$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: KleeNFkB+9Zw+aMv2AbveuBMZCwJMKKtgZqVNVejF0o= Subject key identifier: 41:32:FB:0F:D1:45:70:9C:9C:41:F9:50:FA:BC:26:93:E6:D1:2E:CD Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 059D Signing time: Sat 02 May 2026 23:28:17 +0000 Manifest this update: Sat 02 May 2026 23:28:16 +0000 Manifest next update: Sat 09 May 2026 23:28:16 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: 5yIgy8Q72+GxPXlmtH6S6vzV+sn8SVnOIw7u7PHQrvM=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: May 2 23:28:16 2026 GMT Not After : May 9 23:28:16 2026 GMT Subject: CN=69f68891-7fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:03:37:47:82:8a:05:ee:40:db:a2:c5:a3:40: b7:41:8a:64:cd:be:0a:f1:f2:7b:ac:3e:14:34:d1: f8:f4:b4:cd:3b:e9:ee:d7:5f:de:01:ff:85:09:0c: 71:c9:83:74:78:45:23:f7:5d:29:2d:7c:cc:42:1a: dc:63:17:e6:04:a9:f5:24:06:f3:ab:4a:68:94:ff: f4:a1:0b:4f:51:86:81:03:c5:48:bb:d1:6b:7d:76: 61:fe:75:57:13:df:76:4e:de:68:e1:d3:d6:bd:14: 09:8a:3e:50:78:41:b0:eb:e7:05:4b:12:39:b7:9b: c4:44:6e:99:07:ec:83:ba:bf:79:73:24:1e:74:90: cb:cd:98:55:72:c8:26:e2:4c:02:5f:a5:f3:05:a7: a4:2c:94:99:a7:b6:6e:fd:56:0e:1f:d2:c5:27:5d: 65:54:ce:2c:14:a3:c2:21:c3:fa:1d:99:70:6a:c2: 7d:44:2e:2c:ee:3e:9e:4c:8b:37:9e:6f:a9:b7:13: 61:6c:e1:6c:ce:e4:7b:ca:0f:8f:ef:cd:bb:68:0a: b0:e3:e9:09:73:90:8a:cc:fd:60:6e:d8:de:73:35: 51:84:ee:26:9e:21:a7:4b:dc:60:2b:6e:59:35:74: 33:f5:88:37:d4:c6:17:1d:2a:2c:6e:ef:48:a6:5b: a5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:32:FB:0F:D1:45:70:9C:9C:41:F9:50:FA:BC:26:93:E6:D1:2E:CD X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f1:e7:78:dc:69:6f:de:d1:1d:70:7f:cc:77:71:4a:13:af: 18:47:b0:ff:a5:d4:00:24:6f:10:d8:b6:c0:38:b9:a5:27:dd: ce:6c:c6:a6:ba:0a:28:7d:bc:e6:c0:78:5c:6e:79:82:c5:ab: c2:c6:f7:7e:b2:81:97:d0:bc:2d:c6:d9:f7:a0:1f:68:7c:98: 4d:53:55:74:03:3e:3c:a5:d9:de:d4:5e:f2:f3:4d:19:60:18: df:9f:cf:6a:45:b3:f4:81:24:dd:bd:ae:11:a2:04:fe:3f:c3: 25:7c:07:23:cf:a1:00:17:16:66:98:b7:d9:30:be:0a:5b:7d: 73:b8:72:6b:ac:c8:d6:b2:05:33:3c:be:f1:bd:ea:3d:b2:d8: 40:2c:09:8e:e7:0c:39:8d:d5:92:8d:88:9c:50:46:b4:51:45: f4:a4:26:b0:f5:0c:3c:df:5d:83:0e:7c:61:fe:ea:57:b6:80: b9:59:8d:3d:57:8a:0a:eb:73:7b:35:0a:85:be:22:0d:86:db: 25:79:ae:a9:4d:ad:66:53:3b:bd:52:b6:7a:3b:1e:4e:4e:cb: ed:89:3d:23:f3:cd:75:14:62:96:fe:dd:dc:04:b1:9c:c7:7d: f7:43:89:56:ef:c6:98:dc:b5:10:9b:a2:30:03:9f:aa:26:5f: 77:19:fc:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNTAyMjMyODE2WhcNMjYwNTA5MjMyODE2WjAYMRYwFAYD VQQDEw02OWY2ODg5MS03ZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAM3R4KKBe5A26LFo0C3QYpkzb4K8fJ7rD4UNNH49LTNO+nu11/eAf+FCQxx yYN0eEUj910pLXzMQhrcYxfmBKn1JAbzq0polP/0oQtPUYaBA8VIu9FrfXZh/nVX E992Tt5o4dPWvRQJij5QeEGw6+cFSxI5t5vERG6ZB+yDur95cyQedJDLzZhVcsgm 4kwCX6XzBaekLJSZp7Zu/VYOH9LFJ11lVM4sFKPCIcP6HZlwasJ9RC4s7j6eTIs3 nm+ptxNhbOFszuR7yg+P7827aAqw4+kJc5CKzP1gbtjeczVRhO4mniGnS9xgK25Z NXQz9Yg31MYXHSosbu9Iplul5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEEy+w/R RXCcnEH5UPq8JpPm0S7NMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAfHneNxpb97RHXB/zHdxShOvGEew/6XUACRvENi2wDi5pSfdzmzGproKKH28 5sB4XG55gsWrwsb3frKBl9C8LcbZ96AfaHyYTVNVdAM+PKXZ3tRe8vNNGWAY35/P akWz9IEk3b2uEaIE/j/DJXwHI8+hABcWZpi32TC+Clt9c7hya6zI1rIFMzy+8b3q PbLYQCwJjucMOY3Vko2InFBGtFFF9KQmsPUMPN9dgw58Yf7qV7aAuVmNPVeKCutz ezUKhb4iDYbbJXmuqU2tZlM7vVK2ejseTk7L7Yk9I/PNdRRilv7d3ASxnMd990OJ Vu/GmNy1EJuiMAOfqiZfdxn8xA== -----END CERTIFICATE-----Generated at Sun May 3 11:36:55 2026 by rpki-client