$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: 2jBAl59+0JNZupZ/afANTzdYvCYCJpV8C0VdPcb3k+c= Subject key identifier: BE:D9:06:50:6A:75:E7:1E:4D:CC:CB:A9:09:53:1E:20:53:8F:B1:1B Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: 0109 Signing time: Tue 05 May 2026 06:06:37 +0000 Manifest this update: Tue 05 May 2026 06:06:36 +0000 Manifest next update: Tue 12 May 2026 06:06:36 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: /h6l5HH7pp7MVuCU4sWVEmhJkUgveoOcT1q5R+bfuTc=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: 0O2Y56VE28BDUyW/y7K+tvSZF089IWlNTSJ1ih9VrPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 May 2026 06:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: May 5 06:06:36 2026 GMT Not After : May 12 06:06:36 2026 GMT Subject: CN=69f988ed-3120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8a:5b:03:0a:7f:9d:12:48:07:d7:61:73:6f: 32:36:72:3b:52:8b:44:ff:f8:77:8d:b5:85:46:bc: 81:f5:d7:fa:8d:cf:64:1a:68:90:c8:32:28:81:8a: 45:39:70:54:72:73:bf:20:c2:d5:f1:35:07:d2:6a: 1c:80:fc:0e:66:e3:5f:80:19:bf:1e:a4:f8:94:78: 16:72:f1:14:04:30:4a:e3:04:3f:ce:c9:36:c3:a9: 77:bb:f1:8e:5d:20:e7:b1:5b:6e:c9:eb:dc:a7:ca: b9:89:89:59:2c:ff:fc:d0:49:b8:12:9d:a5:dc:49: 8f:67:87:22:b6:ea:ff:2d:60:13:c8:51:d1:48:a0: 00:2f:6b:d7:90:00:27:c8:27:18:3e:28:8f:ee:4b: f5:d2:c5:35:7f:d0:67:c4:d3:a2:1c:76:42:76:c1: 13:7e:6d:ae:ad:56:8f:90:d7:21:0e:ff:13:48:59: 24:d1:4c:65:01:34:d4:08:0a:70:13:e3:9c:6c:94: e2:e4:73:03:41:cf:f2:24:45:9a:b7:0c:d0:e6:11: 21:d8:d5:80:e2:65:7d:12:24:8d:88:50:0d:a4:a9: 24:64:ad:2a:4c:41:44:3c:bc:88:83:35:49:88:4f: 30:a5:cb:b0:a3:99:5f:e6:7f:ba:93:1c:39:b1:4e: be:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D9:06:50:6A:75:E7:1E:4D:CC:CB:A9:09:53:1E:20:53:8F:B1:1B X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:21:6a:e8:f8:3a:e1:01:6e:8b:5a:ee:17:c9:a1:0b:29:d7: 8f:d6:c5:36:aa:67:0d:05:f5:4e:64:65:b9:c1:6b:50:52:aa: 85:c2:e9:62:05:4e:57:15:82:eb:6e:4c:e0:42:fa:36:07:06: d9:e4:3d:68:3c:b8:fe:2f:92:4c:86:da:fb:18:03:51:fb:9f: ae:7b:18:af:47:4b:0b:53:cb:c1:61:3c:cb:14:23:04:36:0f: 01:3b:b2:0a:9a:3c:8c:b4:a5:69:b7:bd:80:24:27:b1:1c:b8: 35:7a:7a:2b:a6:93:94:e8:cd:77:cd:1e:a4:fe:e1:95:6c:54: cc:36:ab:54:88:c3:be:60:38:18:f8:4d:dc:3b:18:71:9d:46: c5:e5:f6:62:23:22:de:e4:02:00:ca:9a:ad:40:d5:0e:a7:0f: 5a:a5:b1:f9:d4:2a:fe:4b:7b:21:70:6a:f9:c4:9f:9e:75:e8: 57:f2:73:19:20:76:4f:91:0e:1f:7d:70:56:eb:86:4c:24:07: 75:d8:f6:ee:7c:f1:17:01:9c:25:80:0a:f0:b4:9c:76:fa:09: 07:b9:4a:c2:36:f8:50:1d:c8:97:c7:7c:70:e2:64:e2:70:67: 39:9f:50:bb:06:f2:67:80:f4:15:2e:2d:11:2f:6d:5b:36:b4: 42:0c:57:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzN0IxMTAvBgNVBAUTKEZBMjI4MDFDNTJBRTJBNUZDNDkxQjdDQkVCRTY4RUZD QTJDOEQxRDkwHhcNMjYwNTA1MDYwNjM2WhcNMjYwNTEyMDYwNjM2WjAYMRYwFAYD VQQDEw02OWY5ODhlZC0zMTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4pbAwp/nRJIB9dhc28yNnI7UotE//h3jbWFRryB9df6jc9kGmiQyDIogYpF OXBUcnO/IMLV8TUH0mocgPwOZuNfgBm/HqT4lHgWcvEUBDBK4wQ/zsk2w6l3u/GO XSDnsVtuyevcp8q5iYlZLP/80Em4Ep2l3EmPZ4citur/LWATyFHRSKAAL2vXkAAn yCcYPiiP7kv10sU1f9BnxNOiHHZCdsETfm2urVaPkNchDv8TSFkk0UxlATTUCApw E+OcbJTi5HMDQc/yJEWatwzQ5hEh2NWA4mV9EiSNiFANpKkkZK0qTEFEPLyIgzVJ iE8wpcuwo5lf5n+6kxw5sU6+hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL7ZBlBq deceTczLqQlTHiBTj7EbMB8GA1UdIwQYMBaAFPoigBxSripfxJG3y+vmjvyiyNHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xNThEN0YzQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUtsX0VrYmZMNi1hT19LTEkw ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xNThEN0YzQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUts X0VrYmZMNi1hT19LTEkwZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKyFq6Pg64QFui1ruF8mhCynXj9bFNqpnDQX1TmRlucFrUFKqhcLpYgVOVxWC 625M4EL6NgcG2eQ9aDy4/i+STIba+xgDUfufrnsYr0dLC1PLwWE8yxQjBDYPATuy Cpo8jLSlabe9gCQnsRy4NXp6K6aTlOjNd80epP7hlWxUzDarVIjDvmA4GPhN3DsY cZ1GxeX2YiMi3uQCAMqarUDVDqcPWqWx+dQq/kt7IXBq+cSfnnXoV/JzGSB2T5EO H31wVuuGTCQHddj27nzxFwGcJYAK8LScdvoJB7lKwjb4UB3Il8d8cOJk4nBnOZ9Q uwbyZ4D0FS4tES9tWza0QgxXLg== -----END CERTIFICATE-----Generated at Thu May 7 03:38:59 2026 by rpki-client