$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: U8QZu2YNM8xf+huKQHx6VXt+fVEWkrlX8iBghsi22mI= Subject key identifier: 30:0E:80:7D:B0:EA:57:B9:5A:97:23:A9:28:53:20:AF:A2:52:24:4C Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 01D5 Signing time: Wed 25 Mar 2026 02:56:41 +0000 Manifest this update: Wed 25 Mar 2026 02:56:40 +0000 Manifest next update: Wed 01 Apr 2026 02:56:40 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: ah1DtshFtGxg+V/vloAccwCsJCQmM677XRMyItRiPYQ=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: qVMa/Xz0rkX7Diy34qfbgTAPdgO1If06CjZkRcC7AXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Mar 25 02:56:40 2026 GMT Not After : Apr 1 02:56:40 2026 GMT Subject: CN=69c34ee9-5b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:92:5e:4e:f7:e4:cb:83:e7:44:8f:02:de:ae: e2:a6:e8:42:53:ee:f7:e2:c7:7e:5d:de:5f:f0:97: 17:51:c7:8e:7a:77:27:24:86:be:de:29:ee:97:74: aa:ab:81:93:c3:45:0f:d9:be:0c:1b:d7:23:a3:df: 93:8e:a2:bf:c0:80:ba:04:2d:bc:8a:51:39:47:09: ef:80:4c:4c:b0:d2:4e:2a:f7:71:2a:fb:0c:cb:dd: 65:a9:25:6a:ed:2c:df:0e:60:b0:fc:b8:e9:b4:b9: 7d:b2:9c:14:00:bc:32:36:16:82:3d:83:26:ac:da: 6f:8a:b6:ae:58:f5:cb:a5:d8:5d:a4:76:d5:14:15: 12:cc:52:cf:6d:9c:bb:21:72:b6:fb:19:af:d9:82: e9:f9:3a:4c:b9:d5:a5:98:d4:af:99:f0:bc:50:e9: f8:da:60:7b:db:32:46:40:25:78:04:7e:2b:4c:3c: 02:93:c4:1f:d3:5c:1b:af:32:cd:dc:7b:16:0b:6f: c3:f1:8c:5c:ea:32:3a:cd:23:8b:97:68:5d:2d:d2: 8a:ab:a9:1b:82:33:6d:b8:45:b7:5f:85:05:97:e4: e4:a3:6e:55:03:e8:a8:91:fc:52:de:d1:67:1f:ac: b3:58:c9:9b:9d:99:b8:80:c6:a4:fc:52:db:fd:fc: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0E:80:7D:B0:EA:57:B9:5A:97:23:A9:28:53:20:AF:A2:52:24:4C X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:61:80:b0:78:a2:37:da:56:9b:80:91:5a:4a:b0:87:96:bb: 52:20:2c:3e:42:4b:a9:5e:9f:83:46:b7:04:59:2b:cd:a0:59: c8:7e:ba:fe:20:31:e4:dd:c3:aa:46:60:0c:1a:d2:96:4e:91: d4:a1:f9:6d:30:91:32:f5:6a:cd:55:01:ea:cb:21:67:d7:74: 00:b9:ff:0f:77:bc:56:48:9b:31:83:d6:23:fc:56:a4:3d:f5: 6c:bd:10:e0:cb:e2:bf:d6:2b:eb:75:61:62:08:18:30:ee:98: 98:06:8c:55:fe:0e:ff:27:09:f0:fb:77:bc:dc:56:0c:14:4e: 73:5a:3b:81:f8:2e:50:01:d0:ed:2e:49:77:b7:37:2a:f6:2d: b4:7e:21:c6:ff:70:5d:64:e5:df:2d:02:bc:12:1f:31:67:ed: cb:3a:8f:10:df:1d:77:00:e3:39:e4:62:06:96:5b:ae:e7:bd: c3:ad:41:62:76:4b:d1:57:67:95:af:5b:c8:15:02:48:42:a0: eb:f9:e3:fb:cf:6f:af:50:64:89:f8:ae:1f:df:7d:14:52:c6: 2d:e4:19:0c:88:c5:84:c4:44:3f:66:a7:b2:9c:c8:39:36:20: d1:68:42:3d:7d:c5:36:a9:56:5c:f4:49:76:26:c2:ec:2a:9a: 6a:d2:12:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjYwMzI1MDI1NjQwWhcNMjYwNDAxMDI1NjQwWjAYMRYwFAYD VQQDEw02OWMzNGVlOS01YjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpJeTvfky4PnRI8C3q7ipuhCU+734sd+Xd5f8JcXUceOencnJIa+3inul3Sq q4GTw0UP2b4MG9cjo9+TjqK/wIC6BC28ilE5RwnvgExMsNJOKvdxKvsMy91lqSVq 7SzfDmCw/LjptLl9spwUALwyNhaCPYMmrNpvirauWPXLpdhdpHbVFBUSzFLPbZy7 IXK2+xmv2YLp+TpMudWlmNSvmfC8UOn42mB72zJGQCV4BH4rTDwCk8Qf01wbrzLN 3HsWC2/D8Yxc6jI6zSOLl2hdLdKKq6kbgjNtuEW3X4UFl+Tko25VA+iokfxS3tFn H6yzWMmbnZm4gMak/FLb/fzzWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDAOgH2w 6le5WpcjqShTIK+iUiRMMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGWGAsHiiN9pWm4CRWkqwh5a7UiAsPkJLqV6fg0a3BFkrzaBZyH66/iAx5N3D qkZgDBrSlk6R1KH5bTCRMvVqzVUB6sshZ9d0ALn/D3e8VkibMYPWI/xWpD31bL0Q 4Mviv9Yr63VhYggYMO6YmAaMVf4O/ycJ8Pt3vNxWDBROc1o7gfguUAHQ7S5Jd7c3 KvYttH4hxv9wXWTl3y0CvBIfMWftyzqPEN8ddwDjOeRiBpZbrue9w61BYnZL0Vdn la9byBUCSEKg6/nj+89vr1BkifiuH999FFLGLeQZDIjFhMREP2anspzIOTYg0WhC PX3FNqlWXPRJdibC7CqaatISqw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:43:04 2026 by rpki-client