$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: cS4k4IdMrjdzGwdixb27R5eccR/QfD7bOhoMt0fEQls= Subject key identifier: 80:27:1B:64:3F:18:83:30:79:AD:8B:CD:46:37:6C:4B:3F:BB:E9:01 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 05A1 Signing time: Sun 10 May 2026 23:15:54 +0000 Manifest this update: Sun 10 May 2026 23:15:53 +0000 Manifest next update: Sun 17 May 2026 23:15:53 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: vxCvLzPpzTVENEpZ3ZZncx/sBuyyYWPKOHm1QNkxEBY=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 23:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: May 10 23:15:53 2026 GMT Not After : May 17 23:15:53 2026 GMT Subject: CN=6a0111aa-1dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b7:d5:b1:4f:01:aa:09:d6:32:df:07:28:63: 4b:97:09:97:02:06:24:cf:3b:89:59:5e:a1:33:d6: 14:5a:29:0b:f7:06:0e:94:45:a0:91:6f:9a:92:97: 2d:95:45:e8:7a:65:28:41:c0:c7:74:73:67:32:4e: 88:84:3e:49:6a:f3:b8:99:01:ef:04:bb:1d:e7:b0: aa:8a:c1:70:75:75:46:c7:cc:9a:40:29:08:6d:48: 22:3e:14:b6:6a:d8:e6:6b:9a:dc:d1:c2:68:14:ef: 5e:91:88:99:98:9c:3f:e9:a0:a2:5f:94:2f:cf:e5: ac:db:16:d5:c9:8f:d2:05:16:f0:24:df:96:3d:1f: 92:b5:50:06:b9:86:80:d6:91:3d:5e:b6:e2:f1:14: 29:61:a3:ff:46:9f:ee:cd:96:f7:9a:8a:b9:91:d9: 9a:bf:24:4a:ab:4b:67:ef:4c:cc:55:ea:75:47:01: 3b:2d:8f:e5:18:33:d9:36:fe:83:6e:89:0c:03:70: 42:74:f5:d0:0a:ae:96:40:a1:55:c6:79:04:82:a1: ca:de:ce:56:e0:f2:1d:41:28:1f:4d:67:b3:21:b8: 3a:05:51:2a:b0:18:c4:d5:bc:95:e3:13:52:ae:73: 99:6d:f9:9c:6d:a1:61:25:8b:31:d4:eb:53:75:a6: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:27:1B:64:3F:18:83:30:79:AD:8B:CD:46:37:6C:4B:3F:BB:E9:01 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:7d:a8:27:6b:e8:b3:85:5e:8e:f2:de:d4:ad:72:15:bb:5d: cc:59:38:73:a6:5e:17:d5:8a:15:a0:f1:73:e7:2e:b2:36:40: c4:f8:3a:5d:3b:62:98:b2:89:fc:40:ea:c6:15:d1:b7:a9:22: fe:a6:1d:0d:ef:7a:91:ad:55:83:5f:b6:6a:f2:97:18:8d:4b: f3:22:cf:c0:92:ca:57:74:00:2a:e2:bf:f6:31:5e:c6:1d:d8: 41:46:4f:a9:3e:50:59:a3:84:c8:14:31:4e:2e:da:fd:d6:37: 32:eb:95:ce:9b:c2:81:76:99:77:4a:7b:17:e5:27:7f:aa:ed: 19:05:a6:f4:de:98:02:57:c7:56:1f:54:11:00:fc:41:77:00: 0b:2d:fc:01:ab:5a:12:2e:db:7c:ff:fb:db:46:ee:68:b8:8b: c1:39:f3:27:53:6f:58:66:3b:fd:ed:96:bf:28:c8:e4:9e:5e: 41:46:6d:6d:dc:14:f6:33:0e:d9:39:37:36:26:00:7f:14:b4: 29:40:85:a3:d5:b6:b0:f1:70:79:5c:48:8d:bc:a4:84:b5:e2: de:b1:5a:c7:5d:7c:c6:09:78:84:d7:fa:0e:a4:dc:d0:5c:84: b0:ec:96:d9:df:89:9d:67:0d:74:d1:64:ad:08:87:b2:de:33: f8:00:ac:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNTEwMjMxNTUzWhcNMjYwNTE3MjMxNTUzWjAYMRYwFAYD VQQDEw02YTAxMTFhYS0xZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLfVsU8BqgnWMt8HKGNLlwmXAgYkzzuJWV6hM9YUWikL9wYOlEWgkW+akpct lUXoemUoQcDHdHNnMk6IhD5JavO4mQHvBLsd57CqisFwdXVGx8yaQCkIbUgiPhS2 atjma5rc0cJoFO9ekYiZmJw/6aCiX5Qvz+Ws2xbVyY/SBRbwJN+WPR+StVAGuYaA 1pE9Xrbi8RQpYaP/Rp/uzZb3moq5kdmavyRKq0tn70zMVep1RwE7LY/lGDPZNv6D bokMA3BCdPXQCq6WQKFVxnkEgqHK3s5W4PIdQSgfTWezIbg6BVEqsBjE1byV4xNS rnOZbfmcbaFhJYsx1OtTdaZNDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIAnG2Q/ GIMwea2LzUY3bEs/u+kBMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM32oJ2vos4VejvLe1K1yFbtdzFk4c6ZeF9WKFaDxc+cusjZAxPg6XTtimLKJ /EDqxhXRt6ki/qYdDe96ka1Vg1+2avKXGI1L8yLPwJLKV3QAKuK/9jFexh3YQUZP qT5QWaOEyBQxTi7a/dY3MuuVzpvCgXaZd0p7F+Unf6rtGQWm9N6YAlfHVh9UEQD8 QXcACy38AataEi7bfP/720buaLiLwTnzJ1NvWGY7/e2WvyjI5J5eQUZtbdwU9jMO 2Tk3NiYAfxS0KUCFo9W2sPFweVxIjbykhLXi3rFax118xgl4hNf6DqTc0FyEsOyW 2d+JnWcNdNFkrQiHst4z+ACsUg== -----END CERTIFICATE-----Generated at Mon May 11 14:22:08 2026 by rpki-client