$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: +lhq/Mr/VPwiC+CB5joaQt3EyUjFUU4ymv7D65ovTz0= Subject key identifier: 64:C7:2D:AE:A4:6E:FE:9E:1C:2F:73:CA:8A:78:28:93:0C:59:34:E1 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 195A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 1950 Signing time: Tue 12 May 2026 16:26:06 +0000 Manifest this update: Tue 12 May 2026 16:26:05 +0000 Manifest next update: Tue 19 May 2026 16:26:05 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: lISrHrd0S3fgGWQwX2ZRdJ6YCPaOqIuyKhK/3hpREjs=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: YEfPuupkj6+rYgnnK9KPFgtKEqtP8lyWUzvWsUKBop0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6490 (0x195a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: May 12 16:26:05 2026 GMT Not After : May 19 16:26:05 2026 GMT Subject: CN=6a03549e-8307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1d:6c:ae:ee:de:95:79:50:e4:4c:c6:74:8c: 29:e4:d3:29:92:e4:34:bb:a2:d8:e4:13:df:20:a0: 0f:8b:e5:45:5a:52:54:54:db:23:84:06:30:f2:76: 21:d0:6b:a8:f2:63:33:b2:fc:18:bc:5a:c2:ab:f7: d9:f6:b5:70:20:65:01:c5:a3:b1:65:11:83:1a:4d: ab:65:bf:83:0a:49:ae:b8:d9:65:b6:5a:38:18:0d: 8f:be:78:04:d6:d9:0f:a4:d4:83:9a:ca:1e:55:e3: 17:a7:39:1a:93:e1:84:4c:68:c0:3e:62:1f:c8:44: 00:2f:5c:56:b2:60:70:99:5f:4d:21:62:15:33:9f: b6:e0:c2:8a:76:77:fc:98:a3:2f:48:2f:b9:7c:cc: c3:b1:6b:8b:8a:ef:4d:89:f1:35:1f:6c:eb:59:19: 03:6c:d7:51:ad:1d:ce:e4:a4:a0:65:fe:aa:41:d5: 81:a1:54:34:95:85:c9:c6:fe:34:5b:ea:05:2d:67: ed:ca:e4:23:7b:22:99:4d:e7:eb:06:fd:ee:1c:b1: f6:a2:a2:76:d6:82:30:06:a9:f9:8d:6a:df:94:f9: 8d:b5:31:d7:69:48:2f:b0:4b:a7:5d:47:82:9d:10: d3:17:26:82:ab:57:5a:c3:6c:fb:08:77:c7:c5:52: 3b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C7:2D:AE:A4:6E:FE:9E:1C:2F:73:CA:8A:78:28:93:0C:59:34:E1 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:fc:8f:45:5d:83:c6:52:2c:88:10:db:0f:7e:89:ac:a0:85: 8b:9e:db:82:56:66:4b:d3:c2:49:76:99:b9:0c:91:5f:05:9a: f1:c3:94:cd:bb:ab:65:84:99:13:32:11:c2:06:16:ae:dc:21: 25:3c:a3:56:c4:73:30:75:7c:ab:ec:99:c7:83:9e:3a:5a:34: 2e:29:32:2d:74:9b:b2:88:a8:2e:41:e8:1e:97:68:e9:94:39: 3c:a4:ea:eb:9d:eb:1e:6c:04:16:3a:63:88:29:39:c4:20:2f: b9:be:41:4f:e4:d6:fd:29:ec:1a:ef:a5:f8:8d:06:b5:d5:38: 94:95:78:8e:85:78:f7:cb:9f:02:bc:74:66:37:10:74:43:36: aa:e5:66:7a:5d:a8:9d:d7:c3:0c:89:ff:00:59:02:2a:06:69: c5:b1:4e:e5:0f:65:a2:16:92:bf:bb:da:45:02:6e:ff:82:86: ef:ce:db:14:36:25:09:dc:92:b7:1b:a6:bb:58:86:7f:55:75: f4:32:6c:d4:35:b7:0c:12:18:5f:c8:a5:85:41:48:92:90:14: d1:a6:80:6a:44:12:78:70:d1:d9:f2:65:cd:93:7f:ff:2e:57: aa:9c:a0:f5:14:07:68:21:2f:dc:a7:3a:96:a3:f9:b4:a0:f3: 79:43:ee:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjYwNTEyMTYyNjA1WhcNMjYwNTE5MTYyNjA1WjAYMRYwFAYD VQQDEw02YTAzNTQ5ZS04MzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB1sru7elXlQ5EzGdIwp5NMpkuQ0u6LY5BPfIKAPi+VFWlJUVNsjhAYw8nYh 0Guo8mMzsvwYvFrCq/fZ9rVwIGUBxaOxZRGDGk2rZb+DCkmuuNlltlo4GA2PvngE 1tkPpNSDmsoeVeMXpzkak+GETGjAPmIfyEQAL1xWsmBwmV9NIWIVM5+24MKKdnf8 mKMvSC+5fMzDsWuLiu9NifE1H2zrWRkDbNdRrR3O5KSgZf6qQdWBoVQ0lYXJxv40 W+oFLWftyuQjeyKZTefrBv3uHLH2oqJ21oIwBqn5jWrflPmNtTHXaUgvsEunXUeC nRDTFyaCq1daw2z7CHfHxVI71QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGTHLa6k bv6eHC9zyop4KJMMWTThMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb/yPRV2DxlIsiBDbD36JrKCFi57bglZmS9PCSXaZuQyRXwWa8cOUzburZYSZ EzIRwgYWrtwhJTyjVsRzMHV8q+yZx4OeOlo0LikyLXSbsoioLkHoHpdo6ZQ5PKTq 653rHmwEFjpjiCk5xCAvub5BT+TW/SnsGu+l+I0GtdU4lJV4joV498ufArx0ZjcQ dEM2quVmel2ondfDDIn/AFkCKgZpxbFO5Q9lohaSv7vaRQJu/4KG787bFDYlCdyS txumu1iGf1V19DJs1DW3DBIYX8ilhUFIkpAU0aaAakQSeHDR2fJlzZN//y5Xqpyg 9RQHaCEv3Kc6lqP5tKDzeUPu4Q== -----END CERTIFICATE-----Generated at Wed May 13 14:33:10 2026 by rpki-client