$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: Eit79fQA29YglF1hSkLRdVWawikTIdllPwaa/eBWius= Subject key identifier: 94:FA:38:6D:A5:14:7C:AF:12:E0:64:5B:08:2A:6E:B3:58:B5:89:1D Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A71 Signing time: Thu 14 May 2026 19:38:49 +0000 Manifest this update: Thu 14 May 2026 19:38:49 +0000 Manifest next update: Thu 21 May 2026 19:38:49 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: 1YBloWm01QALWWIuWj9B0Q0aDVmnH1SplQEbABQDP+w=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 19:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2691 (0xa83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: May 14 19:38:49 2026 GMT Not After : May 21 19:38:49 2026 GMT Subject: CN=6a0624c9-6846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d9:00:38:70:c7:97:85:48:f5:1b:52:d7:cd: 90:4f:b3:be:53:ef:18:14:94:73:57:76:48:af:ae: 32:e6:f0:4d:45:ae:32:39:28:77:5d:b2:2c:8d:ef: 7e:aa:39:4d:0e:85:e3:5d:bf:6b:8b:dc:b6:24:8b: fe:91:a5:d1:25:d3:c2:ba:f5:ac:b0:f5:05:6b:2e: 67:7c:da:ee:ce:57:fe:f1:a6:5d:3d:8a:81:79:65: 84:f7:64:2f:f3:1e:4c:9e:15:75:52:ca:22:51:7a: 43:6f:d2:dd:5c:30:47:f1:6f:d3:be:cd:38:6b:84: 56:f9:c4:1a:6d:af:f6:9a:45:93:e6:7a:ea:d3:52: 9f:e8:8b:4d:2f:8b:20:4c:b1:1f:ea:5a:33:4a:7a: dd:dc:3d:8d:40:ea:95:57:fa:d3:51:c4:4f:ac:98: f5:57:6f:42:6b:7a:ce:af:15:cc:60:48:c1:91:76: 8b:e9:65:05:ad:ba:31:c8:85:b7:8d:92:8e:c5:dc: 39:6e:6c:2f:5e:c4:5f:8d:58:e4:87:a2:a9:33:1b: 2f:00:b1:89:ac:70:4b:68:8a:df:d8:34:7d:eb:3c: 16:71:40:55:61:76:47:8f:27:7e:53:d5:6b:04:03: a2:d5:20:c5:af:99:04:91:c2:9c:e0:22:1a:c9:48: dc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:FA:38:6D:A5:14:7C:AF:12:E0:64:5B:08:2A:6E:B3:58:B5:89:1D X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:d9:ec:74:76:91:ef:85:f9:bc:bc:05:ba:04:6c:65:ab:2f: 40:80:6c:6b:40:8b:f4:bf:b1:c8:4b:cc:c8:63:45:63:6c:91: 2f:ff:da:6f:81:76:ed:24:d0:c3:79:08:cb:bd:81:ee:59:ff: f7:ba:26:c1:a5:d3:08:60:76:88:19:5d:8d:3f:88:92:2e:64: 1a:84:2f:b3:f7:d0:8a:4f:a0:78:82:7f:3e:63:b3:1e:7d:5a: 85:a7:78:3f:54:82:b7:cc:fd:90:2b:68:cd:87:a7:8c:22:91: 0f:16:df:58:94:88:be:c2:e6:27:c2:59:23:48:a4:dc:1e:6a: dc:31:92:5b:29:61:a5:a5:b9:44:42:ba:10:44:bd:8c:20:0c: d1:01:8b:b9:25:b8:6a:f5:2a:06:c3:f9:41:db:a1:a4:ad:b6: 09:20:43:2f:d9:c1:b0:31:a8:18:e1:cc:eb:31:a5:07:64:7f: c9:48:5a:4d:51:08:3e:7d:40:c9:2a:40:8c:6e:81:d9:eb:cf: d6:eb:17:5e:80:70:e8:c9:d0:8a:3c:7f:5a:28:bd:5c:a8:07: b9:26:aa:b0:cc:01:e1:44:27:0a:e5:10:4e:76:5d:2c:82:e6: 91:28:04:19:c9:fb:ae:41:a9:05:b2:de:dd:82:12:eb:62:90: ea:35:89:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwNTE0MTkzODQ5WhcNMjYwNTIxMTkzODQ5WjAYMRYwFAYD VQQDEw02YTA2MjRjOS02ODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNkAOHDHl4VI9RtS182QT7O+U+8YFJRzV3ZIr64y5vBNRa4yOSh3XbIsje9+ qjlNDoXjXb9ri9y2JIv+kaXRJdPCuvWssPUFay5nfNruzlf+8aZdPYqBeWWE92Qv 8x5MnhV1UsoiUXpDb9LdXDBH8W/Tvs04a4RW+cQaba/2mkWT5nrq01Kf6ItNL4sg TLEf6lozSnrd3D2NQOqVV/rTUcRPrJj1V29Ca3rOrxXMYEjBkXaL6WUFrboxyIW3 jZKOxdw5bmwvXsRfjVjkh6KpMxsvALGJrHBLaIrf2DR96zwWcUBVYXZHjyd+U9Vr BAOi1SDFr5kEkcKc4CIayUjcUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJT6OG2l FHyvEuBkWwgqbrNYtYkdMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGdnsdHaR74X5vLwFugRsZasvQIBsa0CL9L+xyEvMyGNFY2yRL//ab4F27STQ w3kIy72B7ln/97omwaXTCGB2iBldjT+Iki5kGoQvs/fQik+geIJ/PmOzHn1ahad4 P1SCt8z9kCtozYenjCKRDxbfWJSIvsLmJ8JZI0ik3B5q3DGSWylhpaW5REK6EES9 jCAM0QGLuSW4avUqBsP5QduhpK22CSBDL9nBsDGoGOHM6zGlB2R/yUhaTVEIPn1A ySpAjG6B2evP1usXXoBw6MnQijx/Wii9XKgHuSaqsMwB4UQnCuUQTnZdLILmkSgE Gcn7rkGpBbLe3YIS62KQ6jWJ9g== -----END CERTIFICATE-----Generated at Fri May 15 17:55:45 2026 by rpki-client