$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: F9N5i67BqVEGjH0U/gAfqB1O23PKpUozMRB7q8dwNSo= Subject key identifier: D9:04:2C:D9:19:3F:42:F6:59:B4:B2:91:14:D7:D0:8A:8C:84:F1:22 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: 01E9 Signing time: Thu 21 May 2026 03:26:24 +0000 Manifest this update: Thu 21 May 2026 03:26:23 +0000 Manifest next update: Thu 28 May 2026 03:26:23 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: YD0gYDr9YObAWV5+zSr3ni5VXHcCB0J9XFTNLEc+KJE=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: V3KGZPnIaGHG9fDhQyXWDDAGsT4VUgLiBOpTb4Gj+iY=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: 8AGxFivuKAnKFN4TwTWYk8MHWZYUWT4PtexoYNpYMj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: May 21 03:26:23 2026 GMT Not After : May 28 03:26:23 2026 GMT Subject: CN=6a0e7b5f-23c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9d:1b:2e:c8:72:ea:92:cd:ea:6b:19:ea:5a: 4e:b7:7d:db:67:97:d1:fc:9d:1c:12:3b:3a:02:26: 5e:26:1c:83:78:21:5a:bb:cd:d8:92:d5:49:dc:c9: 32:b9:a4:95:98:18:4a:50:d0:e9:10:37:6d:a3:bb: 72:af:02:c0:66:7b:5b:e0:9f:f1:42:11:e0:29:b8: f3:9a:65:30:5a:6e:be:bd:d9:7c:71:14:2e:d7:b4: c5:ed:d7:30:1f:ce:da:69:75:fd:f8:75:03:6a:02: e1:52:db:9e:e7:4d:f6:a4:ee:f7:c8:4b:e6:17:4a: aa:5c:f6:c5:27:6a:4c:06:ba:f7:63:88:2c:1b:4f: 03:e9:6b:49:b2:84:b8:3d:5f:89:9a:7e:eb:dd:46: 59:d6:80:d1:01:7a:f3:b2:2e:4b:82:46:41:0d:6e: ef:9e:fa:ee:c5:95:7b:42:1c:ce:41:b3:33:90:92: 57:ec:48:5c:61:19:9a:38:c6:82:c7:0c:6f:b9:da: 2e:67:5e:11:68:14:be:5d:d0:a0:d8:ef:96:46:67: 3f:7c:d7:16:6c:30:20:df:0c:40:98:18:5b:50:c1: 2d:f9:c7:7a:dd:2e:77:1e:a3:dc:e5:44:65:b0:e0: be:b6:65:ec:3c:92:d3:78:18:24:24:2e:71:62:fc: 09:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:04:2C:D9:19:3F:42:F6:59:B4:B2:91:14:D7:D0:8A:8C:84:F1:22 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:30:d9:62:2a:9a:3d:e1:5a:c1:df:53:3f:8b:28:cc:2f:21: f4:70:71:0f:d9:2d:4e:1a:f2:ba:dd:67:69:b0:34:0c:03:bc: 1a:31:84:0e:f6:67:1b:46:83:65:ce:9c:6c:cc:15:80:5b:f9: f7:58:6a:32:fa:4c:5a:3e:2b:29:b0:1c:15:1e:47:6e:a4:2b: 14:80:66:62:24:78:83:63:99:47:70:9a:9e:d5:92:bb:7f:36: c0:f7:34:51:ee:5b:df:5f:53:1e:ba:f7:4a:43:53:2c:a2:7c: 3c:b9:c3:ee:83:dd:a0:7e:6c:28:ca:2c:33:c4:84:4a:9c:8c: 92:08:fc:d7:13:40:17:c1:77:5a:4d:e0:96:1a:81:92:05:00: 21:0d:52:f3:80:cf:2b:b8:e3:ec:0d:21:6c:b9:39:cf:f8:15: 26:3a:c5:68:c7:de:5d:5d:b8:44:d4:be:9d:85:6e:be:b9:c6: 94:d5:5d:e0:68:68:56:32:79:52:8c:be:1d:53:6f:16:09:ce: 0f:10:e9:b1:81:b9:f6:f9:db:f0:45:4d:54:06:64:7e:4f:c9: ca:4e:fb:f9:81:2e:1f:02:e4:36:ed:5b:3f:1c:e7:e8:e0:01: e5:32:ee:d8:58:3a:ea:2a:e9:15:80:ac:c2:cd:c2:36:6a:57: 75:fd:b4:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjYwNTIxMDMyNjIzWhcNMjYwNTI4MDMyNjIzWjAYMRYwFAYD VQQDEw02YTBlN2I1Zi0yM2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup0bLshy6pLN6msZ6lpOt33bZ5fR/J0cEjs6AiZeJhyDeCFau83YktVJ3Mky uaSVmBhKUNDpEDdto7tyrwLAZntb4J/xQhHgKbjzmmUwWm6+vdl8cRQu17TF7dcw H87aaXX9+HUDagLhUtue5032pO73yEvmF0qqXPbFJ2pMBrr3Y4gsG08D6WtJsoS4 PV+Jmn7r3UZZ1oDRAXrzsi5LgkZBDW7vnvruxZV7QhzOQbMzkJJX7EhcYRmaOMaC xwxvudouZ14RaBS+XdCg2O+WRmc/fNcWbDAg3wxAmBhbUMEt+cd63S53HqPc5URl sOC+tmXsPJLTeBgkJC5xYvwJWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkELNkZ P0L2WbSykRTX0IqMhPEiMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbTDZYiqaPeFawd9TP4sozC8h9HBxD9ktThryut1nabA0DAO8GjGEDvZnG0aD Zc6cbMwVgFv591hqMvpMWj4rKbAcFR5HbqQrFIBmYiR4g2OZR3CantWSu382wPc0 Ue5b319THrr3SkNTLKJ8PLnD7oPdoH5sKMosM8SESpyMkgj81xNAF8F3Wk3glhqB kgUAIQ1S84DPK7jj7A0hbLk5z/gVJjrFaMfeXV24RNS+nYVuvrnGlNVd4GhoVjJ5 Uoy+HVNvFgnODxDpsYG59vnb8EVNVAZkfk/Jyk77+YEuHwLkNu1bPxzn6OAB5TLu 2Fg66irpFYCsws3CNmpXdf202Q== -----END CERTIFICATE-----Generated at Thu May 21 09:38:15 2026 by rpki-client