$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: Do+yoyBZSDd0vUaze6nysSolS7VXAVTLI78WcKphkfE= Subject key identifier: 7F:D3:3E:51:8B:28:B7:E1:BB:4F:7A:41:CC:78:03:E7:39:D4:B5:7C Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: 0122 Signing time: Wed 13 May 2026 05:53:38 +0000 Manifest this update: Wed 13 May 2026 05:53:38 +0000 Manifest next update: Wed 20 May 2026 05:53:38 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: e1zseonOCa9GJL1yh90Izcwbhpzm7pDuhxLjDHZw5cE=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: aIh23/3y8xgm3k9QGKPnGbqB42NXH2OLUXREX9l30Z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: May 13 05:53:38 2026 GMT Not After : May 20 05:53:38 2026 GMT Subject: CN=6a0411e2-ba19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:9a:03:c5:cc:86:d8:ff:8b:fa:19:e3:04: 71:47:73:f3:dd:11:46:b1:68:b9:1f:03:b7:f2:46: d9:15:aa:c7:8a:30:23:40:a0:82:a9:b1:42:72:8a: ae:ba:3d:12:81:87:e4:3d:bc:de:8b:9c:f9:7d:73: 81:c3:7f:d0:ae:d6:73:0e:b3:42:5f:95:62:ca:18: ea:e6:8a:80:18:bc:a7:cc:4b:fe:57:68:79:3e:80: 01:da:0e:fa:5f:f6:80:bb:c6:c7:4c:58:2c:1e:8d: 7c:0e:1c:6e:ab:8a:52:8c:22:3d:72:6b:58:a8:b3: 23:bd:2f:93:d8:f3:ff:25:59:3e:63:09:fe:78:bd: be:a7:f1:dd:c8:31:80:b8:f6:0f:3b:18:cf:ab:26: 19:c7:7e:9a:d9:c0:b6:98:d7:95:d4:26:93:9c:d6: e3:98:c7:d6:c5:b9:15:06:3d:6e:4d:5a:7e:38:24: 75:32:8c:41:1f:8a:a3:d7:1c:4b:de:7d:b5:b3:fa: 45:e7:0e:66:00:43:85:cc:25:79:ea:94:b6:7b:4b: f3:d6:6d:b2:9a:74:35:c5:a6:27:05:1e:bc:2f:df: ca:fa:ef:4c:58:30:c9:44:79:92:e6:9a:b3:e4:5f: d3:8f:1f:ea:e2:c4:48:f5:ba:dc:29:ac:ad:79:80: b9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D3:3E:51:8B:28:B7:E1:BB:4F:7A:41:CC:78:03:E7:39:D4:B5:7C X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:1d:25:0a:b5:1e:4a:8f:2c:74:00:7a:87:88:66:7c:04:c6: 7a:26:ff:53:b6:1e:f5:29:dc:ff:a9:44:89:e6:f5:2d:7d:e2: 87:f0:f5:bf:c6:7f:8c:7a:b3:68:68:f9:d0:d9:7b:63:cf:13: 54:c5:3f:14:4b:88:aa:6a:c9:60:2f:de:b0:8e:a2:b5:cd:6f: 73:d7:62:5f:a6:e1:88:78:0a:0d:d7:d6:a6:da:1f:71:f3:c1: d6:44:81:26:19:af:6d:fb:71:88:52:7a:b0:35:7d:3d:3d:3f: 30:b6:48:c7:df:f9:56:51:0e:a9:87:6d:9e:99:71:11:68:9e: b3:0f:ea:6d:a5:12:72:a3:8a:d5:46:09:85:c9:84:b9:24:e1: 3a:7a:13:44:ed:a1:08:f6:f7:ad:0a:bb:9c:71:c1:97:56:bf: e4:73:05:8f:76:56:96:4e:39:d7:7f:5a:20:35:00:35:0e:71: b3:91:12:0a:da:47:d2:31:7a:88:a0:b8:ef:a5:71:5d:ed:ec: 11:9b:3a:6d:5d:8c:ac:11:61:b9:b8:97:0f:27:9a:cc:9c:7a: 79:f2:db:e5:33:09:99:5a:90:b2:ad:b3:ae:43:6f:ea:e0:47: 7c:0b:90:6a:df:82:52:82:55:68:48:b3:55:a4:fa:92:20:47: cf:a7:b5:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjYwNTEzMDU1MzM4WhcNMjYwNTIwMDU1MzM4WjAYMRYwFAYD VQQDEw02YTA0MTFlMi1iYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArteaA8XMhtj/i/oZ4wRxR3Pz3RFGsWi5HwO38kbZFarHijAjQKCCqbFCcoqu uj0SgYfkPbzei5z5fXOBw3/QrtZzDrNCX5Viyhjq5oqAGLynzEv+V2h5PoAB2g76 X/aAu8bHTFgsHo18Dhxuq4pSjCI9cmtYqLMjvS+T2PP/JVk+Ywn+eL2+p/HdyDGA uPYPOxjPqyYZx36a2cC2mNeV1CaTnNbjmMfWxbkVBj1uTVp+OCR1MoxBH4qj1xxL 3n21s/pF5w5mAEOFzCV56pS2e0vz1m2ymnQ1xaYnBR68L9/K+u9MWDDJRHmS5pqz 5F/Tjx/q4sRI9brcKayteYC5UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH/TPlGL KLfhu096Qcx4A+c51LV8MB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkB0lCrUeSo8sdAB6h4hmfATGeib/U7Ye9Snc/6lEieb1LX3ih/D1v8Z/jHqz aGj50Nl7Y88TVMU/FEuIqmrJYC/esI6itc1vc9diX6bhiHgKDdfWptofcfPB1kSB JhmvbftxiFJ6sDV9PT0/MLZIx9/5VlEOqYdtnplxEWiesw/qbaUScqOK1UYJhcmE uSThOnoTRO2hCPb3rQq7nHHBl1a/5HMFj3ZWlk45139aIDUANQ5xs5ESCtpH0jF6 iKC476VxXe3sEZs6bV2MrBFhubiXDyeazJx6efLb5TMJmVqQsq2zrkNv6uBHfAuQ at+CUoJVaEizVaT6kiBHz6e1/w== -----END CERTIFICATE-----Generated at Wed May 13 13:35:38 2026 by rpki-client