$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: DrSwtXoI+oOFcZDna1pBBoPIIqbABWkbfzkl26IWGwI= Subject key identifier: 08:88:8B:BA:2A:92:F9:EB:F6:FC:F5:B3:DD:8F:14:41:9C:F3:00:6B Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 11CE Signing time: Tue 12 May 2026 17:13:32 +0000 Manifest this update: Tue 12 May 2026 17:13:31 +0000 Manifest next update: Tue 19 May 2026 17:13:31 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: 03LbOlx3axzTRczYyHXNRrLTxbTqKR2GaxXnVAElykY=) 2: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: XYEh/xOjDbsTNdnGi10ej2EmI6JjqzNUkL1XRZsJguA=) 3: 16C96BAE18E311EFB8960668C4F9AE02.roa (hash: vKccd2F9ftUD7dxFhS0jRDAUZNsfYOsIjkhXXA2UhHI=) 4: 2E3A7CDCECB411F0B6919987656F56BC.roa (hash: kTCwjps9JXKEexuvTBj7XMywtX0m9mqMVThPCXp01vw=) 5: D276D68CACDC11F093B6B95AC4F9AE02.roa (hash: 3yfrgKeAqT2UJ9hoABf1H6+wfUw8pcotIBYIseVLvBY=) 6: D9BBFBDA4D3111F099A48033C4F9AE02.roa (hash: DerhX6OwSbe0rRaFIZdy5dbL/hGKFEzFgbvMCI0QCo0=) 7: 98A0F61840AD11F0BB332714C4F9AE02.roa (hash: IS1j4fiLKS57qrKHF7wS3bUANSIBQvPd5t8keIKkTrs=) 8: 69915526EA0711F0976467B16F6F56BC.roa (hash: sLYsx+0TCakC1YwYdtjQtbYvAlnAp516G4hk84r24Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4644 (0x1224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: May 12 17:13:31 2026 GMT Not After : May 19 17:13:31 2026 GMT Subject: CN=6a035fbc-da98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d9:9b:29:a5:94:53:dd:55:18:44:e0:ce:da: 71:bd:25:a7:73:62:8a:3d:eb:1e:2d:33:f2:c0:98: a2:1e:ac:6c:9e:f5:a0:a2:81:55:43:e4:92:6c:f2: 9b:51:49:df:74:18:f5:67:e6:90:dc:d5:14:8d:1e: 72:10:47:99:40:63:a3:33:f5:3e:d5:0a:83:88:fd: a5:e1:db:e3:a4:09:c3:66:2e:cd:8e:74:3b:8a:cd: 47:d6:27:ae:37:73:04:bb:10:94:ee:46:05:24:eb: 26:ab:b9:ee:6c:c3:69:36:cb:d8:3a:30:6b:f8:6f: 50:ec:5c:54:49:ac:98:6e:c2:0b:ca:9e:46:4c:ea: 7e:56:28:cf:55:a2:ff:18:42:b8:ed:92:ff:1c:f5: b0:8b:53:b7:a7:e9:5d:5c:ef:14:94:3d:ed:51:2e: 5a:a4:89:96:21:5b:ce:76:1b:30:ff:c9:ff:44:84: 20:f7:9a:83:f1:f3:a2:eb:65:06:e6:5e:f7:60:45: de:15:3f:fd:67:c2:aa:62:a0:17:f7:ce:49:15:3a: c2:02:25:4a:73:38:d5:a2:51:b4:b9:42:63:6e:9d: c7:9a:b5:1f:46:13:41:23:39:44:10:e3:32:cc:78: 1e:92:17:41:2c:64:ff:c5:ba:9b:07:9a:61:90:ca: 4c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:88:8B:BA:2A:92:F9:EB:F6:FC:F5:B3:DD:8F:14:41:9C:F3:00:6B X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f2:a5:4d:45:ea:a7:6f:46:92:09:6a:31:83:58:82:8d:d9: 7d:55:14:22:bb:94:16:cb:89:3c:e1:66:1c:2e:30:ba:9c:95: 97:b7:01:46:74:cf:34:96:29:a4:d4:c4:62:0e:1d:ad:f8:df: 60:aa:be:90:d1:11:f8:8c:08:f3:7f:a1:b8:7f:bb:4f:96:a1: a7:4d:0d:86:7f:ab:37:5a:05:74:57:4f:f2:62:65:73:10:5a: 6e:5f:53:e4:ac:81:44:83:28:ae:85:e3:ff:a3:20:48:c4:1d: 0a:ee:ad:69:33:3a:ed:52:7b:8f:f0:19:4a:a5:4c:b8:d5:00: d6:90:c4:45:1b:ce:c7:e7:07:65:51:73:6e:66:b7:51:06:80: 79:2b:8b:5d:05:8f:67:ec:06:b2:e3:86:49:d3:33:a7:34:82: 1a:41:31:21:9e:07:be:3a:5f:f1:2e:e4:3f:a2:49:25:b1:8a: 4a:45:16:95:45:f0:13:19:bf:a0:5e:5d:cb:8e:b5:1b:84:78: 34:3e:fd:0a:ad:98:e6:d5:97:d3:9e:40:83:93:e5:b1:ae:68: c6:56:11:02:ec:2a:8b:46:b2:ee:e4:7e:1a:e5:db:52:f1:5c: 8e:6e:8e:78:b1:5d:23:34:00:31:6d:b1:b6:73:c0:8a:c4:89: 17:73:24:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjYwNTEyMTcxMzMxWhcNMjYwNTE5MTcxMzMxWjAYMRYwFAYD VQQDEw02YTAzNWZiYy1kYTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdmbKaWUU91VGETgztpxvSWnc2KKPeseLTPywJiiHqxsnvWgooFVQ+SSbPKb UUnfdBj1Z+aQ3NUUjR5yEEeZQGOjM/U+1QqDiP2l4dvjpAnDZi7NjnQ7is1H1ieu N3MEuxCU7kYFJOsmq7nubMNpNsvYOjBr+G9Q7FxUSayYbsILyp5GTOp+VijPVaL/ GEK47ZL/HPWwi1O3p+ldXO8UlD3tUS5apImWIVvOdhsw/8n/RIQg95qD8fOi62UG 5l73YEXeFT/9Z8KqYqAX985JFTrCAiVKczjVolG0uUJjbp3HmrUfRhNBIzlEEOMy zHgekhdBLGT/xbqbB5phkMpMnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAiIi7oq kvnr9vz1s92PFEGc8wBrMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXPKlTUXqp29GkglqMYNYgo3ZfVUUIruUFsuJPOFmHC4wupyVl7cBRnTPNJYp pNTEYg4drfjfYKq+kNER+IwI83+huH+7T5ahp00Nhn+rN1oFdFdP8mJlcxBabl9T 5KyBRIMoroXj/6MgSMQdCu6taTM67VJ7j/AZSqVMuNUA1pDERRvOx+cHZVFzbma3 UQaAeSuLXQWPZ+wGsuOGSdMzpzSCGkExIZ4Hvjpf8S7kP6JJJbGKSkUWlUXwExm/ oF5dy461G4R4ND79Cq2Y5tWX055Ag5Plsa5oxlYRAuwqi0ay7uR+GuXbUvFcjm6O eLFdIzQAMW2xtnPAisSJF3MkcA== -----END CERTIFICATE-----Generated at Wed May 13 04:01:33 2026 by rpki-client