$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: IVQW9PbWxB57b2F/qE9IFoecHdwe9OUZJ5TmMLG/t2k= Subject key identifier: 36:63:96:0E:C1:FD:4D:F4:58:5D:E3:75:AA:66:BB:B9:89:98:7E:05 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 04A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 0498 Signing time: Tue 24 Mar 2026 23:40:46 +0000 Manifest this update: Tue 24 Mar 2026 23:40:46 +0000 Manifest next update: Tue 31 Mar 2026 23:40:46 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: jf8UDQfTjibI+yqEJU1wwyWRtoaUREtP0Okd2kirKvE=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: BfgbyrDUSPaDFbvmIvU+wE2M70H25WXoCbwhEXrv7bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1190 (0x4a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Mar 24 23:40:46 2026 GMT Not After : Mar 31 23:40:46 2026 GMT Subject: CN=69c320fe-4551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:9d:f2:40:5b:14:ab:11:94:36:c3:5a:57: b2:12:cb:36:57:22:f5:50:7e:91:b4:32:38:0e:14: d2:3d:85:49:8a:a2:42:28:e2:a9:2e:3c:cf:fd:b6: 03:5f:25:e6:33:d0:07:32:04:0f:8f:7f:7c:46:1f: 40:3e:87:ab:23:78:d4:6b:10:16:c2:c9:66:f1:fd: 10:d1:dd:e9:9d:bf:2e:38:9b:05:22:32:08:9a:53: 11:30:64:5c:37:a1:77:ad:92:88:b5:29:5c:1b:c6: 24:4a:93:ef:b5:62:7c:ac:b0:cc:63:be:5b:56:a5: b0:f2:5b:96:49:74:78:c7:49:36:5b:16:c8:03:1c: 36:d6:5f:31:ef:a4:6a:e1:35:d3:c5:44:ea:a0:90: 34:58:38:34:ac:9c:e7:b5:5f:3a:ee:9a:a4:7f:a7: be:76:c8:f8:05:67:f0:5c:d1:72:e5:d4:5c:77:a7: 8c:b7:10:69:cb:ae:0d:8b:f7:7b:e0:62:43:8a:26: 09:14:35:45:8f:f6:cb:9d:9f:62:7c:f6:17:78:98: ad:a5:87:f1:6d:af:97:a7:62:2e:07:03:43:cc:3d: 61:ef:d1:82:2c:60:98:bb:8c:86:d9:68:38:c2:2f: 40:25:60:02:1c:5d:b9:7d:16:78:58:a3:96:67:69: 69:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:63:96:0E:C1:FD:4D:F4:58:5D:E3:75:AA:66:BB:B9:89:98:7E:05 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:d5:08:d4:3e:88:c4:98:dc:d8:ff:1b:ea:c7:50:15:07:8c: f2:7e:a2:45:96:c6:62:f2:b1:e3:d6:d5:58:e0:00:c2:6a:a1: e7:54:00:ba:d6:5a:d8:80:65:d8:88:43:eb:9e:1e:df:d4:a8: 7a:ba:10:9a:86:e1:63:8b:8d:68:54:95:6a:50:65:6b:ea:be: ba:40:94:25:4b:d8:4e:2e:29:f4:ca:bc:a2:d0:ea:e3:13:60: e4:e1:77:01:4c:b6:90:6b:d2:58:f6:ce:70:a7:c6:cc:f1:2d: d9:8e:f4:2f:d5:6d:f7:8a:84:d0:ad:d8:cb:f1:2b:c3:09:ee: 83:a8:5d:03:e6:6f:a6:34:ee:5d:86:77:36:aa:0c:8c:7f:1f: 47:74:2e:42:67:e5:67:59:9a:4e:cd:b2:fd:4d:40:a1:c0:7a: 87:f2:b6:0d:aa:10:bb:77:11:ac:58:ef:8f:1f:08:b5:98:40: 8c:70:01:88:7c:25:88:ce:37:80:68:d2:b3:8f:dd:8f:9f:4d: 01:6e:c5:81:3f:01:b0:de:64:89:85:c5:55:8b:74:49:9c:bd: ed:3b:d3:bf:4f:de:88:88:fd:df:31:5a:95:33:8f:60:65:94: 57:a7:cf:24:8a:61:1b:f0:50:55:30:d1:38:8e:81:8a:d5:36: 35:48:41:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjYwMzI0MjM0MDQ2WhcNMjYwMzMxMjM0MDQ2WjAYMRYwFAYD VQQDEw02OWMzMjBmZS00NTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGOd8kBbFKsRlDbDWleyEss2VyL1UH6RtDI4DhTSPYVJiqJCKOKpLjzP/bYD XyXmM9AHMgQPj398Rh9APoerI3jUaxAWwslm8f0Q0d3pnb8uOJsFIjIImlMRMGRc N6F3rZKItSlcG8YkSpPvtWJ8rLDMY75bVqWw8luWSXR4x0k2WxbIAxw21l8x76Rq 4TXTxUTqoJA0WDg0rJzntV867pqkf6e+dsj4BWfwXNFy5dRcd6eMtxBpy64Ni/d7 4GJDiiYJFDVFj/bLnZ9ifPYXeJitpYfxba+Xp2IuBwNDzD1h79GCLGCYu4yG2Wg4 wi9AJWACHF25fRZ4WKOWZ2lpwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZjlg7B /U30WF3jdapmu7mJmH4FMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEtUI1D6IxJjc2P8b6sdQFQeM8n6iRZbGYvKx49bVWOAAwmqh51QAutZa2IBl 2IhD654e39SoeroQmobhY4uNaFSValBla+q+ukCUJUvYTi4p9Mq8otDq4xNg5OF3 AUy2kGvSWPbOcKfGzPEt2Y70L9Vt94qE0K3Yy/Erwwnug6hdA+ZvpjTuXYZ3NqoM jH8fR3QuQmflZ1maTs2y/U1AocB6h/K2DaoQu3cRrFjvjx8ItZhAjHABiHwliM43 gGjSs4/dj59NAW7FgT8BsN5kiYXFVYt0SZy97TvTv0/eiIj93zFalTOPYGWUV6fP JIphG/BQVTDROI6BitU2NUhBjQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:19:54 2026 by rpki-client