$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: nRdFy8PRl2/uYOWSU1gY5WVUgz1GWTcgF0MXJsaIMck= Subject key identifier: 4E:31:AD:B6:FE:AA:65:36:7F:FD:20:A2:CB:76:52:C8:A9:94:C9:65 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1383 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 136A Signing time: Tue 12 May 2026 16:59:58 +0000 Manifest this update: Tue 12 May 2026 16:59:57 +0000 Manifest next update: Tue 19 May 2026 16:59:57 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: T9frKScSHf3AVck66dIVYBSrdE7n3TFT2SwWPIOOVQ8=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: Y5k6Nh1K8NNS0hPh5WTEjL7DqnEuLThuhCaWRqICeaE=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: k+p0xtu7l+Ym0EwSnutl9VlQ16P8ym/648o14VPC7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4995 (0x1383) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: May 12 16:59:57 2026 GMT Not After : May 19 16:59:57 2026 GMT Subject: CN=6a035c8e-f09e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c6:71:ed:bc:28:f3:c2:8a:5b:1a:c3:f8:6a: 2b:5e:3f:28:57:d7:de:8c:3b:66:92:9c:ef:5b:c6: 11:00:32:24:1e:b7:e9:ad:cd:21:f5:4d:ce:46:85: 29:cc:d3:79:aa:d8:ca:aa:45:fa:9b:43:10:29:23: df:6e:55:80:56:b1:81:cc:ae:5d:05:3a:90:8e:ff: 1e:1f:8e:2f:bf:a1:6e:17:f1:71:70:2f:89:8f:ea: 85:1c:9f:f1:c5:cb:9c:55:02:16:d9:00:d3:71:9a: cb:7d:c4:16:9d:55:41:dc:b8:f2:f5:06:4d:da:79: 66:76:68:96:d1:9c:2b:00:f1:8e:67:49:20:83:8e: a0:25:3e:e3:8f:22:28:a0:e9:71:c4:ec:10:bb:30: 8f:50:b0:6f:76:99:e9:4c:ef:8e:72:4e:90:a6:97: 9e:83:ae:33:2c:00:05:e6:cb:94:e1:32:e1:73:bb: bb:52:28:79:f8:11:6a:2c:9c:e3:c7:35:65:06:d0: 4b:59:4d:76:09:f8:44:68:fc:c8:82:02:e2:b1:f2: 72:48:d0:75:bd:e2:45:06:d1:c5:73:60:f5:ac:b7: a9:4b:fb:d8:e4:2a:0e:f1:d2:4f:17:26:5f:b0:01: d2:1d:00:e5:10:fb:22:b3:02:71:9a:a0:a6:6a:75: 41:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:31:AD:B6:FE:AA:65:36:7F:FD:20:A2:CB:76:52:C8:A9:94:C9:65 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e0:0c:24:d5:cc:48:4e:9b:23:9b:ac:6c:14:4d:98:7e:d3: b7:c1:3b:82:16:95:39:70:c7:42:4c:94:d5:72:23:ef:b4:8f: 9c:8b:cc:f1:ae:56:c7:da:02:cb:37:b7:11:e5:76:27:f4:40: 28:d2:8d:d1:60:b1:48:7e:32:fd:ff:ef:35:75:66:2d:5a:4e: ad:bd:42:03:43:7e:95:9f:89:60:c0:f2:bc:ef:cb:64:e5:63: 40:a8:42:b6:2a:c2:86:35:38:d0:8c:a9:75:2b:50:9e:3e:52: e8:e3:2c:fb:24:08:18:ca:48:ef:58:0d:3e:34:26:de:72:05: a2:9e:90:de:0d:68:e1:ed:8a:ed:e2:d6:c4:e7:c1:c3:06:2f: 66:e3:5f:4a:14:bb:fa:66:bc:bc:ec:99:31:08:46:ae:69:67: ed:c4:38:64:80:50:be:bf:ad:d2:e7:65:66:1f:33:d0:8a:5e: cb:d5:74:53:44:d4:46:31:97:d4:6b:b3:39:0d:22:54:63:57: f1:3c:39:b1:e5:9d:ee:f5:6a:ff:39:c6:c6:a3:26:3e:51:75: a3:c4:3c:ec:76:86:ac:6c:8d:67:e4:02:66:73:fa:f8:d6:7f: 84:1b:09:72:b4:09:d5:3a:bf:6b:14:7e:a3:f7:6a:93:25:3e: b7:8d:ce:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjYwNTEyMTY1OTU3WhcNMjYwNTE5MTY1OTU3WjAYMRYwFAYD VQQDEw02YTAzNWM4ZS1mMDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmsZx7bwo88KKWxrD+GorXj8oV9fejDtmkpzvW8YRADIkHrfprc0h9U3ORoUp zNN5qtjKqkX6m0MQKSPfblWAVrGBzK5dBTqQjv8eH44vv6FuF/FxcC+Jj+qFHJ/x xcucVQIW2QDTcZrLfcQWnVVB3Ljy9QZN2nlmdmiW0ZwrAPGOZ0kgg46gJT7jjyIo oOlxxOwQuzCPULBvdpnpTO+Ock6Qppeeg64zLAAF5suU4TLhc7u7Uih5+BFqLJzj xzVlBtBLWU12CfhEaPzIggLisfJySNB1veJFBtHFc2D1rLepS/vY5CoO8dJPFyZf sAHSHQDlEPsiswJxmqCmanVBcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE4xrbb+ qmU2f/0gost2UsiplMllMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ+AMJNXMSE6bI5usbBRNmH7Tt8E7ghaVOXDHQkyU1XIj77SPnIvM8a5Wx9oC yze3EeV2J/RAKNKN0WCxSH4y/f/vNXVmLVpOrb1CA0N+lZ+JYMDyvO/LZOVjQKhC tirChjU40IypdStQnj5S6OMs+yQIGMpI71gNPjQm3nIFop6Q3g1o4e2K7eLWxOfB wwYvZuNfShS7+ma8vOyZMQhGrmln7cQ4ZIBQvr+t0udlZh8z0Ipey9V0U0TURjGX 1GuzOQ0iVGNX8Tw5seWd7vVq/znGxqMmPlF1o8Q87HaGrGyNZ+QCZnP6+NZ/hBsJ crQJ1Tq/axR+o/dqkyU+t43OSg== -----END CERTIFICATE-----Generated at Wed May 13 03:44:37 2026 by rpki-client