$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: 6OJ4GbyW9+jBRkruRvoLisYw/juefQ1ge5mdjU+DqIw= Subject key identifier: 30:58:30:D6:99:A2:56:94:D9:E6:FA:27:A5:66:50:9F:8C:2B:31:66 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0BA7 Signing time: Wed 20 May 2026 19:06:19 +0000 Manifest this update: Wed 20 May 2026 19:06:18 +0000 Manifest next update: Wed 27 May 2026 19:06:18 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: /t+0QD8gYmpYfRmgRRzaJ+uIlkGtQPqdADWxovx1FuU=) 2: A558194E801F11EFB86B2647C4F9AE02.roa (hash: t9NapK/6qJjRf58S65SJlIEwaZxa09mw/H0Mw5wLnc0=) 3: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: KbTYxfFy1GT8pB5c2e56lPcyBgZokB9iBVqKo/PqazE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: May 20 19:06:18 2026 GMT Not After : May 27 19:06:18 2026 GMT Subject: CN=6a0e062a-6b5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b6:29:c9:55:42:1a:6e:82:5b:b2:7a:90:89: db:41:a2:11:a6:98:06:59:9e:af:ab:ec:c1:b8:d3: 0b:2f:ec:79:19:ce:3b:49:5e:22:78:16:c7:68:98: 3c:b7:b2:ec:33:bb:b9:5e:77:0b:ed:94:f8:64:0b: 81:fb:ae:b2:fc:d7:f7:55:1f:11:d8:57:d2:b7:4b: 0a:56:5d:20:10:12:be:0e:59:5e:24:6e:5c:de:20: c0:93:c6:c8:2a:66:1f:97:45:41:b9:c2:44:47:93: f3:54:16:2c:05:0e:be:01:61:57:d4:7d:24:e6:e2: c4:6b:8a:e4:c1:a4:03:3d:db:7e:be:87:76:79:a8: 92:19:31:81:63:9f:b2:4d:36:3a:22:d0:d1:2e:a0: 7d:7e:02:ee:ae:1c:4b:3b:32:96:86:e2:ac:ba:ec: ce:2b:75:5a:c6:1f:77:ae:42:8a:25:5c:bc:92:93: f8:f2:07:91:3e:24:2e:8d:76:1a:bf:58:c0:48:ef: 10:a9:21:52:a7:04:00:74:e6:20:fa:b2:82:7a:a4: 54:65:8e:ea:c1:d8:65:10:33:e0:c0:a6:0e:b1:4d: f9:0f:34:b2:06:6e:70:bb:ae:b6:06:ac:e1:48:29: b0:3f:e6:c8:18:53:c3:cf:79:e5:bc:f7:8a:12:78: a3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:58:30:D6:99:A2:56:94:D9:E6:FA:27:A5:66:50:9F:8C:2B:31:66 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a9:bb:4b:5c:d2:ee:f6:dc:f7:e4:45:45:6d:f4:d7:66:41: 3a:f8:c0:f8:9f:a5:d0:12:d8:64:e0:67:b9:bf:2c:d0:89:ef: b6:76:60:4a:29:00:42:34:ba:42:ab:05:6c:2b:a8:17:91:38: af:85:2d:df:2c:85:26:62:6e:e7:86:2f:21:4a:ea:70:fa:05: d7:84:b5:b2:68:d6:51:09:86:2c:99:b5:a2:2f:14:6d:04:8b: 8e:7b:e8:3f:1b:a0:01:7a:42:44:13:40:53:08:15:86:1b:1a: 9e:0f:23:c4:fb:fc:99:17:62:9c:4d:3a:30:4f:c3:6b:82:55: d3:f4:05:4b:e2:29:f0:d7:89:c6:71:38:ce:28:d5:9a:9b:26: 50:97:93:71:0f:d1:df:63:1f:1e:75:aa:91:ad:64:a8:ae:f0: 08:3a:c8:c0:8c:e5:bb:81:8a:a6:07:a0:a3:d4:16:4d:cc:20: 4c:5a:df:ae:0e:4e:50:bf:74:e2:76:97:6a:ad:e7:15:18:40: da:f4:d4:e4:4b:d9:b7:1c:e9:d7:47:eb:bd:f4:2f:9a:9a:d3: 29:fa:64:8d:94:2c:d7:26:5b:c9:f4:45:8e:da:f3:ad:d0:39: f4:ee:45:da:5c:7d:68:b1:20:d9:19:13:ad:da:de:27:bd:60: a1:13:d1:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjYwNTIwMTkwNjE4WhcNMjYwNTI3MTkwNjE4WjAYMRYwFAYD VQQDEw02YTBlMDYyYS02YjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprYpyVVCGm6CW7J6kInbQaIRppgGWZ6vq+zBuNMLL+x5Gc47SV4ieBbHaJg8 t7LsM7u5XncL7ZT4ZAuB+66y/Nf3VR8R2FfSt0sKVl0gEBK+DlleJG5c3iDAk8bI KmYfl0VBucJER5PzVBYsBQ6+AWFX1H0k5uLEa4rkwaQDPdt+vod2eaiSGTGBY5+y TTY6ItDRLqB9fgLurhxLOzKWhuKsuuzOK3Vaxh93rkKKJVy8kpP48geRPiQujXYa v1jASO8QqSFSpwQAdOYg+rKCeqRUZY7qwdhlEDPgwKYOsU35DzSyBm5wu662Bqzh SCmwP+bIGFPDz3nlvPeKEnijCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDBYMNaZ olaU2eb6J6VmUJ+MKzFmMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEqm7S1zS7vbc9+RFRW3012ZBOvjA+J+l0BLYZOBnub8s0InvtnZgSikAQjS6 QqsFbCuoF5E4r4Ut3yyFJmJu54YvIUrqcPoF14S1smjWUQmGLJm1oi8UbQSLjnvo PxugAXpCRBNAUwgVhhsang8jxPv8mRdinE06ME/Da4JV0/QFS+Ip8NeJxnE4zijV mpsmUJeTcQ/R32MfHnWqka1kqK7wCDrIwIzlu4GKpgego9QWTcwgTFrfrg5OUL90 4naXaq3nFRhA2vTU5EvZtxzp10frvfQvmprTKfpkjZQs1yZbyfRFjtrzrdA59O5F 2lx9aLEg2RkTrdreJ71goRPR1A== -----END CERTIFICATE-----Generated at Thu May 21 10:16:20 2026 by rpki-client