$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: Gx+ITzShJaCmHRNn8UjC4myTh49bx/iOa78rcdMs1hU= Subject key identifier: C9:E5:47:BE:BF:FD:A5:4F:E3:3E:3A:4E:35:06:60:7C:8A:A4:EB:65 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 05BA Signing time: Sun 28 Jun 2026 23:26:21 +0000 Manifest this update: Sun 28 Jun 2026 23:26:20 +0000 Manifest next update: Sun 05 Jul 2026 23:26:20 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: Sr9nhm6H2e3YZQk2YSy2Eez9oWPTjCoEN8bvl1WddrU=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Jul 2026 23:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1480 (0x5c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Jun 28 23:26:20 2026 GMT Not After : Jul 5 23:26:20 2026 GMT Subject: CN=6a41ad9d-dff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b3:5d:92:cc:75:17:88:e4:f6:d7:c1:7a:57: c0:87:d6:85:f5:76:e7:84:49:f0:a1:5f:ff:b5:ed: df:d0:f2:3e:be:87:e9:a9:9b:82:90:ba:cd:a2:55: 42:48:a2:dc:03:6e:6d:91:60:0e:e5:f8:82:81:0f: 02:78:44:c9:82:c7:fb:c9:76:bf:2f:0d:99:1e:1a: d0:d8:e9:83:50:4b:e2:83:a6:c8:80:66:15:17:37: 06:21:7c:2c:32:01:09:f9:51:46:10:e1:21:fb:33: 62:2f:7a:bc:60:ea:86:05:a7:75:5b:fc:3e:3f:c1: 46:7a:16:d3:81:f6:18:11:d8:ae:d5:b1:84:c4:52: 3a:c8:77:bc:eb:37:e9:f6:4f:45:92:62:69:b1:12: 40:89:ec:bc:97:d1:89:5b:52:a7:b6:d5:79:b2:0e: d1:88:7e:d5:1e:71:10:22:f2:7c:34:02:b2:0a:02: 97:15:da:ec:09:9b:67:0f:59:27:62:0c:bc:0d:4a: e0:c8:b7:0c:ea:cc:af:fd:d6:41:2b:37:5d:93:d3: 28:f7:49:cc:e0:68:ea:a5:65:0c:5d:87:da:d7:0a: 7c:38:fc:a3:5e:45:c0:5f:3b:af:18:6c:25:59:45: f6:84:f8:28:68:20:65:78:a5:95:75:9f:93:f4:e4: 51:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E5:47:BE:BF:FD:A5:4F:E3:3E:3A:4E:35:06:60:7C:8A:A4:EB:65 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ef:a5:92:84:9b:e4:fc:6c:4b:be:5f:5d:e1:58:e4:27:2f: 48:50:43:60:68:d8:d8:9c:d4:78:a8:7d:fe:30:4c:c3:6a:cc: aa:e3:47:3f:aa:b6:a7:52:c8:70:5b:04:e7:42:97:8d:a0:86: 95:ab:9b:aa:15:ca:e3:8b:9a:60:b9:59:61:2f:06:f5:e4:4e: 9a:96:eb:b5:6e:3e:04:c6:de:f4:e3:e2:cf:1d:57:a5:6a:9f: fb:1b:c3:57:18:77:cd:05:db:ea:de:2b:d4:59:86:41:c6:2e: 49:76:fd:51:ef:1b:ca:7e:23:59:e9:4d:e9:73:90:dc:da:9f: 74:f8:b7:e9:45:96:81:86:de:01:16:3b:ff:a5:46:9e:53:e9: bd:a7:8d:ea:2c:e8:bf:14:4f:34:f1:d2:13:d9:64:fa:85:bd: ae:74:3d:c2:dc:24:ec:85:6f:00:9f:ae:2a:20:80:13:88:6e: 81:09:f2:d0:c4:ed:a4:51:ec:bd:bc:cb:2d:26:4b:d5:21:ae: 09:77:7b:7f:67:5b:70:a6:07:c7:23:fe:ce:50:ad:70:86:83: 3d:9f:ce:d5:fc:51:33:9f:02:4d:be:df:c1:6e:24:fa:c5:2f: cd:50:3b:6c:54:9a:7d:e9:87:b3:cd:a1:58:4a:20:ec:a0:ff: 98:16:1a:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNjI4MjMyNjIwWhcNMjYwNzA1MjMyNjIwWjAYMRYwFAYD VQQDEw02YTQxYWQ5ZC1kZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLNdksx1F4jk9tfBelfAh9aF9XbnhEnwoV//te3f0PI+vofpqZuCkLrNolVC SKLcA25tkWAO5fiCgQ8CeETJgsf7yXa/Lw2ZHhrQ2OmDUEvig6bIgGYVFzcGIXws MgEJ+VFGEOEh+zNiL3q8YOqGBad1W/w+P8FGehbTgfYYEdiu1bGExFI6yHe86zfp 9k9FkmJpsRJAiey8l9GJW1KnttV5sg7RiH7VHnEQIvJ8NAKyCgKXFdrsCZtnD1kn Ygy8DUrgyLcM6syv/dZBKzddk9Mo90nM4GjqpWUMXYfa1wp8OPyjXkXAXzuvGGwl WUX2hPgoaCBleKWVdZ+T9ORRTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMnlR76/ /aVP4z46TjUGYHyKpOtlMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmu+lkoSb5PxsS75fXeFY5CcvSFBDYGjY2JzUeKh9/jBMw2rMquNHP6q2p1LI cFsE50KXjaCGlaubqhXK44uaYLlZYS8G9eROmpbrtW4+BMbe9OPizx1XpWqf+xvD Vxh3zQXb6t4r1FmGQcYuSXb9Ue8byn4jWelN6XOQ3NqfdPi36UWWgYbeARY7/6VG nlPpvaeN6izovxRPNPHSE9lk+oW9rnQ9wtwk7IVvAJ+uKiCAE4hugQny0MTtpFHs vbzLLSZL1SGuCXd7f2dbcKYHxyP+zlCtcIaDPZ/O1fxRM58CTb7fwW4k+sUvzVA7 bFSafemHs82hWEog7KD/mBYaIA== -----END CERTIFICATE-----Generated at Mon Jun 29 16:07:55 2026 by rpki-client