$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: KKNOhxAoFUEaUFcOm95A9t1z2kjWHpL385zgDeCcM+U= Subject key identifier: F5:4A:E9:6E:6D:37:4A:8C:AE:78:14:22:81:F8:2F:63:64:29:D8:B9 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 354D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 3535 Signing time: Thu 26 Mar 2026 14:38:45 +0000 Manifest this update: Thu 26 Mar 2026 14:38:45 +0000 Manifest next update: Thu 02 Apr 2026 14:38:45 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 7rl7qfGXi5qtFOW6hFfqPcHIsC1bV5yVKKNdt/T5gL4=) 2: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: giuz6kt+a3mAfYzChvmg3ZhJktWSl07hrTJcl5VYuw4=) 3: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: BK/+8KX02VPddxHBzpeJG/jz59w+FAXuRrqelBqXlEQ=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: V/vNgubvS8VhZ02alSGIOgT1eX/zOWVpq8npKoZuG7w=) 5: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: luxeMc1iFSEcyyjFr507CvOQSLo907/TPZtOXtJ+QIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13645 (0x354d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Mar 26 14:38:45 2026 GMT Not After : Apr 2 14:38:45 2026 GMT Subject: CN=69c544f5-78c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c6:53:ee:62:49:1b:66:26:d5:c1:27:cb:4e: 0b:0e:3d:9e:79:33:8c:43:f9:47:91:37:40:a0:15: f4:f8:f6:75:c8:23:ea:31:06:82:63:bb:5a:d4:b7: b4:76:33:96:29:b7:3c:78:3c:61:7d:f3:49:78:06: 06:fa:d6:21:7d:8c:98:77:a9:f7:fb:f0:97:b8:6a: d4:af:39:00:37:62:e3:e7:4e:cf:f1:75:d4:b3:61: fa:a0:7e:84:79:4b:cf:29:8f:9f:6b:1c:7a:8b:d6: 8b:fe:0b:a9:32:9c:a7:13:e8:a9:f7:3a:42:6a:76: ef:21:96:29:2c:54:7c:0f:e7:e8:11:f6:7c:e5:97: 6d:5b:4b:7b:d7:2e:27:99:90:d0:82:a1:45:de:e4: 44:ed:f2:cf:bd:19:c4:ed:ec:70:ef:38:a9:94:11: 6c:9c:22:6d:bc:d2:84:88:c7:83:90:36:56:c5:93: a6:3f:1a:bb:f1:39:9c:ef:d5:77:9c:db:c6:d7:36: 38:fd:4b:a0:e9:b4:5e:67:93:e0:fe:7c:33:77:fe: a5:00:b2:bd:72:bc:71:3a:29:56:e2:95:de:b1:49: fd:d1:64:d5:3c:de:cf:a0:c4:7f:e3:15:3d:a0:00: 50:13:e9:83:75:57:1b:42:05:80:7e:7c:7f:38:50: 46:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4A:E9:6E:6D:37:4A:8C:AE:78:14:22:81:F8:2F:63:64:29:D8:B9 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b3:30:f9:ef:71:5d:47:ec:72:0f:49:b8:39:be:f6:fd:f6: 75:65:78:a9:bf:50:7b:6f:42:68:43:53:1b:58:6b:69:01:c3: c1:a5:62:84:e8:aa:55:2b:fc:2e:85:91:bf:97:05:a2:83:f9: 27:4e:f5:d2:91:d1:e3:8c:f3:33:37:54:11:2f:fb:b9:96:57: 0b:a4:bd:e6:5c:7c:22:95:0e:d5:96:79:83:0f:8b:a3:a3:57: 6c:e2:a9:fb:43:ca:90:09:0a:c4:d6:0c:62:21:f3:db:74:d2: 60:2c:44:4d:1f:fd:8e:ec:d3:84:8f:38:62:f1:e4:68:de:59: 44:f0:e3:4e:c3:77:c8:45:c5:ce:ad:f5:88:f1:84:58:19:27: 93:8f:80:f9:c0:31:55:e1:d2:b1:54:ae:dd:3f:ef:ce:cb:fe: 84:b3:2e:76:73:2a:a5:ae:95:ef:a6:aa:b8:4c:70:49:5e:4f: 86:66:61:44:b3:f0:bc:cb:60:0d:fe:f5:7b:24:98:49:f9:56: ac:59:c4:ad:3b:ad:3b:21:cf:d4:2e:46:85:32:a7:bf:95:43: 3f:82:84:65:ec:c3:51:f4:d3:18:05:1f:7f:1d:e9:87:00:b5: b4:c3:47:82:26:77:27:8b:7f:d9:89:70:d7:70:a5:74:c8:c1: 3c:db:5b:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwMzI2MTQzODQ1WhcNMjYwNDAyMTQzODQ1WjAYMRYwFAYD VQQDEw02OWM1NDRmNS03OGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8ZT7mJJG2Ym1cEny04LDj2eeTOMQ/lHkTdAoBX0+PZ1yCPqMQaCY7ta1Le0 djOWKbc8eDxhffNJeAYG+tYhfYyYd6n3+/CXuGrUrzkAN2Lj507P8XXUs2H6oH6E eUvPKY+faxx6i9aL/gupMpynE+ip9zpCanbvIZYpLFR8D+foEfZ85ZdtW0t71y4n mZDQgqFF3uRE7fLPvRnE7exw7ziplBFsnCJtvNKEiMeDkDZWxZOmPxq78Tmc79V3 nNvG1zY4/Uug6bReZ5Pg/nwzd/6lALK9crxxOilW4pXesUn90WTVPN7PoMR/4xU9 oABQE+mDdVcbQgWAfnx/OFBGvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPVK6W5t N0qMrngUIoH4L2NkKdi5MB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATbMw+e9xXUfscg9JuDm+9v32dWV4qb9Qe29CaENTG1hraQHDwaVihOiqVSv8 LoWRv5cFooP5J0710pHR44zzMzdUES/7uZZXC6S95lx8IpUO1ZZ5gw+Lo6NXbOKp +0PKkAkKxNYMYiHz23TSYCxETR/9juzThI84YvHkaN5ZRPDjTsN3yEXFzq31iPGE WBknk4+A+cAxVeHSsVSu3T/vzsv+hLMudnMqpa6V76aquExwSV5PhmZhRLPwvMtg Df71eySYSflWrFnErTutOyHP1C5GhTKnv5VDP4KEZezDUfTTGAUffx3phwC1tMNH giZ3J4t/2Ylw13CldMjBPNtbDQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:09:58 2026 by rpki-client