$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: eIL6PxTjimvm0810VcZlF0C2qD0SZG9dImsout8wTcE= Subject key identifier: 0C:BF:0C:BF:04:61:FD:AD:D5:AC:51:1F:7B:AF:D3:5D:32:6B:D3:36 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D7E Signing time: Tue 12 May 2026 16:07:47 +0000 Manifest this update: Tue 12 May 2026 16:07:47 +0000 Manifest next update: Tue 19 May 2026 16:07:47 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: Y3rPmf+8VPTQ7AT0CziesINGO8fVVeIkenykl71iSLg=) 2: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: uLWtAzm0T2XZ8XrHmk3i4Qv1rCDDVOMUdZgDRK+R9AY=) 3: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: 8mj54azzqhjHXfOWyNFC53u9e3MBttuOm97GXb6TaYE=) 4: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: SMMdB5FfbHvQ8XxRMRHHqZDp8nFnCc1tqnhGm5C6OOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7580 (0x1d9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: May 12 16:07:47 2026 GMT Not After : May 19 16:07:47 2026 GMT Subject: CN=6a035053-f877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:61:b4:91:98:5f:c2:19:e7:4b:eb:81:f7: 5c:56:cc:c9:d0:62:5d:87:40:70:3d:dd:c3:e9:20: d9:79:22:d8:c1:24:4a:11:ff:eb:8f:ab:e4:a0:00: fa:f6:62:94:6a:e9:36:37:f9:ca:b6:e9:37:95:0c: 5f:bb:80:b5:35:d2:97:a3:b2:65:d2:b3:47:34:68: 07:db:75:ab:31:cd:d1:7e:f5:3d:f2:64:47:d9:08: ba:4c:60:42:91:c1:d6:c3:c1:3d:65:c6:40:2d:0f: 80:64:b9:70:0a:c8:1b:5f:22:31:b1:a3:06:1f:25: a5:0f:b7:cc:a8:dc:e2:48:d4:09:bc:7c:c4:a2:1e: 49:1b:3d:4c:7a:72:6c:b4:20:ad:cd:98:8b:3a:8d: 3a:06:2f:b8:b2:f2:3a:81:62:f2:57:4a:5a:86:05: a7:a1:40:76:00:76:16:08:38:7a:29:54:9f:a0:aa: 3f:05:7b:f5:b7:54:fb:23:c0:47:7a:51:17:74:29: c9:02:ab:6d:c8:6d:09:ca:2f:e0:3b:2c:79:4a:1d: ae:d1:d8:a7:4c:54:44:be:35:87:df:94:99:f7:22: c9:b2:16:ea:b0:ed:cc:06:8d:70:ed:1b:f7:45:2b: 00:19:d5:dc:0c:76:e4:2f:a0:a8:06:e9:22:df:43: 64:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BF:0C:BF:04:61:FD:AD:D5:AC:51:1F:7B:AF:D3:5D:32:6B:D3:36 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e5:d9:52:0d:a1:9f:1d:c9:45:e7:82:42:3f:85:f5:f2:78: b2:cb:47:65:4c:10:38:a1:50:1e:15:9f:05:02:5e:c1:6e:ba: ea:30:32:87:12:04:81:b3:f2:96:46:86:99:90:b9:ff:ad:bc: d2:6a:e7:7d:c5:a2:6e:91:16:e7:88:06:66:e8:4c:50:c6:69: ee:65:80:6c:58:e0:97:a6:23:b4:8e:a0:84:79:2c:68:8c:00: 9a:1d:4e:33:0f:eb:97:dd:2f:db:b4:a0:7b:2b:5b:1b:45:96: 48:ea:2f:cc:b6:1b:33:14:cc:83:ee:62:12:e7:6b:5a:a8:dd: ea:e6:5e:db:61:17:d0:7b:08:e9:87:d8:81:65:d1:13:6d:a1: 1b:25:6b:6c:1e:c4:66:4c:1a:00:25:87:21:07:43:01:d0:36: 17:1f:bc:a3:40:fa:ff:52:4d:9f:d8:50:c5:9d:06:91:fe:9d: dd:7e:15:0d:eb:da:d7:9d:22:1d:c3:3b:d1:ef:6d:aa:5d:dd: 9c:c1:85:f9:d9:9d:c2:0b:88:d8:ba:12:e4:6e:54:92:11:2a: 19:5c:c3:e7:0c:ba:d9:0f:25:c9:78:38:bf:bb:99:0c:e7:7b: a1:56:fc:eb:ed:d2:08:90:7c:04:ec:bd:5a:39:82:f3:73:e0: ea:ff:67:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjYwNTEyMTYwNzQ3WhcNMjYwNTE5MTYwNzQ3WjAYMRYwFAYD VQQDEw02YTAzNTA1My1mODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3hhtJGYX8IZ50vrgfdcVszJ0GJdh0BwPd3D6SDZeSLYwSRKEf/rj6vkoAD6 9mKUauk2N/nKtuk3lQxfu4C1NdKXo7Jl0rNHNGgH23WrMc3RfvU98mRH2Qi6TGBC kcHWw8E9ZcZALQ+AZLlwCsgbXyIxsaMGHyWlD7fMqNziSNQJvHzEoh5JGz1MenJs tCCtzZiLOo06Bi+4svI6gWLyV0pahgWnoUB2AHYWCDh6KVSfoKo/BXv1t1T7I8BH elEXdCnJAqttyG0Jyi/gOyx5Sh2u0dinTFREvjWH35SZ9yLJshbqsO3MBo1w7Rv3 RSsAGdXcDHbkL6CoBuki30NkyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAy/DL8E Yf2t1axRH3uv010ya9M2MB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVuXZUg2hnx3JReeCQj+F9fJ4sstHZUwQOKFQHhWfBQJewW666jAyhxIEgbPy lkaGmZC5/6280mrnfcWibpEW54gGZuhMUMZp7mWAbFjgl6YjtI6ghHksaIwAmh1O Mw/rl90v27SgeytbG0WWSOovzLYbMxTMg+5iEudrWqjd6uZe22EX0HsI6YfYgWXR E22hGyVrbB7EZkwaACWHIQdDAdA2Fx+8o0D6/1JNn9hQxZ0Gkf6d3X4VDeva150i HcM70e9tql3dnMGF+dmdwguI2LoS5G5UkhEqGVzD5wy62Q8lyXg4v7uZDOd7oVb8 6+3SCJB8BOy9WjmC83Pg6v9nxg== -----END CERTIFICATE-----Generated at Wed May 13 15:51:14 2026 by rpki-client