$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft File: IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json) Hash identifier: aWcDjNwfYC2K4TBzKZcZDxID95dd7LMdc+teVi0WbxA= Subject key identifier: AF:CF:1F:F8:C7:83:EC:99:C5:BC:CB:0D:09:C8:A1:7A:0B:8D:89:0E Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 Certificate issuer: /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft Manifest number: 0528 Signing time: Thu 28 May 2026 23:24:49 +0000 Manifest this update: Thu 28 May 2026 23:24:49 +0000 Manifest next update: Thu 04 Jun 2026 23:24:49 +0000 Files and hashes: 1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: hTuE8Bg1gmESJTroJi3j6DbxEQGHJplu2VQDu5unOHI=) 2: E097013E910C11EFB994E187C4F9AE02.roa (hash: ZdZHwag+6Cd1JHK+9hW+Jbti2LN6Ngqb+sChSvSjYdc=) 3: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: qA7mB7J1Wr5PxdKSeV/plvT1JHfQHozWTf8vXejp5kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 23:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919710C, serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Validity Not Before: May 28 23:24:49 2026 GMT Not After : Jun 4 23:24:49 2026 GMT Subject: CN=6a18cec1-bc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:61:4d:2c:79:e6:2c:e7:f5:5a:66:82:35:74: 3f:48:77:1a:ef:fa:62:0f:c5:fe:70:f8:e3:3f:31: 55:af:43:2b:02:ce:dc:ae:0a:39:1b:cd:9f:d7:e9: c4:89:06:00:1c:19:47:ea:b0:71:4b:0a:2b:dd:38: d4:77:83:54:32:9d:74:b9:c2:d6:c6:6e:87:a7:14: 75:4a:49:fd:1d:f2:4d:5f:05:04:bc:b6:8c:dc:0d: e8:e3:e8:68:3c:ed:1e:95:be:67:81:86:e6:29:05: 2e:40:90:65:45:1d:d3:82:3f:19:d8:e6:58:45:3d: 1e:bc:7d:97:2b:32:00:0c:aa:a5:83:1f:5a:f1:89: 63:bf:c8:7f:35:24:91:be:c3:d8:38:07:23:0b:e2: 5b:76:d2:52:ce:53:69:90:34:14:b7:f9:32:f3:04: 6c:ae:75:3f:2c:2d:cc:56:2f:e0:ae:f1:91:95:e2: c5:02:98:b0:7f:c3:a0:58:0d:66:18:da:b2:24:b1: 6b:e3:0a:93:13:bd:01:96:d4:1d:1d:85:67:69:84: ec:91:b4:1c:ca:1f:fa:75:77:4a:f7:7c:85:09:66: fc:ac:a6:6b:9d:1a:28:27:33:dd:46:42:d3:9f:dc: 58:1e:92:e6:ee:54:0f:f9:8d:43:7a:a0:fe:8b:cb: b3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:CF:1F:F8:C7:83:EC:99:C5:BC:CB:0D:09:C8:A1:7A:0B:8D:89:0E X509v3 Authority Key Identifier: keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:bd:f0:e1:1e:f2:a3:12:c7:e4:78:a4:dd:10:4d:72:4e:c0: 45:c7:76:ff:31:2e:b5:7f:e1:0c:0f:47:58:6b:b2:46:31:76: 00:5a:0a:1b:fd:ed:c8:34:f8:09:74:5d:1e:74:ca:8e:5d:b9: 75:ee:93:0f:8e:50:d7:29:41:60:f7:13:da:e8:0a:a4:97:06: a5:a7:c3:a7:39:39:1f:54:f6:48:95:28:65:86:35:65:44:a6: 5c:d2:3b:ca:85:4d:ce:ea:02:e4:00:6e:63:8e:8d:b7:88:5b: 82:28:83:c2:d2:bc:aa:75:fc:5e:88:f1:ac:cf:8b:b8:55:14: 1d:7c:b1:b1:42:af:c6:ec:40:89:1f:3f:35:e1:77:56:be:74: a6:ce:12:9e:df:01:88:67:59:fa:69:69:8b:be:38:d9:f4:90: cf:70:96:c8:b5:2e:78:f4:9a:9f:06:14:f8:4e:76:39:9c:04: 7e:bd:f2:33:2a:6e:0a:21:4c:f5:08:1c:9c:b7:f7:cd:36:9a: e9:75:77:f5:85:76:de:ab:83:39:aa:69:84:f0:63:72:73:4c: 00:85:3e:1e:5e:fe:ac:f8:48:c7:57:13:9e:af:8f:f1:cf:a1: 93:ed:5d:e2:82:f3:f3:5e:47:a6:a7:7b:2c:aa:81:70:0b:a7: 84:64:2c:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy RUYwMzlDRTgwHhcNMjYwNTI4MjMyNDQ5WhcNMjYwNjA0MjMyNDQ5WjAYMRYwFAYD VQQDEw02YTE4Y2VjMS1iYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmFNLHnmLOf1WmaCNXQ/SHca7/piD8X+cPjjPzFVr0MrAs7crgo5G82f1+nE iQYAHBlH6rBxSwor3TjUd4NUMp10ucLWxm6HpxR1Skn9HfJNXwUEvLaM3A3o4+ho PO0elb5ngYbmKQUuQJBlRR3Tgj8Z2OZYRT0evH2XKzIADKqlgx9a8Yljv8h/NSSR vsPYOAcjC+JbdtJSzlNpkDQUt/ky8wRsrnU/LC3MVi/grvGRleLFApiwf8OgWA1m GNqyJLFr4wqTE70BltQdHYVnaYTskbQcyh/6dXdK93yFCWb8rKZrnRooJzPdRkLT n9xYHpLm7lQP+Y1DeqD+i8uz1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/PH/jH g+yZxbzLDQnIoXoLjYkOMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE VlNtSFJqNWtJcGN1OERuT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARL3w4R7yoxLH5Hik3RBNck7ARcd2/zEutX/hDA9HWGuyRjF2AFoKG/3tyDT4 CXRdHnTKjl25de6TD45Q1ylBYPcT2ugKpJcGpafDpzk5H1T2SJUoZYY1ZUSmXNI7 yoVNzuoC5ABuY46Nt4hbgiiDwtK8qnX8XojxrM+LuFUUHXyxsUKvxuxAiR8/NeF3 Vr50ps4Snt8BiGdZ+mlpi7442fSQz3CWyLUuePSanwYU+E52OZwEfr3yMypuCiFM 9QgcnLf3zTaa6XV39YV23quDOapphPBjcnNMAIU+Hl7+rPhIx1cTnq+P8c+hk+1d 4oLz815Hpqd7LKqBcAunhGQs4g== -----END CERTIFICATE-----Generated at Fri May 29 17:05:46 2026 by rpki-client