMT Subject: CN=6a0c2871-bfa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c5:0f:ad:6b:c1:e8:01:65:44:74:96:f8:18: f8:2a:65:a7:0d:d5:bd:f0:f8:09:81:5a:db:ec:1b: 20:47:2a:57:b7:7e:6b:e2:a5:5a:3f:02:18:d0:ed: 9c:2c:3d:00:45:58:f1:91:8f:b2:de:93:a3:e6:2c: 70:53:36:1d:15:4f:81:dc:f4:f6:b6:13:55:68:0e: 34:dd:0c:70:24:f0:e5:47:2c:3e:bb:25:ee:63:b1: 79:db:0e:f9:63:21:f4:40:f9:c5:4c:5b:e1:7e:50: 7d:c7:0a:d5:1a:b7:15:82:ba:fd:54:7e:80:de:7c: 54:89:aa:29:88:b0:28:c5:e5:d4:c9:b2:d7:f9:22: e2:b3:c9:88:51:43:79:aa:36:53:62:db:e4:0c:b9: 11:34:15:e4:4f:17:f5:e3:62:50:df:01:7e:d9:57: 02:99:27:86:e6:6b:b4:ba:f9:ec:36:f9:8c:65:b5: 3f:0d:e1:1d:80:ae:a9:82:1e:1e:68:9c:1d:2b:4b: 57:8b:99:3f:ba:57:60:70:7e:1f:b6:c1:8b:87:da: 00:3f:5b:e6:19:ab:ef:07:cb:15:b7:4c:84:0b:bd: 41:40:4e:b1:90:88:4c:7d:40:6f:d8:13:b9:40:bf: 18:e4:43:86:cf:7c:25:6f:be:88:ff:f9:26:b2:79: 5e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B6:48:F6:48:AE:28:03:31:CC:91:84:74:75:B6:FB:31:C5:BC:8D X509v3 Authority Key Identifier: keyid:20:A1:5F:D3:9F:75:34:C7:A7:A2:53:1F:ED:8B:5A:17:08:A9:3F:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191BBE/B7B98FAC529911F18991193D90833773/IKFf0591NMenolMf7YtaFwipP1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IKFf0591NMenolMf7YtaFwipP1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191BBE/B7B98FAC529911F18991193D90833773/IKFf0591NMenolMf7YtaFwipP1I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:03:cf:f2:70:7a:ae:14:f5:db:b5:83:b1:30:5f:71:a3:86: 11:b4:0c:c2:9b:ff:93:be:5c:b8:6d:a5:b0:38:6b:f7:11:93: 16:3f:4b:ee:4b:71:c1:24:66:2a:3f:da:15:0e:46:ef:29:cf: 2c:ef:b4:68:e2:3f:03:86:a2:32:00:8f:e0:94:5a:40:27:f5: 1d:a3:c0:96:02:88:c5:f9:98:7c:6b:43:e5:1d:34:50:c5:07: d3:e2:dc:d5:cf:26:f9:e1:06:68:7a:a0:93:c5:de:90:9f:a8: b7:ee:e9:08:f9:74:2a:b9:0d:79:72:99:34:62:68:57:0e:36: 06:09:11:06:ee:47:99:86:d4:6b:aa:d1:7f:1a:a9:5a:f2:6b: 80:ca:c1:7b:00:84:57:0a:07:d0:39:1d:e7:60:7b:d9:66:52: 6d:06:b4:00:5b:83:b0:f1:65:f2:5e:07:7b:c2:74:63:88:62: 32:aa:b9:4a:6f:8b:8a:dc:85:9e:be:6a:d3:54:67:d7:e6:32: 2c:a0:46:30:55:28:03:9f:80:91:cb:20:89:a9:f9:0d:d7:68: f2:a2:89:da:73:21:9b:38:1f:ad:2f:82:6b:1c:11:aa:6b:34: 8c:a3:3f:ce:98:8f:0d:70:70:00:25:d6:bd:36:05:66:19:6f: 4d:28:0e:21 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MUJCRTExMC8GA1UEBRMoMjBBMTVGRDM5Rjc1MzRDN0E3QTI1MzFGRUQ4QjVBMTcw OEE5M0Y1MjAeFw0yNjA1MTkwOTA4MDFaFw0yNjA1MjYwOTA4MDFaMBgxFjAUBgNV BAMTDTZhMGMyODcxLWJmYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLxQ+ta8HoAWVEdJb4GPgqZacN1b3w+AmBWtvsGyBHKle3fmvipVo/AhjQ7Zws PQBFWPGRj7Lek6PmLHBTNh0VT4Hc9Pa2E1VoDjTdDHAk8OVHLD67Je5jsXnbDvlj IfRA+cVMW+F+UH3HCtUatxWCuv1UfoDefFSJqimIsCjF5dTJstf5IuKzyYhRQ3mq NlNi2+QMuRE0FeRPF/XjYlDfAX7ZVwKZJ4bma7S6+ew2+YxltT8N4R2ArqmCHh5o nB0rS1eLmT+6V2Bwfh+2wYuH2gA/W+YZq+8HyxW3TIQLvUFATrGQiEx9QG/YE7lA vxjkQ4bPfCVvvoj/+SayeV57AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUPbZI9kiu KAMxzJGEdHW2+zHFvI0wHwYDVR0jBBgwFoAUIKFf0591NMenolMf7YtaFwipP1Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxQkJFL0I3Qjk4RkFDNTI5 OTExRjE4OTkxMTkzRDkwODMzNzczL0lLRmYwNTkxTk1lbm9sTWY3WXRhRndpcFAx SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSUtGZjA1OTFOTWVub2xNZjdZdGFGd2lwUDFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx QkJFL0I3Qjk4RkFDNTI5OTExRjE4OTkxMTkzRDkwODMzNzczL0lLRmYwNTkxTk1l bm9sTWY3WXRhRndpcFAxSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAOA8/ycHquFPXbtYOxMF9xo4YRtAzCm/+Tvly4baWwOGv3EZMWP0vuS3HBJGYq P9oVDkbvKc8s77Ro4j8DhqIyAI/glFpAJ/Udo8CWAojF+Zh8a0PlHTRQxQfT4tzV zyb54QZoeqCTxd6Qn6i37ukI+XQquQ15cpk0YmhXDjYGCREG7keZhtRrqtF/Gqla 8muAysF7AIRXCgfQOR3nYHvZZlJtBrQAW4Ow8WXyXgd7wnRjiGIyqrlKb4uK3IWe vmrTVGfX5jIsoEYwVSgDn4CRyyCJqfkN12jyoonacyGbOB+tL4JrHBGqazSMoz/O mI8NcHAAJda9NgVmGW9NKA4h -----END CERTIFICATE-----Generated at Thu May 21 09:34:24 2026 by rpki-client