$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: x6U2mvuyqK8bQg629HsPj76zi3LMBfQYP+PrzVsX12o= Subject key identifier: 3A:9C:EE:6A:C4:0A:A9:D0:F2:E2:AB:E0:07:25:10:ED:3A:08:B0:C9 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 059C Signing time: Thu 30 Apr 2026 23:23:12 +0000 Manifest this update: Thu 30 Apr 2026 23:23:12 +0000 Manifest next update: Thu 07 May 2026 23:23:12 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: nZq78CbDu8cH+wWdutL9I+iAqMa+KqqREW3oEMDq364=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1450 (0x5aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Apr 30 23:23:12 2026 GMT Not After : May 7 23:23:12 2026 GMT Subject: CN=69f3e460-61b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:52:e8:37:38:d8:76:5d:93:b7:e2:7b:25:2d: 32:b0:7f:67:cd:de:7a:71:e3:87:f6:c0:69:0b:1c: 81:7a:8f:58:4e:5a:30:97:19:e8:02:7f:a9:fc:62: 8c:80:08:02:f2:ce:2b:55:17:b5:a8:5c:80:1a:09: 9f:03:36:65:fe:49:c3:5c:70:87:f8:41:71:82:87: 21:4a:a6:e4:83:9a:a6:6f:d6:e4:a0:cb:2d:2f:fb: 81:ba:9f:ba:32:2a:53:d3:d0:52:7f:97:7c:18:fc: df:d7:fc:0c:56:e8:da:7e:9f:87:f4:be:74:f6:5c: 06:c5:a7:84:09:6b:79:21:bf:3a:54:d8:44:de:c7: a9:01:72:72:84:43:59:58:a8:32:72:ff:47:bd:f3: f5:fd:a3:f0:45:2a:a1:0b:a8:06:b8:d1:69:85:73: a0:f6:08:02:4f:ce:30:82:f3:c7:45:bf:73:61:b0: a8:54:3c:ed:d5:64:b4:18:7c:89:bd:07:4d:2e:90: 76:dc:11:85:3f:c2:87:b1:a1:f0:5a:96:e0:53:22: 26:32:80:d0:18:1c:db:76:87:1e:bf:31:96:f4:17: fb:fe:b1:01:86:b7:0d:99:e3:6c:b8:9e:9b:d5:68: 85:30:cb:cf:85:1d:9c:28:f5:79:4f:0f:1d:04:17: c6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9C:EE:6A:C4:0A:A9:D0:F2:E2:AB:E0:07:25:10:ED:3A:08:B0:C9 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d6:66:7d:b9:b2:db:ed:57:f1:59:87:67:67:2e:c1:9c:61: 0a:67:fc:a8:ff:7f:ff:6a:5d:c6:d0:bc:30:3f:69:00:4c:f4: 66:ed:1b:03:01:be:55:67:78:ee:bb:77:a3:3f:a8:24:1e:95: 3f:38:be:51:89:43:13:6d:24:3f:96:cc:5f:40:62:67:0b:19: a6:46:4f:ea:46:7c:b5:59:ad:9a:dd:70:c2:e6:3a:1e:a4:9c: 62:18:10:bc:3a:59:4e:a9:29:ba:1f:16:a3:40:ea:90:c7:8c: c9:70:66:3e:63:02:39:f4:09:91:9d:db:99:e5:98:d3:f4:c9: c2:11:d5:27:d6:23:b0:4e:5e:34:df:ac:b8:9b:a7:74:d5:b0: 1b:a4:4b:14:8f:b4:9f:04:31:0b:50:86:a8:82:0f:2e:a8:6d: 54:17:09:87:07:1e:b2:ed:b5:3e:95:06:d8:63:35:db:43:b3: 3c:b3:11:f9:11:f1:7b:f3:3f:39:ad:ff:f8:02:ee:3b:25:75: e1:f0:bd:f9:f0:5e:ca:56:66:64:17:21:13:95:2d:a6:43:fb: 75:f0:56:a8:43:4a:0b:bb:cd:60:15:5f:73:8d:68:6e:e4:38: 5f:9a:76:a9:91:e6:a4:e3:ae:aa:5d:02:09:88:95:91:20:7b: 82:ab:f1:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNDMwMjMyMzEyWhcNMjYwNTA3MjMyMzEyWjAYMRYwFAYD VQQDEw02OWYzZTQ2MC02MWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi1LoNzjYdl2Tt+J7JS0ysH9nzd56ceOH9sBpCxyBeo9YTlowlxnoAn+p/GKM gAgC8s4rVRe1qFyAGgmfAzZl/knDXHCH+EFxgochSqbkg5qmb9bkoMstL/uBup+6 MipT09BSf5d8GPzf1/wMVujafp+H9L509lwGxaeECWt5Ib86VNhE3sepAXJyhENZ WKgycv9HvfP1/aPwRSqhC6gGuNFphXOg9ggCT84wgvPHRb9zYbCoVDzt1WS0GHyJ vQdNLpB23BGFP8KHsaHwWpbgUyImMoDQGBzbdocevzGW9Bf7/rEBhrcNmeNsuJ6b 1WiFMMvPhR2cKPV5Tw8dBBfGhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDqc7mrE CqnQ8uKr4AclEO06CLDJMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO9Zmfbmy2+1X8VmHZ2cuwZxhCmf8qP9//2pdxtC8MD9pAEz0Zu0bAwG+VWd4 7rt3oz+oJB6VPzi+UYlDE20kP5bMX0BiZwsZpkZP6kZ8tVmtmt1wwuY6HqScYhgQ vDpZTqkpuh8Wo0DqkMeMyXBmPmMCOfQJkZ3bmeWY0/TJwhHVJ9YjsE5eNN+suJun dNWwG6RLFI+0nwQxC1CGqIIPLqhtVBcJhwcesu21PpUG2GM120OzPLMR+RHxe/M/ Oa3/+ALuOyV14fC9+fBeylZmZBchE5UtpkP7dfBWqENKC7vNYBVfc41obuQ4X5p2 qZHmpOOuql0CCYiVkSB7gqvx9Q== -----END CERTIFICATE-----Generated at Sat May 2 11:11:06 2026 by rpki-client