$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: lebLzTIKfEnjjG0ePAV2k1ftqe+AnZGrqgpJ0FAsCJw= Subject key identifier: FF:B7:7C:4A:47:54:13:09:74:E0:68:CF:C3:A4:30:31:1A:72:57:59 Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 5B Signing time: Mon 11 May 2026 08:18:31 +0000 Manifest this update: Mon 11 May 2026 08:18:30 +0000 Manifest next update: Mon 18 May 2026 08:18:30 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: 4CXSDPiB9jm/Gg0KBaE6oVRRyfu9/t/vmjJfRRQ3l+s=) 2: 74C3FC2413B911F1B7CEB625083D8C67.roa (hash: P4H5FeCoBASYrayJLn/hEkJQo4s7Z0+nN2dTkoyBEgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: May 11 08:18:30 2026 GMT Not After : May 18 08:18:30 2026 GMT Subject: CN=6a0190d7-f2fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:02:03:e1:e3:8a:db:dd:01:85:90:61:ea:83: ff:20:b2:07:71:f7:62:9a:ce:86:69:d1:56:c7:18: 67:4a:9e:e5:8e:64:ce:b0:c6:2a:d0:23:22:12:77: 3e:cb:e5:b7:4c:82:fd:79:c3:7c:72:f7:19:3e:8b: e4:10:3b:f2:2e:67:b1:53:c8:d6:df:4a:a3:d3:21: ea:ae:71:38:ff:1e:9c:58:bc:6f:02:9d:72:bd:17: d9:5a:b8:dc:00:77:3d:90:0e:f3:45:63:09:a8:b8: 74:20:e3:21:d9:33:c7:d2:db:06:0a:20:d2:82:64: 12:f4:88:b0:cf:ce:ed:c6:26:c1:6a:c2:72:e3:2e: 51:a5:7f:02:9b:cf:cf:8b:0b:ed:c0:85:85:13:84: 7d:1e:46:4b:fb:81:e5:4a:7f:58:ed:bc:03:fe:02: 4b:d5:60:8e:f1:ff:e5:de:7d:dc:3a:ab:bd:47:c4: 56:dc:33:d9:8b:3f:d3:d8:43:65:c5:c2:43:11:14: ef:32:45:18:4f:b5:81:75:3b:f2:55:8d:83:62:9b: c4:ef:cc:42:54:b0:bb:0b:d7:40:ae:dd:49:f0:2c: 3e:2f:90:6d:44:8a:52:cc:3b:0b:27:03:d9:b1:30: 8c:ec:ba:09:ab:65:c3:04:59:77:56:ef:67:09:29: 38:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B7:7C:4A:47:54:13:09:74:E0:68:CF:C3:A4:30:31:1A:72:57:59 X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e1:bd:1f:c7:1a:b0:13:40:89:05:d0:da:09:12:92:0a:60: df:8e:52:a7:c8:9a:c2:5a:c1:bc:60:d8:f4:36:8f:4a:13:41: cc:d1:1d:9c:e9:9e:d8:37:31:09:95:c1:b8:85:70:26:97:ca: 07:06:bd:3c:82:54:2f:e3:7d:a8:f2:27:55:68:9b:5a:df:19: a8:81:f0:56:58:53:12:64:c0:79:f9:cd:c1:70:93:5c:d6:90: 62:31:13:f8:75:be:1e:60:c7:b8:67:e1:40:78:75:2d:8a:e0: 3d:32:e7:21:2d:72:c3:8a:a6:e6:9d:82:0c:e3:22:63:67:5a: fd:b2:34:ad:f6:f9:fd:55:d3:86:1f:18:0c:bd:29:8e:d6:fb: ac:28:4d:3f:0a:6b:6b:18:5b:9c:e1:43:32:c7:bd:cb:c3:b8: 43:a1:14:b5:26:5a:f5:6f:dc:4b:73:2d:d8:89:f3:1b:4e:02: c2:55:4c:eb:4a:b4:a1:8e:99:b1:c0:d7:e5:b0:45:56:2b:0a: 10:39:79:94:d4:d4:50:86:35:78:b6:53:93:02:76:4b:05:ed: 00:f6:a3:bf:cc:44:ba:9b:0d:51:cd:f4:83:50:60:da:e2:d1: 2b:cf:67:d6:9e:d2:20:11:12:08:40:9d:1c:4a:bd:93:b5:3d: 69:46:ab:ca -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNjA1MTEwODE4MzBaFw0yNjA1MTgwODE4MzBaMBgxFjAUBgNV BAMTDTZhMDE5MGQ3LWYyZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCGAgPh44rb3QGFkGHqg/8gsgdx92KazoZp0VbHGGdKnuWOZM6wxirQIyISdz7L 5bdMgv15w3xy9xk+i+QQO/IuZ7FTyNbfSqPTIequcTj/HpxYvG8CnXK9F9lauNwA dz2QDvNFYwmouHQg4yHZM8fS2wYKINKCZBL0iLDPzu3GJsFqwnLjLlGlfwKbz8+L C+3AhYUThH0eRkv7geVKf1jtvAP+AkvVYI7x/+Xefdw6q71HxFbcM9mLP9PYQ2XF wkMRFO8yRRhPtYF1O/JVjYNim8TvzEJUsLsL10Cu3UnwLD4vkG1EilLMOwsnA9mx MIzsugmrZcMEWXdW72cJKTgFAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU/7d8SkdU Ewl04GjPw6QwMRpyV1kwHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAj4b0fxxqwE0CJBdDaCRKSCmDfjlKnyJrCWsG8YNj0No9KE0HM0R2c6Z7YNzEJ lcG4hXAml8oHBr08glQv432o8idVaJta3xmogfBWWFMSZMB5+c3BcJNc1pBiMRP4 db4eYMe4Z+FAeHUtiuA9MuchLXLDiqbmnYIM4yJjZ1r9sjSt9vn9VdOGHxgMvSmO 1vusKE0/CmtrGFuc4UMyx73Lw7hDoRS1Jlr1b9xLcy3YifMbTgLCVUzrSrShjpmx wNflsEVWKwoQOXmU1NRQhjV4tlOTAnZLBe0A9qO/zES6mw1RzfSDUGDa4tErz2fW ntIgERIIQJ0cSr2TtT1pRqvK -----END CERTIFICATE-----Generated at Wed May 13 05:00:42 2026 by rpki-client