$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: UXRiRK/HrlMcYfucvk/iVkNu1j95hD3RVWXens9Gp1Y= Subject key identifier: 59:EE:46:C3:43:38:A5:CE:84:85:09:91:D5:33:A5:EB:4B:C8:0C:C0 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: CD Signing time: Wed 25 Mar 2026 06:03:48 +0000 Manifest this update: Wed 25 Mar 2026 06:03:48 +0000 Manifest next update: Wed 01 Apr 2026 06:03:48 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: JK3CcC+mpYSwlXAx6V04aFSlXEv5CKdN3IPs+FEoHPk=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: E47slZkZUSxL3blqpxWmejtiKRk74l+RdUUIQ3bo/bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Mar 25 06:03:48 2026 GMT Not After : Apr 1 06:03:48 2026 GMT Subject: CN=69c37ac4-487d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ad:a5:c8:22:56:64:9e:0b:f8:f5:66:61:6b: 0f:e7:11:aa:e5:6c:39:ff:64:7e:27:9d:5e:9a:ce: cf:f4:56:a5:e1:c1:7a:81:f8:ef:2f:28:f7:03:06: f4:3b:e4:59:48:cc:a5:e0:d0:a7:56:2e:0d:78:ab: ab:ef:57:ec:e6:81:0d:a6:5a:7a:44:73:89:ae:49: 1d:99:8a:e3:7f:29:db:b2:a6:a8:4b:b1:43:21:f3: e3:13:3f:7c:3e:c2:69:e6:46:b7:00:45:2e:89:21: d5:0e:37:c5:7e:cb:2f:c5:39:72:12:ca:9e:10:69: 51:25:a3:b7:94:bf:ed:0c:a2:c6:9a:37:7a:5d:88: c2:2b:56:63:69:e1:5e:07:8c:66:13:df:5b:09:4f: 37:45:18:be:1e:bb:14:7a:9f:94:da:f7:af:75:d4: 25:2a:a2:26:45:2f:4c:41:24:5c:cf:66:43:4c:af: ac:28:ab:49:67:a4:19:04:23:b5:88:2f:60:8c:64: 14:f8:4d:72:74:d3:a5:e3:3d:08:6b:03:32:76:8f: 3f:3f:60:48:06:c3:24:bf:b1:7c:af:ab:13:a1:7d: 84:ed:a5:a2:07:4a:44:a2:55:9d:e9:e9:ba:39:06: c6:35:6e:db:f9:43:73:29:2a:16:c3:70:de:48:24: 6f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EE:46:C3:43:38:A5:CE:84:85:09:91:D5:33:A5:EB:4B:C8:0C:C0 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1a:76:6f:25:c4:00:5d:b9:0f:80:13:99:62:29:66:e1:ed: a4:6b:e8:6b:d4:ed:29:1f:b0:11:9b:0d:0b:05:09:3b:a5:b1: 08:4f:b2:5c:15:a6:47:76:6c:16:96:b7:87:10:d8:0a:d9:76: 0b:b0:30:91:ed:6b:0a:64:d2:21:11:fd:ad:fe:32:3c:b0:b8: 35:d6:9e:bf:0a:3c:a9:dc:c0:ca:f6:35:94:52:d0:66:d0:fb: b2:a5:d7:5f:de:88:ba:e6:63:6f:da:5a:c3:de:2f:ba:59:06: 8c:5f:a3:57:87:c6:46:63:ed:3d:84:56:03:d4:00:d2:37:27: 32:06:a7:0f:11:c9:c5:f8:d8:7e:d3:60:6e:6d:14:0d:fc:b1: 3c:4e:a2:49:b2:cc:7e:7b:ad:bc:9c:f7:f8:a1:9a:d7:5f:0e: 7c:db:3e:ca:c3:08:cf:d2:15:49:41:df:1a:27:cb:34:d1:eb: 4c:76:5c:3e:31:4d:d8:4a:f7:0d:0f:1d:52:70:94:64:4e:90: c6:25:f4:d9:b0:d8:f3:23:29:f5:e8:cd:ac:24:1f:70:a6:ea: b5:ba:01:9c:ac:57:d2:d1:75:98:1d:a2:b2:23:c0:2e:5c:7d: 03:f8:3c:90:b1:17:80:72:21:3a:d1:91:d4:15:13:ec:e7:63: 47:6f:1b:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx Njk2RTc5OTkwHhcNMjYwMzI1MDYwMzQ4WhcNMjYwNDAxMDYwMzQ4WjAYMRYwFAYD VQQDEw02OWMzN2FjNC00ODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAla2lyCJWZJ4L+PVmYWsP5xGq5Ww5/2R+J51ems7P9Fal4cF6gfjvLyj3Awb0 O+RZSMyl4NCnVi4NeKur71fs5oENplp6RHOJrkkdmYrjfynbsqaoS7FDIfPjEz98 PsJp5ka3AEUuiSHVDjfFfssvxTlyEsqeEGlRJaO3lL/tDKLGmjd6XYjCK1ZjaeFe B4xmE99bCU83RRi+HrsUep+U2vevddQlKqImRS9MQSRcz2ZDTK+sKKtJZ6QZBCO1 iC9gjGQU+E1ydNOl4z0IawMydo8/P2BIBsMkv7F8r6sToX2E7aWiB0pEolWd6em6 OQbGNW7b+UNzKSoWw3DeSCRv8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFnuRsND OKXOhIUJkdUzpetLyAzAMB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5 QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw RjdtWExoMUtEMlFXbHVlWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIhp2byXEAF25D4ATmWIpZuHtpGvoa9TtKR+wEZsNCwUJO6WxCE+yXBWmR3Zs Fpa3hxDYCtl2C7Awke1rCmTSIRH9rf4yPLC4Ndaevwo8qdzAyvY1lFLQZtD7sqXX X96IuuZjb9paw94vulkGjF+jV4fGRmPtPYRWA9QA0jcnMganDxHJxfjYftNgbm0U DfyxPE6iSbLMfnutvJz3+KGa118OfNs+ysMIz9IVSUHfGifLNNHrTHZcPjFN2Er3 DQ8dUnCUZE6QxiX02bDY8yMp9ejNrCQfcKbqtboBnKxX0tF1mB2isiPALlx9A/g8 kLEXgHIhOtGR1BUT7OdjR28bVA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:57:30 2026 by rpki-client