$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: Tkl+y4icw5uGYLGYA5dixJBPWiQZgeN9zFI3QtAHbFw= Subject key identifier: 0E:F2:E0:AA:4D:1F:63:1B:61:16:C1:1B:F1:DA:6F:2C:F1:DE:8C:92 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 0757 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 073D Signing time: Sun 24 May 2026 21:48:41 +0000 Manifest this update: Sun 24 May 2026 21:48:41 +0000 Manifest next update: Sun 31 May 2026 21:48:41 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: dZ1X3zy1TrXO4itoYExIaG/sMuuoy8lgxCcLOyUCOBU=) 2: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: QKYaxLpX/SQs5/c2F5OMS0OrA2VZBlIsKBf0LDbK85o=) 3: A0A96F80AD8511F08B0A1857C4F9AE02.roa (hash: E4mvIp0TY49n7Ku16oPaGsPeRK5kr/jdVq6qAjBUp9s=) 4: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: W7HbZgiurIous/dkOII7Zs+KL83NW7eUE5Qjtxcpxno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 May 2026 21:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: May 24 21:48:41 2026 GMT Not After : May 31 21:48:41 2026 GMT Subject: CN=6a137239-31d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:f3:87:ff:de:0f:7f:c1:2f:66:56:68:08: cd:4b:41:e2:e5:f1:08:5d:c6:a1:61:6b:c6:c4:cf: eb:24:74:eb:6e:21:1a:99:7a:4d:1e:92:fb:3e:2c: 1c:48:cf:3d:fb:37:dc:b8:cd:2e:f2:09:ec:c4:53: 45:b9:40:17:07:90:fb:d4:98:b2:e9:be:f1:70:7f: 91:2c:c5:be:95:03:d4:5b:e5:33:b0:60:a7:32:7b: 16:26:7b:ba:a4:fa:63:b2:4d:a4:d9:11:0f:93:d4: 81:08:64:e0:6f:11:fb:aa:9c:75:c7:75:70:22:c0: 3b:c3:ab:52:d5:4a:cc:45:30:77:e0:2c:33:8f:7e: 93:0f:15:0b:65:db:81:fb:ab:77:70:64:91:07:03: 43:98:93:ad:22:0f:de:fd:ff:51:9c:89:a4:27:da: 79:b5:ad:26:31:aa:a8:81:18:91:8f:32:88:4e:e9: 69:c2:a1:49:89:8b:e8:f2:ab:d0:33:eb:48:a6:1f: 2b:e4:ac:83:db:6c:51:3f:5d:ea:bb:4b:f2:01:b1: 7b:39:c2:ae:21:48:d7:5f:0e:cc:ff:e7:65:59:c0: f9:69:7b:da:c0:42:2b:98:0c:6d:04:61:db:36:0b: de:d5:d5:02:be:78:2d:19:0a:20:20:07:d3:1a:87: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F2:E0:AA:4D:1F:63:1B:61:16:C1:1B:F1:DA:6F:2C:F1:DE:8C:92 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:0d:ec:08:2b:a4:5a:31:f6:22:af:cc:ef:63:85:dc:8d:98: a0:06:a6:bd:71:1e:48:96:f3:0b:6a:7b:49:01:68:24:5c:8b: 89:e2:68:22:ba:21:2b:6b:9d:f2:9f:b4:5e:f8:f6:9f:5b:26: c9:26:fd:27:08:41:98:8c:be:a1:31:f2:cf:fc:0f:4f:a4:e8: 30:94:75:1d:11:c8:83:99:4b:26:46:13:1c:e8:0c:4d:1d:aa: 0c:29:1b:aa:a3:e1:30:40:40:c9:89:d6:73:15:6e:cd:dd:ec: 32:be:f1:01:a7:ed:a5:a1:35:f9:f3:f4:ca:b0:27:5a:9f:81: 4c:8c:e8:e1:eb:19:46:45:26:d1:79:94:ce:c3:11:a6:73:14: 79:c1:b1:a3:07:2a:f0:ce:0e:40:ba:0b:64:08:96:9e:86:c4: 07:dc:0f:a7:c7:6b:8d:9a:4d:ff:dd:28:39:43:a2:33:9e:b1: 23:21:cb:7a:5a:ae:b0:6d:58:c9:99:c5:a3:5e:fa:c6:48:88: cb:4b:59:66:a5:60:6d:9c:67:01:e0:83:4a:a5:38:61:c2:1d: 67:bf:e5:c0:5a:f2:75:65:fc:32:3d:78:0b:e4:b4:93:fc:7a: f7:12:2b:d3:fa:37:21:28:a5:90:17:44:00:15:7f:eb:3c:7b: 0a:ba:aa:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjYwNTI0MjE0ODQxWhcNMjYwNTMxMjE0ODQxWjAYMRYwFAYD VQQDEw02YTEzNzIzOS0zMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/Xzh//eD3/BL2ZWaAjNS0Hi5fEIXcahYWvGxM/rJHTrbiEamXpNHpL7Piwc SM89+zfcuM0u8gnsxFNFuUAXB5D71Jiy6b7xcH+RLMW+lQPUW+UzsGCnMnsWJnu6 pPpjsk2k2REPk9SBCGTgbxH7qpx1x3VwIsA7w6tS1UrMRTB34Cwzj36TDxULZduB +6t3cGSRBwNDmJOtIg/e/f9RnImkJ9p5ta0mMaqogRiRjzKITulpwqFJiYvo8qvQ M+tIph8r5KyD22xRP13qu0vyAbF7OcKuIUjXXw7M/+dlWcD5aXvawEIrmAxtBGHb Ngve1dUCvngtGQogIAfTGodH3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7y4KpN H2MbYRbBG/Habyzx3oySMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPw3sCCukWjH2Iq/M72OF3I2YoAamvXEeSJbzC2p7SQFoJFyLieJoIrohK2ud 8p+0Xvj2n1smySb9JwhBmIy+oTHyz/wPT6ToMJR1HRHIg5lLJkYTHOgMTR2qDCkb qqPhMEBAyYnWcxVuzd3sMr7xAaftpaE1+fP0yrAnWp+BTIzo4esZRkUm0XmUzsMR pnMUecGxowcq8M4OQLoLZAiWnobEB9wPp8drjZpN/90oOUOiM56xIyHLelqusG1Y yZnFo176xkiIy0tZZqVgbZxnAeCDSqU4YcIdZ7/lwFrydWX8Mj14C+S0k/x69xIr 0/o3ISilkBdEABV/6zx7Crqqfw== -----END CERTIFICATE-----Generated at Mon May 25 17:15:13 2026 by rpki-client