$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: RplXlwXU1nLs1eIylJeTiwkXER+MtLgALoDbGNN5j2M= Subject key identifier: E6:90:14:FD:51:BA:6A:38:27:C5:D4:DB:E1:E1:9F:9D:B7:CD:7B:8D Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 135D Signing time: Thu 16 Apr 2026 16:55:33 +0000 Manifest this update: Thu 16 Apr 2026 16:55:33 +0000 Manifest next update: Thu 23 Apr 2026 16:55:33 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: a7k5FboOFtXt9Bd7Y/pVoVN2nh4M2HPf0XP65rsJbnY=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: Y5k6Nh1K8NNS0hPh5WTEjL7DqnEuLThuhCaWRqICeaE=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: k+p0xtu7l+Ym0EwSnutl9VlQ16P8ym/648o14VPC7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4982 (0x1376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Apr 16 16:55:33 2026 GMT Not After : Apr 23 16:55:33 2026 GMT Subject: CN=69e11485-bb51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d7:a5:6e:fb:2f:22:f6:b3:7d:b7:b3:89:a6: 5b:c0:6c:91:04:4f:8a:e1:90:a5:12:ed:79:45:b4: 6b:57:fa:5d:c6:35:93:9a:a9:ca:64:53:24:a7:5a: bc:27:b6:f7:a8:ac:ba:9b:c2:bb:14:f8:2b:e9:d7: 87:7d:7d:2a:66:e6:c6:57:30:f9:c2:30:b7:e7:02: 18:a7:d3:31:3e:77:cf:9f:9b:05:71:e8:f6:2d:03: 07:96:4f:e4:77:12:8c:0b:ff:c1:3b:53:ef:58:3b: 1f:e3:e5:ea:9d:c1:42:71:df:8d:d8:83:2d:96:27: 98:81:53:cb:f3:da:2a:49:c9:ce:78:58:fb:5b:58: a4:72:ac:39:69:84:61:b7:14:b0:80:df:1a:e6:fb: 75:83:d5:7b:33:9d:2e:68:89:11:d6:69:35:e6:4b: bc:97:1d:77:79:65:9e:7c:f7:b3:80:7e:ce:a9:d0: d5:c1:84:37:70:7a:6b:e1:c7:b6:e9:4f:a8:d1:ed: 76:1f:aa:07:84:be:a7:21:48:e6:54:a8:d1:84:1a: 35:a8:7d:47:64:9e:10:5d:61:50:79:5d:0e:f0:2a: 27:f3:8f:f8:41:95:85:11:e3:8b:20:05:04:c2:37: 6b:07:16:66:f3:22:bb:c8:20:c8:ce:9b:1b:60:83: dd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:90:14:FD:51:BA:6A:38:27:C5:D4:DB:E1:E1:9F:9D:B7:CD:7B:8D X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:32:32:ba:a5:21:39:28:0e:96:ab:cc:12:73:56:f5:0c:b6: ad:d9:33:87:9e:de:30:f1:c3:b1:e6:57:c6:07:1d:00:40:c3: 79:80:aa:01:cd:d2:7c:41:e1:3a:b5:9e:73:f8:c5:d8:af:60: 1a:ef:54:00:2f:9f:af:f9:4f:b9:59:62:8d:a9:ed:16:19:7d: 5c:f6:0e:37:3d:21:30:5f:56:e5:36:4a:b3:e2:29:8d:26:91: 1b:16:08:46:64:aa:ba:d4:cb:8d:8e:57:83:4e:ba:67:4f:49: af:f1:13:51:15:e2:f4:1f:1d:87:dc:79:bf:78:a4:8a:2b:31: 52:a7:14:d4:ce:ec:4a:0d:27:e8:46:a9:95:ca:01:4c:9a:5c: 2e:f7:65:c6:d6:d5:64:89:46:88:cc:94:6a:14:80:a5:ba:e6: a6:45:2b:1c:1f:79:ba:30:49:d0:4c:ed:95:33:37:dd:72:d5: c5:43:bc:57:2b:54:7a:ed:b0:d9:b9:29:ea:1e:1f:54:d8:70: ce:01:1d:38:75:e4:bd:c0:ed:0e:59:8b:87:25:9f:67:bd:8f: b8:d4:55:6d:ff:d1:70:ee:5b:aa:b8:6d:84:49:0c:4b:3b:32: a4:79:df:53:df:47:01:9b:ec:76:39:10:28:5c:10:4c:9b:77: 80:b3:1c:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjYwNDE2MTY1NTMzWhcNMjYwNDIzMTY1NTMzWjAYMRYwFAYD VQQDEw02OWUxMTQ4NS1iYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNelbvsvIvazfbeziaZbwGyRBE+K4ZClEu15RbRrV/pdxjWTmqnKZFMkp1q8 J7b3qKy6m8K7FPgr6deHfX0qZubGVzD5wjC35wIYp9MxPnfPn5sFcej2LQMHlk/k dxKMC//BO1PvWDsf4+XqncFCcd+N2IMtlieYgVPL89oqScnOeFj7W1ikcqw5aYRh txSwgN8a5vt1g9V7M50uaIkR1mk15ku8lx13eWWefPezgH7OqdDVwYQ3cHpr4ce2 6U+o0e12H6oHhL6nIUjmVKjRhBo1qH1HZJ4QXWFQeV0O8Con84/4QZWFEeOLIAUE wjdrBxZm8yK7yCDIzpsbYIPdgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOaQFP1R umo4J8XU2+Hhn523zXuNMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGzIyuqUhOSgOlqvMEnNW9Qy2rdkzh57eMPHDseZXxgcdAEDDeYCqAc3SfEHh OrWec/jF2K9gGu9UAC+fr/lPuVlijantFhl9XPYONz0hMF9W5TZKs+IpjSaRGxYI RmSqutTLjY5Xg066Z09Jr/ETURXi9B8dh9x5v3ikiisxUqcU1M7sSg0n6EaplcoB TJpcLvdlxtbVZIlGiMyUahSApbrmpkUrHB95ujBJ0EztlTM33XLVxUO8VytUeu2w 2bkp6h4fVNhwzgEdOHXkvcDtDlmLhyWfZ72PuNRVbf/RcO5bqrhthEkMSzsypHnf U99HAZvsdjkQKFwQTJt3gLMcPw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:55:29 2026 by rpki-client