$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: xeOSZPyY+crghJ4ZofvhcCCdOYrmeeRtVXs+DLyC2a4= Subject key identifier: 33:92:3E:38:1B:3F:0E:C0:33:FA:BE:C2:D5:EF:B3:59:EB:39:CB:1C Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 07A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 07A2 Signing time: Tue 24 Mar 2026 21:13:08 +0000 Manifest this update: Tue 24 Mar 2026 21:13:08 +0000 Manifest next update: Tue 31 Mar 2026 21:13:08 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: bpG2r/Ox5QNV9og899t6xCx0fJBvnJ0mzTUoyT36NI0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1954 (0x7a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Mar 24 21:13:08 2026 GMT Not After : Mar 31 21:13:08 2026 GMT Subject: CN=69c2fe64-ff38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:f7:62:5c:8c:bb:fd:dc:f1:18:13:0c:08: e0:df:e1:c7:96:90:32:59:96:f4:6e:70:b9:fe:3a: eb:fa:9c:cc:38:a7:80:25:29:f6:b2:95:0e:13:c8: 02:e2:45:6b:90:d4:ae:44:84:f1:12:a2:63:98:c1: df:2b:91:49:6b:5c:d2:e5:19:76:a5:31:0d:6d:5b: ed:30:2e:db:e5:c6:6b:16:48:fa:a0:19:0a:b3:13: 5c:ff:2c:2c:32:2a:1a:ed:61:32:68:3e:e0:8d:0b: df:b1:e3:46:30:84:50:3e:90:bd:c2:5c:db:e6:aa: 1b:6d:ae:32:fc:68:80:a1:d5:29:7d:76:d4:27:35: e4:a4:ae:3b:7a:cb:c5:5c:02:de:e3:d8:74:c5:dc: c5:a2:f6:cd:40:9f:51:35:b3:5f:89:89:7f:44:67: b2:b2:0f:d2:e2:2c:4a:da:7f:e4:88:fb:99:7e:15: 61:8f:61:ed:50:0c:2a:49:57:df:41:08:9a:63:fa: cf:83:a5:8f:37:d3:c6:42:50:c4:f3:c0:bf:4e:6b: cc:14:77:a8:7f:90:56:17:f9:1d:aa:31:c7:b9:6b: d2:af:f3:e4:bc:a8:86:49:19:40:16:29:2d:9e:e5: ea:c8:47:4b:22:b6:b4:3f:14:20:74:30:25:2d:75: 05:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:92:3E:38:1B:3F:0E:C0:33:FA:BE:C2:D5:EF:B3:59:EB:39:CB:1C X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ba:5e:ed:ed:9c:5b:98:e4:55:48:71:7b:63:36:33:e3:bc: 0a:f2:09:e1:f1:44:da:37:0d:35:ff:b7:27:d0:ad:79:b7:fb: 45:91:51:c2:54:e1:c3:e4:3e:5e:b4:40:ae:9a:fe:df:6a:33: 65:53:1c:aa:28:7d:ef:34:89:f2:96:25:6e:2e:c9:d3:34:d7: de:f6:d2:4b:43:bf:a3:0f:f1:4e:ab:98:3c:45:48:ef:98:94: 48:84:58:b2:6c:2a:dd:07:e1:0f:16:af:01:88:5f:5a:a9:ad: 54:f9:a9:de:6a:61:8c:1e:13:61:a5:30:aa:f0:37:b1:de:dd: 74:88:5e:c3:e8:6a:c8:71:1d:d0:1a:38:c4:11:99:76:44:d2: b0:9b:99:ed:6c:72:fc:23:08:64:e1:70:eb:0d:4b:20:4d:25: d3:a5:c1:14:f8:a6:bd:da:83:82:41:05:c3:91:25:34:90:88: 72:4b:f7:cb:2f:a3:08:ef:ba:01:c4:ca:36:5d:8d:fd:e8:25: 96:34:7c:b6:fe:93:68:78:a2:27:1b:07:69:15:61:3e:19:0f: 52:61:c9:c6:ff:c3:62:c2:c8:28:30:53:44:67:9a:ae:08:d5: 7e:54:d4:b2:32:47:26:6f:fd:de:a6:6c:df:ca:05:8b:57:0b: c0:72:e5:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjYwMzI0MjExMzA4WhcNMjYwMzMxMjExMzA4WjAYMRYwFAYD VQQDEw02OWMyZmU2NC1mZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJH3YlyMu/3c8RgTDAjg3+HHlpAyWZb0bnC5/jrr+pzMOKeAJSn2spUOE8gC 4kVrkNSuRITxEqJjmMHfK5FJa1zS5Rl2pTENbVvtMC7b5cZrFkj6oBkKsxNc/yws Mioa7WEyaD7gjQvfseNGMIRQPpC9wlzb5qobba4y/GiAodUpfXbUJzXkpK47esvF XALe49h0xdzFovbNQJ9RNbNfiYl/RGeysg/S4ixK2n/kiPuZfhVhj2HtUAwqSVff QQiaY/rPg6WPN9PGQlDE88C/TmvMFHeof5BWF/kdqjHHuWvSr/PkvKiGSRlAFikt nuXqyEdLIra0PxQgdDAlLXUFeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDOSPjgb Pw7AM/q+wtXvs1nrOcscMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADrpe7e2cW5jkVUhxe2M2M+O8CvIJ4fFE2jcNNf+3J9Ctebf7RZFRwlThw+Q+ XrRArpr+32ozZVMcqih97zSJ8pYlbi7J0zTX3vbSS0O/ow/xTquYPEVI75iUSIRY smwq3QfhDxavAYhfWqmtVPmp3mphjB4TYaUwqvA3sd7ddIhew+hqyHEd0Bo4xBGZ dkTSsJuZ7Wxy/CMIZOFw6w1LIE0l06XBFPimvdqDgkEFw5ElNJCIckv3yy+jCO+6 AcTKNl2N/eglljR8tv6TaHiiJxsHaRVhPhkPUmHJxv/DYsLIKDBTRGeargjVflTU sjJHJm/93qZs38oFi1cLwHLlwQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:12:35 2026 by rpki-client