$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: X5lvTvANHjTelD2R/xs32GHDMNgC12JOgfG2Ls5VNd4= Subject key identifier: FC:05:71:A2:C2:2E:65:AA:E2:F7:E5:C1:ED:7C:63:CF:1F:95:84:28 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0597 Signing time: Mon 20 Apr 2026 23:09:15 +0000 Manifest this update: Mon 20 Apr 2026 23:09:15 +0000 Manifest next update: Mon 27 Apr 2026 23:09:15 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: np6RML3Y/dWPUNueHTeGNyQy5gh9C48Aa3EgEkgT6g0=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 23:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Apr 20 23:09:15 2026 GMT Not After : Apr 27 23:09:15 2026 GMT Subject: CN=69e6b21b-df33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f0:ee:81:44:1f:c8:2a:3c:28:62:e3:f5:79: fb:97:99:47:da:b9:39:1a:c8:bd:cf:6e:98:e9:83: b1:f2:3f:77:db:cd:56:12:a7:e7:c8:7a:72:62:c5: 57:be:ae:9d:ba:ba:c1:04:c6:1a:e4:00:fb:7d:8b: ca:ea:55:43:ff:23:2b:cc:d3:21:d4:85:15:ee:28: f2:a9:40:c4:12:ef:33:45:8b:81:0f:69:2f:b9:b8: a5:e9:c0:59:a7:a1:d0:97:05:26:d2:90:8d:6a:e5: 8e:1e:da:2f:3f:9a:0d:82:76:3e:bf:39:f4:c4:95: f9:2f:50:06:99:35:54:8c:d8:24:df:9c:2c:0a:a4: b3:43:6a:d6:09:d6:b7:d0:33:37:e0:9b:74:f8:a0: d0:1d:83:44:e4:84:b9:dd:99:d3:e0:68:b3:f9:0f: d1:e1:28:a3:1d:c2:92:27:88:f0:8f:fd:71:d0:6a: 30:aa:d2:f7:f1:3a:55:d9:1d:1f:5e:fa:b7:58:f1: f6:b5:92:e9:93:8d:91:25:2f:97:ea:87:7b:ff:6a: 18:dc:3f:93:98:a4:c6:14:0c:50:ba:c8:31:93:a8: b7:63:95:82:93:62:75:ae:05:41:95:3d:1a:79:3a: 02:ad:b3:ce:8f:bd:8b:46:51:81:42:74:c7:e6:06: 46:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:05:71:A2:C2:2E:65:AA:E2:F7:E5:C1:ED:7C:63:CF:1F:95:84:28 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:32:42:94:9d:a4:74:cf:71:c3:2a:55:e1:26:1f:71:b8:22: b9:b9:f6:0b:f5:bc:85:68:1d:a7:91:f1:1c:66:d4:9e:cd:c8: cb:51:6b:43:95:11:a9:84:66:21:2c:6f:83:cb:50:fb:a3:10: e2:a3:ae:e0:a5:1a:08:49:0f:10:46:69:d6:ac:2f:33:03:28: bc:87:96:e2:32:48:55:17:8c:ea:f9:d6:af:58:af:d0:63:cf: 18:f8:45:19:be:66:68:cf:b7:5e:0d:c8:13:f6:e5:35:fd:e7: cf:e3:b8:bd:18:e3:58:b5:7e:35:c4:62:83:8a:83:53:9f:57: ca:f1:43:ef:15:da:b0:21:ae:f7:e7:40:b2:02:06:ac:6a:1e: 9c:ca:97:ca:d5:2b:9b:3f:ad:9c:f7:f5:f8:2c:72:dd:7b:2d: 13:f8:d6:1a:4c:48:d9:4a:8e:50:fa:a9:92:64:20:5f:9b:50: 14:6e:58:e9:8f:fd:a0:33:a6:1d:b9:59:cb:e1:b2:73:17:0a: 4b:0a:c7:42:92:4a:0d:c9:d9:a8:09:bd:d6:29:81:00:9d:d9: 9a:91:de:5e:83:99:a8:5e:05:87:5b:c2:75:61:e1:c1:16:16: 0c:6b:bf:ec:d8:80:15:7b:90:93:32:59:d9:8e:77:56:a8:1f: c7:19:3e:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNDIwMjMwOTE1WhcNMjYwNDI3MjMwOTE1WjAYMRYwFAYD VQQDEw02OWU2YjIxYi1kZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vDugUQfyCo8KGLj9Xn7l5lH2rk5Gsi9z26Y6YOx8j93281WEqfnyHpyYsVX vq6durrBBMYa5AD7fYvK6lVD/yMrzNMh1IUV7ijyqUDEEu8zRYuBD2kvubil6cBZ p6HQlwUm0pCNauWOHtovP5oNgnY+vzn0xJX5L1AGmTVUjNgk35wsCqSzQ2rWCda3 0DM34Jt0+KDQHYNE5IS53ZnT4Giz+Q/R4SijHcKSJ4jwj/1x0GowqtL38TpV2R0f Xvq3WPH2tZLpk42RJS+X6od7/2oY3D+TmKTGFAxQusgxk6i3Y5WCk2J1rgVBlT0a eToCrbPOj72LRlGBQnTH5gZG3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPwFcaLC LmWq4vflwe18Y88flYQoMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEjJClJ2kdM9xwypV4SYfcbgiubn2C/W8hWgdp5HxHGbUns3Iy1FrQ5URqYRm ISxvg8tQ+6MQ4qOu4KUaCEkPEEZp1qwvMwMovIeW4jJIVReM6vnWr1iv0GPPGPhF Gb5maM+3Xg3IE/blNf3nz+O4vRjjWLV+NcRig4qDU59XyvFD7xXasCGu9+dAsgIG rGoenMqXytUrmz+tnPf1+Cxy3XstE/jWGkxI2UqOUPqpkmQgX5tQFG5Y6Y/9oDOm HblZy+GycxcKSwrHQpJKDcnZqAm91imBAJ3ZmpHeXoOZqF4Fh1vCdWHhwRYWDGu/ 7NiAFXuQkzJZ2Y53Vqgfxxk+Ow== -----END CERTIFICATE-----Generated at Wed Apr 22 09:11:23 2026 by rpki-client