$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: t1dRs0JXDspWG9nnX/saJGQeaUaU7BxmPHuLRfWkVSU= Subject key identifier: 88:FA:01:52:80:FF:65:27:52:5D:EE:B9:5B:B2:46:91:22:95:19:1A Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 05A4 Signing time: Sat 16 May 2026 23:15:37 +0000 Manifest this update: Sat 16 May 2026 23:15:36 +0000 Manifest next update: Sat 23 May 2026 23:15:36 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: p1TGzeqfSKWUTbHwS7mAT6GTYw5FJCBTZ1KrASEGoxU=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 23:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1458 (0x5b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: May 16 23:15:36 2026 GMT Not After : May 23 23:15:36 2026 GMT Subject: CN=6a08fa99-6776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:3e:b2:01:7e:be:01:14:ab:eb:45:81:b0: b6:72:5e:58:bf:c1:3f:44:8f:60:59:3e:ff:18:95: 06:7a:0f:9b:d4:30:ce:06:23:f4:03:6b:02:d4:48: c2:fe:db:f9:67:ce:0f:bc:fc:46:fc:b4:46:11:d4: 39:95:dd:1f:bd:5d:2b:eb:47:7c:7e:8b:5a:b4:64: 24:ca:6b:fc:74:b3:a9:38:d8:d4:aa:73:e4:60:e6: 6f:7e:4d:0b:71:22:ef:d8:0b:1a:d2:51:77:f5:fe: 5f:9a:1f:be:f3:12:62:83:ae:93:5e:1e:5b:85:af: 0d:87:8b:9e:6e:b3:13:96:fc:3e:43:ed:4d:e8:36: 5d:ec:b7:91:47:38:8a:e1:83:c9:fd:ff:ee:1c:c9: 1b:e5:71:9e:75:00:51:02:b0:5c:6c:dd:ef:42:67: 86:88:37:1f:cd:c7:0b:fd:e3:e1:b2:5d:33:33:66: d7:43:89:63:26:26:d5:d0:7b:b6:7f:f5:a0:63:00: d0:0a:15:d7:e8:b7:a4:ab:c2:f0:8c:9f:78:fa:cb: 52:c6:41:5b:73:97:64:da:67:93:89:35:bd:77:1f: d5:e3:0f:0e:9a:01:0e:68:00:dd:7a:9a:0e:e3:b6: 8d:81:e6:72:59:ba:65:8c:73:b6:bd:30:f8:3f:e3: 7a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FA:01:52:80:FF:65:27:52:5D:EE:B9:5B:B2:46:91:22:95:19:1A X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e5:38:3d:a2:63:2d:ad:5d:0b:eb:a4:62:8b:7c:ff:52:51: e7:07:77:af:02:51:f5:bb:2d:25:b0:ef:33:a3:c6:44:98:7f: 62:ed:9f:70:09:c1:e3:3f:c1:1e:8e:df:19:26:1e:d9:f3:5d: dc:0b:93:d0:e9:10:43:8c:86:4f:cb:2e:ec:6d:af:98:5b:f5: 50:cc:9c:b7:12:9c:56:f1:27:ac:cd:9a:6f:e3:db:57:5f:ad: e8:36:f1:6c:0f:f2:08:61:91:d0:65:6d:62:1d:4e:59:89:7b: 10:66:54:0c:34:4b:1f:d1:d7:18:48:2b:c4:30:35:ca:b3:c6: 71:7f:fc:41:f0:91:d6:3d:8b:20:05:58:14:6e:64:39:11:6e: 2c:4c:7e:8c:5f:e1:14:6f:3b:d0:62:43:e0:11:68:e1:0a:14: 2a:31:9f:03:75:a6:19:08:e0:40:39:7c:da:81:a9:23:b7:54: e8:72:ec:e7:05:ae:d1:1f:98:c4:74:2a:4b:e3:b8:c2:ad:77: 3a:a9:4d:80:42:ac:d9:b4:62:88:fe:9f:43:b5:bb:83:ad:8a: 03:b3:25:4e:17:75:70:78:29:2c:87:7c:90:8b:7b:64:49:ac: 26:45:3e:c0:02:2f:28:3a:5c:1a:a6:0f:d1:42:61:0d:48:cb: 52:46:ea:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNTE2MjMxNTM2WhcNMjYwNTIzMjMxNTM2WjAYMRYwFAYD VQQDEw02YTA4ZmE5OS02Nzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHU+sgF+vgEUq+tFgbC2cl5Yv8E/RI9gWT7/GJUGeg+b1DDOBiP0A2sC1EjC /tv5Z84PvPxG/LRGEdQ5ld0fvV0r60d8fotatGQkymv8dLOpONjUqnPkYOZvfk0L cSLv2Asa0lF39f5fmh++8xJig66TXh5bha8Nh4uebrMTlvw+Q+1N6DZd7LeRRziK 4YPJ/f/uHMkb5XGedQBRArBcbN3vQmeGiDcfzccL/ePhsl0zM2bXQ4ljJibV0Hu2 f/WgYwDQChXX6Lekq8LwjJ94+stSxkFbc5dk2meTiTW9dx/V4w8OmgEOaADdepoO 47aNgeZyWbpljHO2vTD4P+N6TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIj6AVKA /2UnUl3uuVuyRpEilRkaMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXuU4PaJjLa1dC+ukYot8/1JR5wd3rwJR9bstJbDvM6PGRJh/Yu2fcAnB4z/B Ho7fGSYe2fNd3AuT0OkQQ4yGT8su7G2vmFv1UMyctxKcVvEnrM2ab+PbV1+t6Dbx bA/yCGGR0GVtYh1OWYl7EGZUDDRLH9HXGEgrxDA1yrPGcX/8QfCR1j2LIAVYFG5k ORFuLEx+jF/hFG870GJD4BFo4QoUKjGfA3WmGQjgQDl82oGpI7dU6HLs5wWu0R+Y xHQqS+O4wq13OqlNgEKs2bRiiP6fQ7W7g62KA7MlThd1cHgpLId8kIt7ZEmsJkU+ wAIvKDpcGqYP0UJhDUjLUkbq0A== -----END CERTIFICATE-----Generated at Mon May 18 14:55:18 2026 by rpki-client