$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: I5IS4k9FKcyT2fnYXfmgB6yiB52f1A9ok6UWhcMyypY= Subject key identifier: C3:F5:E9:2C:E1:40:B8:5C:A0:D3:DA:B4:0A:58:DC:91:17:D8:9C:C2 Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 029C Signing time: Mon 11 May 2026 01:40:17 +0000 Manifest this update: Mon 11 May 2026 01:40:16 +0000 Manifest next update: Mon 18 May 2026 01:40:16 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: wEAaIFLNeYVO0SmOyP7yp3/qgeoIgihAnjLaQnmyQLM=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: Ot9ybUKOEhuNzPb2fA0AHKITpD0tgf/ehRwyWkuwPQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 01:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: May 11 01:40:16 2026 GMT Not After : May 18 01:40:16 2026 GMT Subject: CN=6a013380-807c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:84:eb:b1:af:a5:9e:29:b8:f1:53:33:ed: 77:c2:00:9b:89:6a:f7:4d:26:ad:73:b8:cf:46:89: f8:f7:82:c9:0f:d6:e6:56:2f:68:29:09:d4:d4:f9: ea:18:53:c4:2c:c5:51:bd:64:26:c2:10:e4:d5:52: 21:1d:66:d6:fc:e1:8c:c7:8a:5f:ec:73:c6:42:ac: 94:d5:62:b4:ff:ff:33:ed:e9:a0:94:42:f5:69:73: e7:60:ea:b8:eb:3a:12:25:bf:96:ef:e6:5c:cd:ae: 6c:d6:e3:fd:fa:ee:00:9d:80:c1:53:c2:a6:85:0f: 67:8e:66:9d:8f:8f:9e:72:9d:c9:c1:d3:31:88:9d: ca:9b:c5:06:01:fb:6b:81:bf:87:08:b8:e8:f8:bf: b0:1c:e8:03:dc:62:8a:4c:75:e0:36:02:e9:95:e5: 78:57:d5:8e:26:d5:f4:fa:0c:cd:a9:da:7d:23:71: ec:63:79:4e:6d:4f:3a:03:6f:b9:b4:27:e4:e4:62: 66:97:96:df:1a:f6:bd:28:18:33:01:04:b7:f2:67: 06:5e:86:63:b4:2a:f5:17:5b:cf:77:29:00:d1:1f: 66:da:b1:de:c1:b8:6a:0c:76:22:cf:3c:47:43:ed: 88:5f:76:f5:6c:a9:a9:66:34:42:c1:8a:f6:ce:56: c6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F5:E9:2C:E1:40:B8:5C:A0:D3:DA:B4:0A:58:DC:91:17:D8:9C:C2 X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:eb:1a:80:26:c1:6d:0a:82:8e:cc:1d:d3:30:f2:a8:08:f2: 77:59:96:91:83:ed:3e:3b:34:34:da:1b:9c:b6:19:bb:a3:cf: 4f:e3:02:0d:44:38:4c:82:6f:da:ca:21:10:46:8d:c6:94:f1: ec:0d:f8:1e:05:9f:5a:3c:64:7a:56:5a:7b:e1:7f:82:15:4b: 5a:3c:f6:70:63:bf:9b:5c:90:b2:ff:ef:72:49:eb:f1:1a:5f: dd:02:b0:62:4e:80:fb:5c:60:24:84:b5:38:65:b2:38:48:af: 2c:1a:15:43:82:0b:c6:62:c7:4c:45:0e:56:c6:71:e0:d2:d9: 84:5f:e1:59:27:c9:38:0a:d4:3e:8b:46:69:6d:dc:03:33:9e: ba:d0:b2:dc:c4:69:34:c3:ff:3d:f9:42:9d:5a:a8:9d:64:39: ac:40:11:5b:31:1c:31:60:80:07:36:96:b6:b1:82:9d:b5:16: 37:cc:02:cc:e4:80:dc:9b:3c:13:78:d6:0f:96:72:5d:cf:60: f9:fe:38:35:bf:d5:ff:b7:08:90:ba:cf:b5:0b:9d:95:da:d6: 7b:6c:5f:5d:a4:d0:ca:99:02:79:63:1a:db:80:98:88:cd:24: 45:e2:54:0f:d0:87:3e:e9:8f:70:dc:36:1b:53:ad:c8:6a:8c: 28:73:d1:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjYwNTExMDE0MDE2WhcNMjYwNTE4MDE0MDE2WjAYMRYwFAYD VQQDEw02YTAxMzM4MC04MDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj6E67GvpZ4puPFTM+13wgCbiWr3TSatc7jPRon494LJD9bmVi9oKQnU1Pnq GFPELMVRvWQmwhDk1VIhHWbW/OGMx4pf7HPGQqyU1WK0//8z7emglEL1aXPnYOq4 6zoSJb+W7+Zcza5s1uP9+u4AnYDBU8KmhQ9njmadj4+ecp3JwdMxiJ3Km8UGAftr gb+HCLjo+L+wHOgD3GKKTHXgNgLpleV4V9WOJtX0+gzNqdp9I3HsY3lObU86A2+5 tCfk5GJml5bfGva9KBgzAQS38mcGXoZjtCr1F1vPdykA0R9m2rHewbhqDHYizzxH Q+2IX3b1bKmpZjRCwYr2zlbG8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMP16Szh QLhcoNPatApY3JEX2JzCMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjOsagCbBbQqCjswd0zDyqAjyd1mWkYPtPjs0NNobnLYZu6PPT+MCDUQ4TIJv 2sohEEaNxpTx7A34HgWfWjxkelZae+F/ghVLWjz2cGO/m1yQsv/vcknr8Rpf3QKw Yk6A+1xgJIS1OGWyOEivLBoVQ4ILxmLHTEUOVsZx4NLZhF/hWSfJOArUPotGaW3c AzOeutCy3MRpNMP/PflCnVqonWQ5rEARWzEcMWCABzaWtrGCnbUWN8wCzOSA3Js8 E3jWD5ZyXc9g+f44Nb/V/7cIkLrPtQudldrWe2xfXaTQypkCeWMa24CYiM0kReJU D9CHPumPcNw2G1OtyGqMKHPRLQ== -----END CERTIFICATE-----Generated at Wed May 13 01:16:43 2026 by rpki-client