$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: LRuTGGtQcgA2WHhy3hZ4alvF9LHTva23c5JtUbV1LEc= Subject key identifier: D0:18:EC:8C:7F:55:2C:13:32:4C:E9:21:56:E1:5C:AC:D8:70:04:B2 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 137A Signing time: Fri 12 Jun 2026 16:56:22 +0000 Manifest this update: Fri 12 Jun 2026 16:56:22 +0000 Manifest next update: Fri 19 Jun 2026 16:56:22 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: 7iFJ6Cn3hHbv83PUkmJ6y1/t4SClKUPGqNMpzZ8f4k0=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: Y5k6Nh1K8NNS0hPh5WTEjL7DqnEuLThuhCaWRqICeaE=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: k+p0xtu7l+Ym0EwSnutl9VlQ16P8ym/648o14VPC7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5011 (0x1393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Jun 12 16:56:22 2026 GMT Not After : Jun 19 16:56:22 2026 GMT Subject: CN=6a2c3a36-43d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:d3:a1:5e:66:68:f1:dd:0b:19:20:ae:d6: cf:3f:d0:db:13:a2:c0:61:51:03:42:e4:a3:6b:83: 8b:ec:3a:78:f1:d5:18:a5:39:d7:5e:3d:e8:88:87: 80:22:10:c4:49:94:11:4e:01:83:95:0f:0b:b3:f9: e1:c8:9c:0b:b0:f4:73:3d:5a:74:83:b7:bd:9e:6f: 85:a8:a1:0a:f5:6f:64:da:21:8a:18:0d:1f:16:62: 14:b4:41:bc:ef:3e:ac:6c:10:06:e5:6b:5d:b5:11: f5:98:99:34:e9:51:7e:3c:b2:b7:f2:1b:9b:7f:50: e2:49:e4:4e:60:5f:f3:8d:6a:81:34:23:4a:fd:46: 2e:02:e5:e3:54:77:1e:c3:e2:f1:76:3a:5a:76:ed: 6f:05:ee:76:47:4e:c9:19:a8:63:84:95:ec:aa:54: 5a:d5:e6:64:26:3c:a9:05:b8:fa:4f:30:b2:49:03: 3e:7d:23:cb:0a:19:34:7b:ff:42:b0:76:76:78:df: 4e:73:16:26:c5:5c:51:14:26:e9:0a:92:92:3b:42: e5:36:9b:58:3c:62:fe:aa:3d:4d:da:4c:c1:1f:cc: 20:a9:00:65:94:4e:ec:6e:26:6f:eb:4b:47:1e:2b: 32:0c:1f:8d:10:e0:1e:f5:c4:3a:b0:a2:c9:6d:8d: df:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:18:EC:8C:7F:55:2C:13:32:4C:E9:21:56:E1:5C:AC:D8:70:04:B2 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:16:cd:90:27:17:a5:bb:37:17:46:84:9b:23:e0:35:85:66: 29:25:62:c2:da:1f:18:a1:1e:c6:83:7a:92:10:69:be:9f:d2: 5e:71:a1:8f:17:cf:99:bb:54:33:41:cb:2d:31:0d:ad:6c:1b: 19:ec:25:7e:e1:11:6a:62:57:15:72:95:51:76:f5:bf:d6:5a: 31:9a:a2:0d:97:d7:b2:a2:e8:7d:3d:be:19:dd:f9:09:d0:57: e9:c9:2e:d7:ef:40:25:1f:07:6e:e0:e9:33:2d:fa:32:f0:93: fd:98:35:e3:a5:b0:0e:59:3c:ba:75:4d:15:3b:b6:b8:94:67: cb:c0:24:f8:2b:e4:d4:ee:f7:62:f5:d2:9d:fd:90:0e:a4:48: b8:28:25:5a:d5:3b:2c:18:bb:d2:72:41:fe:f9:77:8a:3c:31: d7:fa:c5:30:2f:da:ef:30:36:0d:8f:45:6a:b7:e6:d0:63:ac: ed:4e:9f:61:a9:5a:e7:8c:ab:89:b8:e1:96:0a:19:ef:ca:8d: 5b:ff:65:61:78:d4:55:03:12:b9:0f:13:ef:d3:c6:f3:71:c7: 61:75:6b:13:a3:7b:bf:56:0f:8c:41:84:a1:10:27:5e:5a:52: 5d:da:de:ef:24:60:bb:d9:e3:b9:e4:31:ec:bd:e5:5c:c4:b8: 6d:29:bc:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjYwNjEyMTY1NjIyWhcNMjYwNjE5MTY1NjIyWjAYMRYwFAYD VQQDEw02YTJjM2EzNi00M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFnToV5maPHdCxkgrtbPP9DbE6LAYVEDQuSja4OL7Dp48dUYpTnXXj3oiIeA IhDESZQRTgGDlQ8Ls/nhyJwLsPRzPVp0g7e9nm+FqKEK9W9k2iGKGA0fFmIUtEG8 7z6sbBAG5WtdtRH1mJk06VF+PLK38hubf1DiSeROYF/zjWqBNCNK/UYuAuXjVHce w+Lxdjpadu1vBe52R07JGahjhJXsqlRa1eZkJjypBbj6TzCySQM+fSPLChk0e/9C sHZ2eN9OcxYmxVxRFCbpCpKSO0LlNptYPGL+qj1N2kzBH8wgqQBllE7sbiZv60tH HisyDB+NEOAe9cQ6sKLJbY3f+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNAY7Ix/ VSwTMkzpIVbhXKzYcASyMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApBbNkCcXpbs3F0aEmyPgNYVmKSViwtofGKEexoN6khBpvp/SXnGhjxfPmbtU M0HLLTENrWwbGewlfuERamJXFXKVUXb1v9ZaMZqiDZfXsqLofT2+Gd35CdBX6cku 1+9AJR8HbuDpMy36MvCT/Zg146WwDlk8unVNFTu2uJRny8Ak+Cvk1O73YvXSnf2Q DqRIuCglWtU7LBi70nJB/vl3ijwx1/rFMC/a7zA2DY9Farfm0GOs7U6fYala54yr ibjhlgoZ78qNW/9lYXjUVQMSuQ8T79PG83HHYXVrE6N7v1YPjEGEoRAnXlpSXdre 7yRgu9njueQx7L3lXMS4bSm8Hg== -----END CERTIFICATE-----Generated at Sat Jun 13 08:33:53 2026 by rpki-client