$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: l790/IlQ4RS67xg8rILBKFji/0QlnXvI0cXqk2LHv3k= Subject key identifier: AD:A6:4A:5C:65:09:2E:FA:11:4B:C2:A9:F7:07:6B:96:8E:A6:F3:85 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 05AC Signing time: Sun 31 May 2026 23:50:42 +0000 Manifest this update: Sun 31 May 2026 23:50:42 +0000 Manifest next update: Sun 07 Jun 2026 23:50:42 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: eBcLtoazek9rMhvsPj/6OVXGF+tobKQUckc7SWs5tN0=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 23:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: May 31 23:50:42 2026 GMT Not After : Jun 7 23:50:42 2026 GMT Subject: CN=6a1cc952-3ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:8f:2c:dd:88:08:9b:03:f0:43:4a:c9:d1: c2:cc:df:0d:06:59:84:fe:39:d1:c3:e0:25:58:72: ff:6f:1f:70:70:76:ee:1b:55:70:b2:fc:69:ae:e0: bf:8e:01:66:c5:50:7e:ba:c8:f4:d8:84:b0:0b:9c: 6d:6e:31:ca:69:94:2e:97:3c:c5:78:d3:2b:2c:15: 61:de:73:46:8c:f1:57:e6:6d:99:9e:5c:bd:86:79: d6:8b:30:59:94:36:70:28:24:4f:d2:bc:c0:99:c1: 67:17:62:cf:75:c3:21:b2:79:5d:1b:64:79:59:66: d9:86:a6:fd:09:05:f7:d4:4d:a9:e4:e1:86:ac:78: eb:e9:b6:06:bf:9a:83:50:40:a8:e3:51:64:5b:b6: 46:c9:09:f1:f7:2e:27:41:98:98:3a:2f:57:cf:b2: 10:b0:84:0d:d7:95:b4:41:48:b4:ea:69:4d:62:d5: f1:cd:4e:ae:e0:9b:f5:94:ed:c1:1b:7b:1d:59:54: fa:ab:dc:8f:93:5f:3f:e1:95:19:b0:15:5c:88:3b: 9c:81:f5:3e:44:0c:40:b2:ea:7e:e1:cd:cd:29:63: c6:60:41:4d:68:5a:de:2c:54:82:a7:10:39:ee:7e: 2f:58:fb:b7:6b:55:85:37:7d:50:89:73:04:4e:83: ee:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A6:4A:5C:65:09:2E:FA:11:4B:C2:A9:F7:07:6B:96:8E:A6:F3:85 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:dc:66:7f:af:77:95:02:76:2b:a0:6f:03:68:5a:06:a1:a9: 94:b7:85:b5:bd:d6:21:be:64:25:19:bb:7c:ea:94:fc:33:cc: 6f:49:e8:b8:09:ad:e8:17:b1:4e:69:6a:fd:46:63:d9:17:f3: 3e:56:9c:a0:7d:c4:95:04:4d:27:bb:c5:c8:d6:a0:9c:51:53: dd:bb:b5:42:65:39:d0:9d:ff:79:5e:f7:ce:9b:67:14:b6:d3: fc:ee:5f:75:9e:25:6c:74:41:fd:74:ca:f2:7c:93:c3:c1:ff: ff:28:6f:93:a2:00:01:e4:0f:13:47:1d:cf:c3:2d:28:37:08: 3d:6b:fe:90:c6:d6:39:d0:a0:b3:b0:9b:08:e0:7e:9d:a2:0f: 5d:04:b7:64:7b:2e:3a:85:20:33:e8:58:7d:c1:0b:40:26:76: 47:f6:2a:78:16:96:3e:96:2f:04:e1:35:d7:76:18:4b:f4:d2: 6c:21:c4:ca:e6:4e:2a:6e:15:79:a8:1e:3e:b6:ba:9b:25:93: 2f:02:08:4a:a4:1f:5b:85:d0:a0:7a:25:43:d3:60:19:b6:a8: 91:e5:af:20:11:7f:a0:8a:cf:6f:c9:72:3b:e1:5f:a6:99:df: 45:39:ee:55:21:ec:d6:33:7a:2b:30:fb:e9:72:36:3f:87:9f: 85:04:25:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNTMxMjM1MDQyWhcNMjYwNjA3MjM1MDQyWjAYMRYwFAYD VQQDEw02YTFjYzk1Mi0zZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvKPLN2ICJsD8ENKydHCzN8NBlmE/jnRw+AlWHL/bx9wcHbuG1VwsvxpruC/ jgFmxVB+usj02ISwC5xtbjHKaZQulzzFeNMrLBVh3nNGjPFX5m2Znly9hnnWizBZ lDZwKCRP0rzAmcFnF2LPdcMhsnldG2R5WWbZhqb9CQX31E2p5OGGrHjr6bYGv5qD UECo41FkW7ZGyQnx9y4nQZiYOi9Xz7IQsIQN15W0QUi06mlNYtXxzU6u4Jv1lO3B G3sdWVT6q9yPk18/4ZUZsBVciDucgfU+RAxAsup+4c3NKWPGYEFNaFreLFSCpxA5 7n4vWPu3a1WFN31QiXMEToPuPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK2mSlxl CS76EUvCqfcHa5aOpvOFMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX9xmf693lQJ2K6BvA2haBqGplLeFtb3WIb5kJRm7fOqU/DPMb0nouAmt6Bex Tmlq/UZj2RfzPlacoH3ElQRNJ7vFyNagnFFT3bu1QmU50J3/eV73zptnFLbT/O5f dZ4lbHRB/XTK8nyTw8H//yhvk6IAAeQPE0cdz8MtKDcIPWv+kMbWOdCgs7CbCOB+ naIPXQS3ZHsuOoUgM+hYfcELQCZ2R/YqeBaWPpYvBOE113YYS/TSbCHEyuZOKm4V eagePra6myWTLwIISqQfW4XQoHolQ9NgGbaokeWvIBF/oIrPb8lyO+FfppnfRTnu VSHs1jN6KzD76XI2P4efhQQlWg== -----END CERTIFICATE-----Generated at Mon Jun 1 14:50:52 2026 by rpki-client