$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: BtNMlJzcNJ+edN8E3wLpzOrEjMDMWxxO1IumqJGyvcM= Subject key identifier: 3A:B4:E5:50:D0:7C:51:BE:F0:1F:89:97:D4:F8:DA:23:BD:5B:7F:3C Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 0863 Signing time: Wed 20 May 2026 20:49:46 +0000 Manifest this update: Wed 20 May 2026 20:49:45 +0000 Manifest next update: Wed 27 May 2026 20:49:45 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: D6rsrrDQEnusJJymEh+7P3Dp0UgBJ23IMcCachSmyUg=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: rCKXyCh+EMd4ulOOsHCpQ92EvtiU4kyrN3RmnguBNlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: May 20 20:49:45 2026 GMT Not After : May 27 20:49:45 2026 GMT Subject: CN=6a0e1e69-2ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0a:04:9b:29:f1:77:9d:95:6c:5a:f6:1f:ca: ad:aa:9d:76:4d:ea:a2:aa:f2:c1:01:05:23:f9:71: 73:32:bf:22:9d:fe:ab:42:51:81:4e:a3:e5:ae:d7: 17:f7:ed:09:27:09:93:ee:20:d0:3f:41:87:f6:cc: e4:dd:99:26:83:20:02:c8:cb:68:1d:b2:62:04:20: 38:e8:26:45:5f:4e:70:0f:a1:aa:69:ee:29:cb:79: ae:d2:76:6f:c9:3c:1a:b5:87:b3:15:5e:b3:21:00: 47:58:d3:37:3d:28:3a:60:4c:b4:85:f1:a1:b4:cb: db:f6:7c:0e:2f:11:6d:88:0a:79:08:af:db:c4:75: 58:88:f1:a0:86:97:36:47:fe:87:6a:92:bc:8f:80: ec:eb:48:97:fd:74:4f:82:7a:c1:f3:5a:61:5e:8e: 31:6b:c4:4a:98:31:15:fb:dc:92:93:0e:d2:58:08: a5:35:a1:f0:c6:e5:4e:b0:ec:1d:6d:3f:f3:7b:31: 1c:1c:12:d3:bf:d1:76:88:0c:da:46:0a:18:73:e7: 50:7a:e6:da:e2:3b:a3:82:23:89:4d:4c:e5:f2:5c: 2a:27:b1:f8:7d:9c:42:73:76:36:77:98:57:31:a0: a3:71:2f:5c:e7:65:7a:08:0f:40:5e:bb:0f:0b:5e: c5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B4:E5:50:D0:7C:51:BE:F0:1F:89:97:D4:F8:DA:23:BD:5B:7F:3C X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:85:3f:0f:4c:3f:94:d3:37:e6:b8:c3:41:db:56:91:1d:07: 0b:50:fb:ca:f2:dd:10:d6:65:e7:76:4a:f4:e4:15:c7:9b:ef: 71:a3:c1:b9:6e:9b:2a:8e:c0:94:1b:7c:79:3e:ef:d2:4d:9f: 97:fc:f7:f8:29:89:83:90:99:e5:1e:26:d6:5d:06:69:50:e8: 30:07:5f:23:f5:d9:91:95:3d:2e:34:43:7d:ad:f5:70:a6:9b: 8e:cd:e2:ba:e9:73:5a:2f:23:f5:e1:49:ab:42:bd:e9:74:92: d9:e0:18:e5:b6:5b:44:e6:56:8e:17:ea:f3:5b:7c:8d:0c:b0: b2:5f:86:72:49:21:df:fb:ca:d3:8a:03:0e:73:c3:99:1a:a8: 2b:24:59:59:83:3d:1e:f8:f6:2d:0f:3a:49:aa:ca:f8:7d:1e: 23:f5:9c:cb:07:0b:5c:e0:f7:45:63:e2:3e:a4:f8:19:ea:f5: 52:14:af:b5:b0:13:26:84:af:8d:c7:01:98:ee:c9:bd:8f:1b: 85:5c:18:f8:79:d2:fe:ff:84:78:88:f1:81:b2:21:39:ab:e2: f5:ad:25:0d:96:3b:d4:87:f5:30:d3:44:0a:bb:a5:fa:37:eb: 37:5d:d1:27:c8:f9:74:b1:e7:e4:71:06:4a:26:51:e2:26:a1: e9:26:c9:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjYwNTIwMjA0OTQ1WhcNMjYwNTI3MjA0OTQ1WjAYMRYwFAYD VQQDEw02YTBlMWU2OS0yZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowoEmynxd52VbFr2H8qtqp12TeqiqvLBAQUj+XFzMr8inf6rQlGBTqPlrtcX 9+0JJwmT7iDQP0GH9szk3ZkmgyACyMtoHbJiBCA46CZFX05wD6Gqae4py3mu0nZv yTwatYezFV6zIQBHWNM3PSg6YEy0hfGhtMvb9nwOLxFtiAp5CK/bxHVYiPGghpc2 R/6HapK8j4Ds60iX/XRPgnrB81phXo4xa8RKmDEV+9ySkw7SWAilNaHwxuVOsOwd bT/zezEcHBLTv9F2iAzaRgoYc+dQeuba4jujgiOJTUzl8lwqJ7H4fZxCc3Y2d5hX MaCjcS9c52V6CA9AXrsPC17FwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDq05VDQ fFG+8B+Jl9T42iO9W388MB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASYU/D0w/lNM35rjDQdtWkR0HC1D7yvLdENZl53ZK9OQVx5vvcaPBuW6bKo7A lBt8eT7v0k2fl/z3+CmJg5CZ5R4m1l0GaVDoMAdfI/XZkZU9LjRDfa31cKabjs3i uulzWi8j9eFJq0K96XSS2eAY5bZbROZWjhfq81t8jQywsl+Gckkh3/vK04oDDnPD mRqoKyRZWYM9Hvj2LQ86SarK+H0eI/WcywcLXOD3RWPiPqT4Ger1UhSvtbATJoSv jccBmO7JvY8bhVwY+HnS/v+EeIjxgbIhOavi9a0lDZY71If1MNNECrul+jfrN13R J8j5dLHn5HEGSiZR4iah6SbJ5g== -----END CERTIFICATE-----Generated at Thu May 21 10:16:03 2026 by rpki-client